Responsible Disclosure
Effective 10 November 2021 until further notice.
At Latitude, we understand how important it is to protect our customers and we value the input of the security community. The responsible disclosure of security vulnerabilities helps us ensure the security and privacy of Latitude and our customers. If you believe you have found a security vulnerability with any of our services, we would like you to let us know right away via our Responsible Disclosure Program.
Latitude does not condone any malicious or illegal behaviour in the identification and reporting of security vulnerabilities.
Our Responsible Disclosure Program is managed by Bugcrowd.
If you have discovered a vulnerability that you wish to report to us, this should be done through Bugcrowd. We encourage researchers to register with Bugcrowd and report any findings through the Bugcrowd platform. If this is not available to you, you may make a manual submission using the vulnerability submission form.
Click here to access the vulnerability submission form.