How to Report
Email admin@aerolyse.co.uk or info@aerolyse.co.uk with the affected URL, a clear description, reproduction steps, impact, and any safe proof of concept.
Scope
This policy covers the public Aerolyse website and public website files. Third-party platforms linked from the website are outside Aerolyse's control and should be reported to the relevant provider.
Safe Harbour Expectations
Please avoid privacy harm, data exfiltration, destructive testing, social engineering, denial-of-service, spam, physical attacks, or actions that interrupt website availability.
Recognition
Aerolyse will acknowledge useful, good-faith vulnerability reports and may recognise reporters by name or handle with their permission once the issue is reviewed and resolved.
Response
Aerolyse will aim to acknowledge reports promptly, review them in priority order, and communicate remediation status where appropriate.
Security.txt
The machine-readable security contact file is available at /.well-known/security.txt.