Skip links
X-twitter Linkedin Youtube

© 2024 BCW Group

Security at BCW

See Our Trust Center

At BCW Group, security is a top priority. We recognize that collaboration with skilled security researchers plays a crucial role in identifying and mitigating potential vulnerabilities across our technology and services.

If you believe you have discovered a security vulnerability in BCW Group’s platform, we encourage you to report it to us. We are committed to working with you to resolve the issue promptly and responsibly.

Disclosure Policy

If you believe you have identified a security vulnerability, please follow these guidelines:

  • 1. Report the issue via email to our security team at security@bcw.group. We will acknowledge receipt promptly.
  • 2. Allow us reasonable time to investigate and resolve the issue before publicly disclosing any details or sharing it with a third party.
  • 3. Act in good faith to avoid:
  •     - Violating privacy or accessing unauthorized data.
  •     - Destroying or altering BCW Group data.
  •     - Interrupting or degrading BCW Group services.
  • 4. Only test vulnerabilities on accounts you own or have explicit permission to access.
Exclusions:

While researching security vulnerabilities, please refrain from engaging in the following activities:

  • Distributed Denial of Service (DDoS) attacks
  • Spamming or automated exploit scanning
  • Social engineering or phishing of BCW Group employees, partners, or customers
  • Physical attacks against BCW Group offices or employees
Commitment to Security Researchers:

We appreciate responsible security research and are committed to acknowledging legitimate reports. We will:

  • Provide timely responses to security vulnerability reports.
  • Work collaboratively to assess and resolve valid security concerns.
  • Maintain clear communication throughout the disclosure process.
Policy Updates

We may update this policy from time to time. The most current version will always be available at: www.bcw.group/security.

If you have feedback or questions regarding this policy, feel free to reach out to us at security@bcw.group.

Enforcement & Responsibility
  • Employees who violate this policy may face disciplinary action in line with the severity of the violation.
  • The BCW Group Information Security Team is responsible for enforcing this policy and ensuring compliance.
  • Maintain clear communication throughout the disclosure process.

Thank you for helping us keep BCW Group and our customers secure!