Mett attaches great importance to the security of its systems, and above all the data of its customers and partners. Despite our concern for the security of our systems, it is possible that there is a weak spot. If you have found a weak spot in one of our systems, we would like to hear about it so that we can take measures as quickly as possible. We would like to work with you to better protect our customers and our systems.
We ask the following
- Mail your findings to helpdesk@mett.nl or call the helpdesk on +31 30 7115777. We are happy to help you with the safe exchange of risky information;
- Do not abuse the problem by, for example, downloading more data than is necessary to demonstrate the leak or to view, delete or modify data from third parties;
- Submit the report as soon as possible after discovery of the vulnerability;
- Do not share the problem with others until it is resolved;
- Delete all confidential data obtained immediately after closing the leak;
- Do not use attacks on physical security, social engineering, distributed denial of service, spam, DDoS attacks or third party applications;
- Please provide enough information to reproduce the problem so that we can resolve it as quickly as possible. Usually the IP address or URL of the affected system and a description of the vulnerability is sufficient, but more complex vulnerabilities may require more;
What we promise
- We will respond to your report as soon as possible, at the latest within a week (depending on the urgency) with our assessment of the report;
- We strive to resolve all issues as quickly as possible and are happy to be involved in any publication about the issue once it has been resolved;
- If you have adhered to the above conditions, we will not take any legal action regarding the report;
- We treat your report confidentially and do not share your personal information with third parties without your permission unless this is necessary to comply with a legal obligation;
- We will keep you informed of the progress of solving the problem;
- Mett ensures that other customers also benefit from the shared experiences in this area;
- In mutual consultation we can, if you wish, mention your name as the discoverer of the reported vulnerability. In all other cases you remain anonymous;
- As a thank you for your help, we offer a reward for every report of an unknown security issue. We determine the size of the reward on the basis of the severity of the leak and the quality of the report with a minimum of € 25.
- Last update 16-09-2020-