Vulnerability Disclosure Program Summary

REV is committed to protecting the privacy and security of our systems and users. If you believe you’ve discovered a potential security vulnerability in one of our digital assets or services, we encourage you to report it to us promptly and responsibly.

Scope & Rules of Engagement

This policy applies to any vulnerabilities in our digital assets that REV has control over. Researchers must:

  • Not engage in testing activities which involve or would likely result in social engineering, physical access attempts, privacy violations, or the causing of harm, e.g., denial of service, data destruction, etc. 
  • Not access or modify data that is not their own
  • Comply with applicable laws
  • Stop testing and report immediately upon discovering a vulnerability
  • Not disclose vulnerability details publicly before REV’s team has completed remediation
Businessmen checking analytical data
Software Programmer Writing Code Close Up

How to Report

Please email your findings to: Security@revtechllc.com 

Include as much detail as possible, including:

  • The affected system or service
  • Steps to reproduce the issue
  • Any supporting evidence (e.g., screenshots, logs)
  • The vulnerability’s potential impact   

Our Commitment

  • We will acknowledge your report within 3 business days.
  • We will not pursue legal action if your testing is done in good faith and within the defined scope.
  • At our discretion, we may work with you in good faith to validate and address the issue(s) promptly.
  • With your express consent, we may credit you for your responsible disclosure.
Colleagues analyzing charts with important data

Thank you for supporting our commitment to the safety of our users and systems.