Security

    At Duodata, we take security seriously. This page outlines our security practices and provides information on how to report vulnerabilities responsibly.

    Vulnerability Disclosure Policy

    If you believe you have discovered a security vulnerability in Duodata's products or services, we encourage you to report it to us responsibly. We appreciate your efforts to help keep our platform and users safe.

    How to Report

    What to Include

    • A detailed description of the vulnerability
    • Steps to reproduce the issue
    • Potential impact of the vulnerability
    • Any proof-of-concept code (if applicable)
    • Your contact information for follow-up

    Our Commitment

    • We will acknowledge receipt of your report within 48 business hours
    • We will investigate and work to validate the vulnerability
    • We will keep you informed of our progress
    • We will not pursue legal action against researchers acting in good faith

    Responsible Disclosure Guidelines

    We ask that security researchers:

    • Avoid accessing or modifying data that does not belong to you
    • Do not perform actions that could harm our users or services
    • Do not publicly disclose the vulnerability before we have addressed it
    • Make a good faith effort to avoid privacy violations and disruptions
    • Only test against accounts you own or have explicit permission to test

    Our Security Practices

    • All data transmitted via HTTPS with TLS 1.2+ encryption
    • Data at rest encrypted using industry-standard encryption
    • Regular security assessments and penetration testing
    • Secure development practices and code review
    • Employee security training and access controls

    Contact

    For security-related inquiries or to report a vulnerability:

    For general inquiries, please use contact@duodata.ai. You can also review our Privacy Policy and Trust Center.