At Golotrip, we prioritize the security and privacy of our users. If you encounter any security issues or vulnerabilities while using our services, we encourage you to report them to us immediately. Your vigilance helps us maintain a safe and secure environment for all users.

How to Report a Security Issue

If you believe you have discovered a security issue or vulnerability in our website, mobile app, or any of our services, please follow the steps below to report it:

  1. Contact Us
  2. Provide Detailed Information When reporting a security issue, please include as much detail as possible to help us understand and address the issue efficiently. This may include:
    • A description of the issue or vulnerability.
    • Steps to reproduce the issue.
    • Any relevant screenshots or videos.
    • The impact of the issue, if known.
  3. Maintain Confidentiality Please do not publicly disclose the security issue until we have had a chance to investigate and address it. Publicly disclosing vulnerabilities can put our users at risk.

Our Commitment to You

  • Acknowledgment: We will acknowledge the receipt of your report within 24 hours.
  • Investigation: Our security team will investigate the reported issue promptly.
  • Resolution: We will take the necessary steps to resolve the issue and will keep you informed of our progress.
  • Recognition: If you are the first to report a significant security issue and we make changes based on your report, we are happy to recognize your contribution on our Security Hall of Fame page (if you consent).

Responsible Disclosure Policy

We believe in the importance of working with the security community to identify and resolve security issues. As such, we request that you:

  • Act in good faith to avoid privacy violations, destruction of data, and interruption or degradation of our services.
  • Comply with all applicable laws when reporting security issues.

Non-Qualifying Issues

While we appreciate all reports, certain issues may not qualify as security vulnerabilities. Examples include:

  • Issues related to outdated browsers or plugins.
  • Social engineering attacks or phishing.
  • Issues requiring physical access to devices.

Bug Bounty Program

In recognition of your efforts to help us improve our security, we offer a bug bounty program for valid security issues. Rewards are based on the severity and impact of the reported issue. For more details, please refer to our Bug Bounty Program page.

Contact Us

If you have any questions about our security policies or need further assistance, please contact our security team at info@golotrip.com.

Thank you for helping us keep Golotrip safe and secure!