{"id":24047,"date":"2024-08-09T09:04:54","date_gmt":"2024-08-09T07:04:54","guid":{"rendered":"https:\/\/stc.cz\/?page_id=24047"},"modified":"2024-08-09T09:04:54","modified_gmt":"2024-08-09T07:04:54","slug":"disclosure","status":"publish","type":"page","link":"https:\/\/stc.cz\/en\/disclosure\/","title":{"rendered":"Responsible reporting of security vulnerabilities"},"content":{"rendered":"<div class=\"fusion-fullwidth fullwidth-box fusion-builder-row-1 fusion-flex-container has-pattern-background has-mask-background nonhundred-percent-fullwidth non-hundred-percent-height-scrolling\" style=\"--awb-border-radius-top-left:0px;--awb-border-radius-top-right:0px;--awb-border-radius-bottom-right:0px;--awb-border-radius-bottom-left:0px;--awb-margin-top:40px;--awb-flex-wrap:wrap;\" ><div class=\"fusion-builder-row fusion-row fusion-flex-align-items-flex-start fusion-flex-content-wrap\" style=\"max-width:1560px;margin-left: calc(-4% \/ 2 );margin-right: calc(-4% \/ 2 );\"><div class=\"fusion-layout-column fusion_builder_column fusion-builder-column-0 fusion_builder_column_1_1 1_1 fusion-flex-column\" style=\"--awb-bg-size:cover;--awb-width-large:100%;--awb-margin-top-large:0px;--awb-spacing-right-large:1.92%;--awb-margin-bottom-large:0px;--awb-spacing-left-large:1.92%;--awb-width-medium:100%;--awb-order-medium:0;--awb-spacing-right-medium:1.92%;--awb-spacing-left-medium:1.92%;--awb-width-small:100%;--awb-order-small:0;--awb-spacing-right-small:1.92%;--awb-spacing-left-small:1.92%;\"><div class=\"fusion-column-wrapper fusion-column-has-shadow fusion-flex-justify-content-flex-start fusion-content-layout-column\"><div class=\"fusion-text fusion-text-1\"><p>Security of services and data is one of the top priorities of the <a href=\"https:\/\/stc.cz\/en\/\">State Printing Works of Securities<\/a>. If you believe you have discovered a&nbsp;possible vulnerability in any of our services, unprotected data or other security issue, please report it to us.<\/p>\n<p>We ask that you do&nbsp;not disclose vulnerabilities and follow this policy.<\/p>\n<\/div><div class=\"fusion-title title fusion-title-1 fusion-sep-none fusion-title-text fusion-title-size-three\"><h3 class=\"fusion-title-heading title-heading-left fusion-responsive-typography-calculated\" style=\"margin:0;--fontSize:32;line-height:1.4;\">Policy for Responsible Reporting of Security Vulnerabilities:<\/h3><\/div><ul style=\"--awb-iconcolor:#000000;--awb-line-height:27.2px;--awb-icon-width:27.2px;--awb-icon-height:27.2px;--awb-icon-margin:11.2px;--awb-content-margin:38.4px;--awb-circlecolor:#a0ce4e;--awb-circle-yes-font-size:14.08px;\" class=\"fusion-checklist fusion-checklist-1 fusion-checklist-default type-icons\"><li class=\"fusion-li-item\" style=\"\"><span class=\"icon-wrapper circle-yes\"><i class=\"fusion-li-icon awb-icon-check\" aria-hidden=\"true\"><\/i><\/span><div class=\"fusion-li-item-content\">Discovered vulnerability report to vulnerability@stc.cz.<\/div><\/li><li class=\"fusion-li-item\" style=\"\"><span class=\"icon-wrapper circle-yes\"><i class=\"fusion-li-icon awb-icon-check\" aria-hidden=\"true\"><\/i><\/span><div class=\"fusion-li-item-content\">Include of reporting the vulnerability will be a&nbsp;detailed proof of concept allowing reproduction and verification of the reported vulnerability.<\/div><\/li><li class=\"fusion-li-item\" style=\"\"><span class=\"icon-wrapper circle-yes\"><i class=\"fusion-li-icon awb-icon-check\" aria-hidden=\"true\"><\/i><\/span><div class=\"fusion-li-item-content\">Information Vulnerability information will not be disclosed or provided to third parties without prior consent of the State Printing Works of Securities.<\/div><\/li><li class=\"fusion-li-item\" style=\"\"><span class=\"icon-wrapper circle-yes\"><i class=\"fusion-li-icon awb-icon-check\" aria-hidden=\"true\"><\/i><\/span><div class=\"fusion-li-item-content\">At verification of the vulnerability, you will do&nbsp;everything possible to prevent property damage or non-pecuniary damage, violation of privacy or unavailability or impairment of the provision of our services.<\/div><\/li><li class=\"fusion-li-item\" style=\"\"><span class=\"icon-wrapper circle-yes\"><i class=\"fusion-li-icon awb-icon-check\" aria-hidden=\"true\"><\/i><\/span><div class=\"fusion-li-item-content\">You will not exploit vulnerabilities to access data that you are not authorized to access<\/div><\/li><li class=\"fusion-li-item\" style=\"\"><span class=\"icon-wrapper circle-yes\"><i class=\"fusion-li-icon awb-icon-check\" aria-hidden=\"true\"><\/i><\/span><div class=\"fusion-li-item-content\">Brute-force techniques or social engineering methods will not be used to access our systems<\/div><\/li><\/ul><div class=\"fusion-title title fusion-title-2 fusion-sep-none fusion-title-text fusion-title-size-three\"><h3 class=\"fusion-title-heading title-heading-left fusion-responsive-typography-calculated\" style=\"margin:0;--fontSize:32;line-height:1.4;\">Policy for evaluating reported security vulnerabilities:<\/h3><\/div><div class=\"fusion-text fusion-text-2\"><p>Your submission should be acknowledged within 72 hours. We will analyze and confirm the reported security issue and will typically contact you within 5 business days. Confirmed security vulnerabilities will then be addressed according to their severity and we will inform you of the planned date for remediation of the vulnerability. We ask that you maintain confidentiality throughout the resolution of the reported vulnerability.<\/p>\n<h4><strong>We do&nbsp;not currently offer or participate in any ongoing programs offering<br \/>\nrewards for finding security vulnerabilities.<\/strong><\/h4>\n<\/div><\/div><\/div><\/div><\/div>\n","protected":false},"excerpt":{"rendered":"","protected":false},"author":8,"featured_media":0,"parent":0,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"","meta":{"footnotes":""},"class_list":["post-24047","page","type-page","status-publish","hentry"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v24.4 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>- St\u00e1tn\u00ed tisk\u00e1rna cenin<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/stc.cz\/en\/disclosure\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"- St\u00e1tn\u00ed tisk\u00e1rna cenin\" \/>\n<meta property=\"og:url\" content=\"https:\/\/stc.cz\/en\/disclosure\/\" \/>\n<meta property=\"og:site_name\" content=\"St\u00e1tn\u00ed tisk\u00e1rna cenin\" \/>\n<meta property=\"og:image\" content=\"https:\/\/stc.cz\/wp-content\/uploads\/2023\/03\/NOVE_LOGO_STC_ukazka.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"1018\" \/>\n\t<meta property=\"og:image:height\" content=\"720\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/stc.cz\/en\/disclosure\/\",\"url\":\"https:\/\/stc.cz\/en\/disclosure\/\",\"name\":\"- St\u00e1tn\u00ed tisk\u00e1rna cenin\",\"isPartOf\":{\"@id\":\"https:\/\/stc.cz\/#website\"},\"datePublished\":\"2024-08-09T07:04:54+00:00\",\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/stc.cz\/en\/disclosure\/\"]}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/stc.cz\/#website\",\"url\":\"https:\/\/stc.cz\/\",\"name\":\"St\u00e1tn\u00ed tisk\u00e1rna cenin\",\"description\":\"\",\"publisher\":{\"@id\":\"https:\/\/stc.cz\/#organization\"},\"alternateName\":\"V\u00edce ne\u017e 95 let nab\u00edz\u00edme sv\u00fdm z\u00e1kazn\u00edk\u016fm v\u00fdrobu polygrafick\u00fdch produkt\u016f s ceninov\u00fdmi ochrann\u00fdmi prvky v provozu vybaven\u00e9m nejmodern\u011bj\u0161\u00edmi technologiemi a bezpe\u010dnostn\u00edmi syst\u00e9my.\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/stc.cz\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/stc.cz\/#organization\",\"name\":\"St\u00e1tn\u00ed tisk\u00e1rna cenin\",\"url\":\"https:\/\/stc.cz\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/stc.cz\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/stc.cz\/wp-content\/uploads\/2023\/03\/NOVE_LOGO_STC.jpg\",\"contentUrl\":\"https:\/\/stc.cz\/wp-content\/uploads\/2023\/03\/NOVE_LOGO_STC.jpg\",\"width\":1280,\"height\":720,\"caption\":\"St\u00e1tn\u00ed tisk\u00e1rna cenin\"},\"image\":{\"@id\":\"https:\/\/stc.cz\/#\/schema\/logo\/image\/\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"- St\u00e1tn\u00ed tisk\u00e1rna cenin","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/stc.cz\/en\/disclosure\/","og_locale":"en_US","og_type":"article","og_title":"- St\u00e1tn\u00ed tisk\u00e1rna cenin","og_url":"https:\/\/stc.cz\/en\/disclosure\/","og_site_name":"St\u00e1tn\u00ed tisk\u00e1rna cenin","og_image":[{"width":1018,"height":720,"url":"https:\/\/stc.cz\/wp-content\/uploads\/2023\/03\/NOVE_LOGO_STC_ukazka.jpg","type":"image\/jpeg"}],"twitter_card":"summary_large_image","schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/stc.cz\/en\/disclosure\/","url":"https:\/\/stc.cz\/en\/disclosure\/","name":"- St\u00e1tn\u00ed tisk\u00e1rna cenin","isPartOf":{"@id":"https:\/\/stc.cz\/#website"},"datePublished":"2024-08-09T07:04:54+00:00","inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/stc.cz\/en\/disclosure\/"]}]},{"@type":"WebSite","@id":"https:\/\/stc.cz\/#website","url":"https:\/\/stc.cz\/","name":"St\u00e1tn\u00ed tisk\u00e1rna cenin","description":"","publisher":{"@id":"https:\/\/stc.cz\/#organization"},"alternateName":"V\u00edce ne\u017e 95 let nab\u00edz\u00edme sv\u00fdm z\u00e1kazn\u00edk\u016fm v\u00fdrobu polygrafick\u00fdch produkt\u016f s ceninov\u00fdmi ochrann\u00fdmi prvky v provozu vybaven\u00e9m nejmodern\u011bj\u0161\u00edmi technologiemi a bezpe\u010dnostn\u00edmi syst\u00e9my.","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/stc.cz\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/stc.cz\/#organization","name":"St\u00e1tn\u00ed tisk\u00e1rna cenin","url":"https:\/\/stc.cz\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/stc.cz\/#\/schema\/logo\/image\/","url":"https:\/\/stc.cz\/wp-content\/uploads\/2023\/03\/NOVE_LOGO_STC.jpg","contentUrl":"https:\/\/stc.cz\/wp-content\/uploads\/2023\/03\/NOVE_LOGO_STC.jpg","width":1280,"height":720,"caption":"St\u00e1tn\u00ed tisk\u00e1rna cenin"},"image":{"@id":"https:\/\/stc.cz\/#\/schema\/logo\/image\/"}}]}},"_links":{"self":[{"href":"https:\/\/stc.cz\/en\/wp-json\/wp\/v2\/pages\/24047","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/stc.cz\/en\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/stc.cz\/en\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/stc.cz\/en\/wp-json\/wp\/v2\/users\/8"}],"replies":[{"embeddable":true,"href":"https:\/\/stc.cz\/en\/wp-json\/wp\/v2\/comments?post=24047"}],"version-history":[{"count":2,"href":"https:\/\/stc.cz\/en\/wp-json\/wp\/v2\/pages\/24047\/revisions"}],"predecessor-version":[{"id":24049,"href":"https:\/\/stc.cz\/en\/wp-json\/wp\/v2\/pages\/24047\/revisions\/24049"}],"wp:attachment":[{"href":"https:\/\/stc.cz\/en\/wp-json\/wp\/v2\/media?parent=24047"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}