Responsible Disclosure Statement

TimeTrade takes security and privacy very seriously for our users, our products and our staff. If you have discovered a vulnerability in our products, websites or support infrastructure, we encourage your help in mitigation by disclosing it to us in a responsible manner.

TimeTrade will engage with security researchers when vulnerabilities are reported to us in accordance with this Responsible Disclosure Statement. A reported vulnerability will be validated, cataloged and addressed in accordance with our posted commitments to security and privacy, as well as our other internal practices.

If you are the first to report a vulnerability and include detailed information sufficient to reproduce the vulnerability in your initial report, at TimeTrade’s sole discretion, there may be rewards or other compensation available for the research effort.
TimeTrade will not take legal action against, suspend or terminate access to the platform for those who discover and report security vulnerabilities in accordance with this Responsible Disclosure Statement. TimeTrade reserves all legal rights in the event of any noncompliance with the following guidelines:

  1. Do not disclose a bug or vulnerability into the public domain, without written consent from TimeTrade.
  2. If a vulnerability is discovered, you are not authorized to exploit the vulnerability to compromise or expose any data. Additionally, you are not authorized to access, view, modify, delete, copy, capture or share any data exposed by the vulnerability.
  3. Do not perform DDOS / spam attacks or degrade services in any way
  4. Do not use scanners or automated tools to find vulnerabilities.
  5. Do not install programs, scripts, malware on any TimeTrade resource, or use the resources to control or distribute the same.
  6. Never perform phishing, social engineering or physical attacks against our users, employees, or infrastructure.
  7. Do not engage in any activities that violate applicable laws.
How to Report an Issue

If you believe you have discovered a vulnerability, please contact issuereport@timetrade.com.

We request that you use the available PGP key below to secure your report to us.

In reporting vulnerabilities, please send details of:
  • The suspected vulnerability and include reproduction steps that we can follow.
  • A private, secure communication channel through which we can contact you such as your email address.
Response

Our security team will investigate any details you provide promptly upon receiving a vulnerability report, however, we require a reasonable amount of time to resolve the issue.

PUBLIC PGP KEY

–––––BEGIN PGP PUBLIC KEY BLOCK–––––
Comment: User-ID:       TimeTrade Responsible Disclosure <issuereport@timetrade.com>
Comment: Expires:       10/2/2025 12:00 PM
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=auId
–––––END PGP PUBLIC KEY BLOCK–––––

Schedule a Conversation with TimeTrade