Slide image

VULNERABILITY DISCLOSURE POLICY

Feller Germany GmbH

Our Commitment

The security of our digital products and the protection of our users' data are not optional. They are a standard we hold ourselves to without compromise.

We design and maintain our website and digital services with security as a priority. Even so, vulnerabilities may exist. When they do, we want to know.

This policy outlines how to report potential vulnerabilities or errors in Feller's digital products and services, and the terms under which such reports are received.

Who This Applies To

This policy applies to anyone who interacts with Feller's website or digital services — customers, researchers, partners, and the general public.

If you have identified a potential vulnerability or error, we encourage you to report it responsibly using the contact details provided below.

How to Report

The preferred method of reporting is by using the form on this page.

Alternatively, you may contact us directly at: info@fellertechnologie.de

Your contact information is not required to submit a report. Anonymous reports are accepted and treated with equal seriousness. If you do provide your contact details, we will use them only to follow up with you for clarification if necessary. Please refer to our Privacy Policy for details on how we handle personal information.

What We Ask of You

By submitting a report to Feller Technologie GmbH, you confirm the following:

  • You have not exploited the identified vulnerability in any way, and will not do so other than for the purpose of reporting it to us.
  • You have not engaged, and will not engage, in any testing or research with the intention of causing harm to Feller, its customers, employees, partners, or suppliers.
  • You have not accessed, used, altered, or destroyed any data encountered in connection with the vulnerability, and will not do so.
  • You have not conducted, and will not conduct, social engineering, phishing, spamming, denial-of-service, or resource-exhaustion attacks.
  • You have not tested, and will not test, the physical security of any Feller premises or facilities.
  • You have not violated, and will not violate, any applicable laws in connection with your report or your interaction with Feller's products or services.
  • You will not disclose information relating to your report, the identified vulnerability, or the fact that a report has been made, to any third party.
  • You are submitting your report without expectation of financial reward or any other benefit, and without expectation that the reported issue will be corrected.

What We Ask You Not to Report

The following will not be considered valid submissions unless you can demonstrate a specific, exploitable impact:

  • TLS cipher configurations
  • Missing web security headers
  • Email spam or phishing susceptibility
  • Volumetric or denial-of-service vulnerabilities
  • General "best practice" observations without a demonstrated exploit path

Use of Your Report

Feller Technologie GmbH may use submitted reports for any purpose relevant to improving the security and reliability of our products and services. Where a report includes proposed changes or improvements, you assign to Feller Technologie GmbH all rights to such proposals.

Thank You

Responsible disclosure is a discipline we respect. Every report submitted in good faith contributes to a safer experience for everyone who interacts with Feller.

We reserve the right to update this policy at any time.

Feller Technologie GmbH
Rheinallee 166, 40545 Düsseldorf, Germany

info@fellertechnologie.de