Vulnerability Disclosure Policy

Security is a top priority for us at niwo. We appreciate the contributions of security researchers and the responsible disclosure of potential vulnerabilities.

Scope

This policy applies to any digital assets owned, operated, or maintained by niwo, includingniwosystems.comand its associated subdomains.

Guidelines

• Do not exploit vulnerabilities beyond what is necessary to demonstrate them.
• Do not access or modify user data without consent.
• Do not disrupt or degrade our services.
• Provide sufficient details so we can reproduce and validate the issue.

Reporting

If you discover a vulnerability, please report it responsibly by emailing us atsecurity@niwosystems.com.

Include the following information where possible:

• Description of the vulnerability
• Steps to reproduce
• Potential impact
• Suggested remediation (if available)

Acknowledgement

We may publicly acknowledge valid reports that help us improve our security posture. Thank you for helping keep niwo and its users safe.