Responsible Disclosure Policy

At StructureArt DIGITAL, we take security seriously and are committed to protecting our users. We welcome reports from security researchers and encourage responsible disclosure of potential vulnerabilities.

What You Can Expect

• We will acknowledge your report within 3 business days.
• We will investigate valid reports and work to resolve any confirmed issues promptly.
• If your actions follow this policy, we will not pursue legal action.

Guidelines

We request that you:

• Do not access, modify, or delete data that does not belong to you.
• Do not perform actions that degrade or impact service availability (e.g., DDoS attacks).
• Do not use phishing, social engineering, or physical attacks.
• Make a good faith effort to avoid privacy violations and minimize disruption.

How to Report

Please email us using the Contact Us form and include:

• A clear description of the vulnerability.
• Steps to reproduce the issue.
• Optional: your name or handle if you’d like to be credited.

Recognition

At this time, we do not offer monetary rewards. However, we sincerely appreciate all responsible researchers and may offer acknowledgment in future release notes or platform credits.

Thank you for helping us keep GooshApp secure.