# Synapse Global Theranostics Security Policy # https://synapseglobaltheranostics.com/.well-known/security.txt # https://securitytxt.org/ # Contact information for security researchers Contact: mailto:security@bioaccessla.com Contact: mailto:info@bioaccessla.com Contact: tel:+1-954-903-7210 # Preferred languages for communication Preferred-Languages: en, es, pt # Our security acknowledgments page (if applicable) # Acknowledgments: https://synapseglobaltheranostics.com/security/acknowledgments # Policy expiration date (refresh annually) Expires: 2026-12-31T23:59:59.000Z # Encryption key for secure communication (PGP key URL if available) # Encryption: https://synapseglobaltheranostics.com/.well-known/pgp-key.txt # Canonical URL for this security.txt file Canonical: https://synapseglobaltheranostics.com/.well-known/security.txt # Hiring information for security roles # Hiring: https://synapseglobaltheranostics.com/careers # Our security policy Policy: https://synapseglobaltheranostics.com/privacy-policy # CSAF (Common Security Advisory Framework) provider metadata # CSAF: https://synapseglobaltheranostics.com/.well-known/csaf/provider-metadata.json # =================================== # SECURITY GUIDELINES # =================================== # # We take security seriously at Synapse Global Theranostics. # # If you believe you have found a security vulnerability in our # website or services, please report it to us responsibly. # # What we ask: # - Give us reasonable time to investigate and fix the issue # - Do not access or modify data belonging to others # - Do not perform actions that could harm our users # - Do not publicly disclose the issue before we've addressed it # # What we promise: # - We will respond to your report within 72 hours # - We will keep you informed about our progress # - We will not take legal action against researchers who follow these guidelines # - We will credit you (if desired) when we disclose the fix # # Scope: # - synapseglobaltheranostics.com and all subdomains # - Our web applications and APIs # # Out of scope: # - Social engineering attacks # - Physical security # - Denial of service attacks # - Third-party services we use # # Thank you for helping keep our users safe!