Security

Responsible Disclosure

GFAE Global takes security seriously. If you believe you have found a security vulnerability, please follow responsible disclosure principles.

Reporting

How to Report a Vulnerability

Contact by email

founder@gfaeglobal.tech

Subject line: Security Disclosure | [brief description]

Please include

Description of the vulnerability
Steps to reproduce
Potential impact
Your contact details

We will

Acknowledge receipt within 48 hours
Investigate the reported issue
Respond with our findings

Expectations

What We Ask

Do not exploit or further expose the vulnerability
Do not share details with third parties before a fix is deployed
Give us reasonable time to investigate and remediate
Act in good faith

Scope

Scope and Bug Bounty

Note

GFAE Global is an early-stage company. No formal bug bounty programme is currently offered. We will acknowledge responsible disclosure in any future public disclosure with the researcher's permission.

Important Note

This page relates to this informational website only. GFAE's production cryptographic system is not publicly exposed. If you are a qualified security researcher or procurement evaluator, please contact us to discuss your evaluation context.

Questions about security?

For non-vulnerability security enquiries, please use the contact form.