Security Disclosure Policy

SIANSOFT has been committed to digital security and user privacy since 2003. We value the contributions of independent security researchers and professionals who responsibly disclose vulnerabilities.

Responsible Disclosure

If you believe you’ve discovered a potential security vulnerability in one of our systems, please notify us promptly via support@siansoft.com.

We will investigate all valid reports and aim to acknowledge them within 3 business days.

Scope

This policy applies to all public-facing SIANSOFT services and domains unless specifically stated otherwise.

Out of Scope

• Denial of service attacks
• Social engineering of employees
• Physical attacks or threats
• Third-party services not maintained by SIANSOFT

Guidelines

• Do not exploit the vulnerability beyond what is necessary to demonstrate it.
• Avoid accessing, modifying, or deleting user data.
• Give us a reasonable amount of time to fix the issue.

We deeply appreciate your efforts in keeping our systems and users safe. Thank you for helping us maintain the integrity of our services.