Responsible Disclosure Policy

This policy exists to promote the responsible disclosure of security issues you may have found on any of our assets. Please note that we do not offer any monetary awards on this program.

At Mahalo, the security of our systems and the safety of your data are core characteristics of our company. We put a lot of effort into securing our websites and systems, but there is always room for improvement. We put a lot of effort into securing our websites and systems, but there is always room for improvement.

If you believe you have found a (potential) vulnerability in any of our products or on one of our domains, please inform us so we can take all necessary actions and precautions to mitigate the issue. We are always open to cooperate with you to better protect our users, partners, data, and systems, and strive to resolve any vulnerability problem as quickly as possible. You can submit your reports to security@mahalohq.com

We would like to ask you to:

Let us know as soon as possible upon discovery of a potential security issue, and we’ll make every effort to quickly resolve the issue.

  • Provide us a reasonable amount of time to resolve the issue before any disclosure to the public or a third-party.
  • Make a good faith effort to avoid privacy violations, destruction of data, and interruption or degradation of our service.
  • Only interact with accounts you own or with explicit permission of the account holder.
While researching, we’d like to ask you to refrain from: :
  • Denial of service
  • Spamming
  • Social engineering (including phishing) of Mahalo staff or contractors
  • Any physical attempts against Mahalo property or data centers
©2024  Mahalo Digital Ventures, Inc.