Vulnerability Disclosure Policy
Responsible disclosure procedures for reporting security vulnerabilities to Lisaiceland DBA.
Scope and Covered Properties
This policy applies to Lisaiceland DBA and all websites, applications, products, services, documentation, APIs, affiliate programs, creator programs, AI systems, integrations, infrastructure, vendor relationships, and future offerings, including:
Lisaiceland.commyAgents.PLUSAI Voice+meVid.onlineCinVida.online
References to “Lisaiceland,” “we,” “us,” or “our” mean Lisaiceland DBA.
Purpose
Lisaiceland DBA welcomes good-faith reports of security vulnerabilities that may affect covered properties. This policy explains how researchers may report issues responsibly.
Safe Harbor Expectations
Researchers should act in good faith, avoid privacy violations, avoid data destruction, avoid service disruption, avoid social engineering, avoid extortion, and give Lisaiceland DBA a reasonable opportunity to investigate and remediate before public disclosure.
Lisaiceland DBA will not pursue legal action against researchers who make a good-faith effort to comply with this policy, even if a test inadvertently accesses more than intended, provided the researcher reports it promptly and cooperates with remediation.
Out-of-Scope Activities
Out-of-scope activities include denial-of-service testing, spam, phishing, physical attacks, social engineering, malware, destructive testing, accessing unrelated customer data, or attempting persistence in systems.
Reporting Process
Reports should include affected URLs, steps to reproduce, proof of concept, impact, screenshots or logs where safe, researcher contact information, and any relevant timing details.
Reports may be sent to legal@lisaiceland.com. Clear, reproducible reports are typically triaged faster than vague descriptions, so including exact steps and affected endpoints is appreciated.
Remediation and Communication
Lisaiceland DBA may validate, prioritize, remediate, mitigate, or decline reports based on severity, exploitability, affected systems, business risk, and duplicate status.
Lisaiceland DBA aims to acknowledge reports in a reasonable timeframe and to keep researchers informed of general status, though specific remediation timelines and technical detail may be limited for security reasons.
General Legal Terms
No Absolute Security Guarantee
No security program can guarantee that unauthorized access, misuse, loss, downtime, vulnerabilities, or incidents will never occur. Lisaiceland DBA maintains reasonable administrative, technical, and organizational safeguards appropriate to the nature of its products and operations.
Customer Responsibilities
Customers remain responsible for account security, user permissions, secure configuration, lawful data collection, appropriate use of integrations, backup strategy where applicable, and compliance with their own legal and contractual obligations.
Reservation of Rights
Lisaiceland DBA may modify, restrict, suspend, remove, review, or terminate access, workflows, integrations, features, or accounts where needed to protect users, customers, legal compliance, operational security, or platform integrity.
Governing Law
Unless mandatory law requires otherwise, this policy is governed by the laws of the State of Texas, United States, without regard to conflict-of-law principles.