Security Vulnerability Bounty Policies
As an online company we are always looking to identify and correct bugs in our system, and we do pay bounties for security vulnerabilities that are reported to us. The amount paid varies based on the severity of the vulnerability.
- If you have already found one, please use the Contact Us link to give us the details.
- If you plan to probe for vulnerabilities, do not probe our live site. Instead, please use the Contact Us link and let us know, so that we coordinate with you and provide you access to an isolated penetration testing environment. If you probe our live site, we will assume that you are a malicious hacker and respond accordingly.