Responsible Disclosure Policy

Security is core to everything we build at SGT.

Our Commitment

We value the security community's help in keeping our platforms safe. If you believe you've found a security vulnerability in one of our products or services, we want to hear from you.

Reporting a Vulnerability

Please email us at security@sellapy.global with the following details:

  • Description of the vulnerability
  • Steps to reproduce (proof of concept)
  • Potential impact

Guidelines

To help us process your report, we ask that you:

  • Give us reasonable time to respond before making information public
  • Avoid privacy violations and disruption to our services
  • Do not attempt to access or modify data that does not belong to you

Our Response

We will acknowledge receipt of your report within 48 hours and provide a timeline for resolution where appropriate. We do not currently offer a bug bounty program, but we provide public credit for valid, unique reports.