Responsible disclosure policy

Kiwa finds protection of our and our customers data and the security of our systems and our websites of utmost importance. We therefore strive for a high level of security. Despite the great care we take with respect to security, weaknesses can still remain. Kiwa has a responsible disclosure program where discovered vulnerabilities in the Kiwa infrastructure can be reported.

Please report discovered vulnerabilities to us, so we can take the necessary measures to better protect our customers and systems. Kiwa uses the Intigriti security research platform, for the administration of our Vulnerability Disclosure Program. Please stick to the terms and conditions as outlined in the vulnerability disclosure program as outlined on the security research platform, and do not abuse any discovered vulnerabilities.

Please report any discovered vulnerabilities via the following site:

Rijswijk, Holland, February 2024.