Skip to content

Security: activehustling/AIpromptLab

Security

SECURITY.md

Security Policy

Last Updated: October 23, 2025

At PROMPTIFICE, we take the security and privacy of our users, data, and systems seriously. This Security Policy outlines how we handle potential security issues, vulnerability reports, and how you can responsibly disclose them to us.

1. Our Security Commitment

We are committed to maintaining a safe, transparent, and responsible environment across all our platforms and digital services. We continually monitor, review, and update our systems to protect them from unauthorized access, data loss, or misuse.

2. Reporting a Vulnerability

If you believe you have discovered a security vulnerability or weakness related to any PROMPTIFICE system, website, or digital product, please notify us immediately.

You can report it by emailing: 📧 security@promptifice.com (or use your brand contact email if preferred)

When submitting a report, please include:

  • A clear and concise description of the issue.
  • Steps to reproduce the vulnerability.
  • Any potential impact or risk it may pose.
  • (Optional) Screenshots or proof-of-concept details to help us understand the issue better.

Please do not publicly disclose the vulnerability until it has been acknowledged and resolved.

3. What to Expect After Reporting

Once we receive your report, here’s what will happen:

  1. Acknowledgment: We will confirm receipt of your report within 72 hours.
  2. Assessment: Our security team will review and verify the issue.
  3. Follow-up: We may contact you for clarification or additional information.
  4. Resolution: If the vulnerability is confirmed, we’ll work to address it as quickly as possible.
  5. Disclosure: We will inform you when the issue has been fixed and whether it will be publicly disclosed (with your consent, if applicable).

4. Vulnerability Response Time

  • Acknowledgment: Within 3 business days.
  • Initial assessment and triage: Within 7–10 business days.
  • Resolution time: Depends on the severity and complexity of the issue, but we aim to resolve critical vulnerabilities within 30 days of confirmation.

5. If a Vulnerability is Accepted or Declined

  • Accepted: If validated, we will fix the issue and may publicly credit you (if you wish) for responsible disclosure.
  • Declined: If the issue is not considered a security risk or is a known limitation, we will provide a clear explanation of why it was declined.

Regardless of the outcome, you will be notified of the final decision.

6. Responsible Disclosure Guidelines

We ask that you:

  • Avoid exploiting the vulnerability or accessing data that doesn’t belong to you.
  • Refrain from actions that could disrupt or damage systems or services.
  • Give us reasonable time to investigate and address the issue before sharing it publicly.

We greatly appreciate researchers and users who help us maintain security through responsible disclosure.

7. Updates to This Policy

We may update this Security Policy periodically to reflect changes in our practices or infrastructure. When changes occur, we’ll update the “Last Updated” date above. Significant changes may also be announced via our website or email communication channels.

8. Contact Information

If you have a question about this Security Policy or need to report a concern, please contact us: 📧 security@promptifice.com 🌐 Website: www.promptifice.com (if applicable)

There aren’t any published security advisories