Security Vulnerability Policy
We consider the security of our platform, user databases, and contract integrations to be of the utmost importance.
Reporting Security Vulnerabilities
FoundingTeams welcomes input from security researchers and white-hat hackers. Through responsible disclosure, we hope to continuously safeguard our applications and candidate databases.
If you uncover any potential vulnerability (such as SQL injections, auth bypasses, or data exposure), please report it immediately to our security operations team:
security@foundingteams.aiWe aim to review and respond to valid disclosures within 24-48 hours. Please protect our users by refraining from sharing details with external parties until we have confirmed the fix.
Strict Exclusions & Rules
While researching, we strictly request that you do not compromise active operations or degrade user experience. The following activities are strictly prohibited:
- Denial of Service (DoS / DDoS) attempts
- Spamming or mail flooding
- Social engineering (phishing) of staff
- Physical entry to servers or offices
- Vulnerability scans causing API depletion
- Exposing database files to public forums
Discretionary Bug Bounties
We highly value the support of the security community. At our sole discretion, we reward researchers with monetary bug bounties for discovering and responsibly disclosing significant or critical security vulnerabilities.