Responsible Disclosure Policy

Effective Date: August 1, 2025

At Altis, the security of our systems and customer data is a top priority. We know that no system is perfect, and we welcome reports from security researchers and members of the public who help us spot potential vulnerabilities.

Scope

Focus your testing and reporting efforts strictly on systems and vulnerabilities that fall within our defined scope.

In Scope

• https://www.altisrecruitment.com/

Out of Scope

• Physical security testing of Altis offices or infrastructure.
• Social engineering attempts (e.g., phishing).
• Any form of Denial-of-Service (DoS) testing.
• Automated scanning without prior coordination.

How to Report a Vulnerability

Email us at security-disclosure@altis.com

• Clear description of the issue
• Steps to reproduce
• Proof-of-concept if available
• Your contact information

Do not include sensitive customer data or credentials.