Bug Bounty Program Clause Samples
A Bug Bounty Program clause establishes the terms under which individuals or entities can report security vulnerabilities in a company's systems in exchange for rewards. Typically, it outlines the scope of eligible systems, the process for submitting reports, and the criteria for reward eligibility, such as severity and originality of the bug. This clause encourages responsible disclosure of security issues, helping organizations identify and address vulnerabilities before they can be exploited maliciously.
POPULAR SAMPLE Copied 12 times
Bug Bounty Program. ▇▇▇▇▇▇ agrees that BUYER may make deliverables created in the performance of services subject to BUYER’s Bug Bounty Program. As a result, BUYER will notify SELLER of any security-related vulnerabilities identified through its Bug Bounty Program. SELLER will reimburse BUYER at the rates identified in the table below for all identified vulnerabilities on SELLER’s functionalities that are used out of the box from its platform “as is”(without configuration or development) or configurations/improvements released by the SELLER. SELLER will not be held accountable for any vulnerability resulting from a custom configuration, development or modification made by the BUYER, or any third party authorized by the BUYER, on the SELLER’s platform functionalities.