Responsible Disclosure Policy
At Celsicom AB, we value the security of our systems and data. If you discover a vulnerability, we encourage you to report it responsibly. By doing so, you help us ensure the safety of our customers and services.
Guidelines
- Do not exploit the vulnerability beyond what is necessary to prove it exists.
- Do not attempt to access, modify, or delete data that does not belong to you.
- Provide us with sufficient details so we can reproduce and resolve the issue.
- Act in good faith to avoid privacy violations, data destruction, or service disruptions.
Reporting
Please send your findings to
security@celsicom.se. Preferably encrypted.
Our GnuPG key is here with fingerprint
C6D0 2884 5C28 32B5 0FED A068 4BE3 2F4A ACED B160
We aim to acknowledge reports within 48 hours and provide updates as we work on a fix.
Recognition
Researchers who responsibly disclose valid security issues may receive public recognition here on our Security Hall of Fame.
Security Hall of Fame
We would like to thank the following researchers for their valuable contributions:
| Name | Country | Year |
|---|---|---|
| Ronak Nahar | USA | 2025 |
| Harsh Maheta nakshraja2015@gmail.com |
India | 2026 |