Vulnerability Disclosure Policy

As a provider of IoT (Internet of Things) products we take security issues very seriously and recognize the importance of privacy and data security. We are committed to working without partners to address reported security issues and protect users. Whether you’re a user of ZACO IoT products, a software developer, or simply a security researcher, you’re an important part of this process. 

If you believe you have discovered a vulnerability in a ZACO product or a have a security incident to report, please contact our customer service team by support@zaco.eu. 

 ZACO will communicate with you, the reporter, via e-mail. First receipt of the vulnerability report within 14 days. We will give the submitter feedback on the status every 5 days until the vulnerability is resolved. 

 ZACO will take the necessary steps to address the issue internally and with our partners. Please note, however, some vulnerabilities are subject to environment or hardware restrictions. Final remediation time will be determined according to the real-world situation.