Security Policy | bsport

We take the security of our platform and our customers’ data seriously. Responsible disclosure helps us maintain a safe and reliable service, and we appreciate the efforts of the security research community.

‍

1 Responsible Disclosure

If you believe you have discovered a security vulnerability in our systems, we encourage you to report it to us privately so we can investigate and address the issue promptly.
Please send all security-related reports to security@bsport.io and include:

• A clear description of the issue
• Steps to reproduce the vulnerability
• Any relevant proof of concept or screenshots

We ask that you avoid public disclosure of any potential vulnerability until we have had a reasonable opportunity to investigate and remediate it.

2 Bug Bounty

At this time, we do not offer monetary rewards or pay bug bounties for reported vulnerabilities. Submissions are accepted on a voluntary basis to help improve the security of our product.
Recognition

‍
While we do not provide financial compensation, we are happy to publicly acknowledge and credit valid security reports. With your permission, we will recognize your contribution on HackerOne once the issue has been resolved.

3 Our Commitment

We commit to:

• Reviewing all credible security reports in a timely manner
• Communicating with reporters during the investigation process
• Taking appropriate action to remediate confirmed issues

We appreciate your help in keeping our platform secure and thank you for supporting responsible security research.