RDP Bug Bounty Program
This program does not encompass the Company’s marketing web site (www.resortdata.com)
We reserve the right to make a final decision regarding the severity of a reported vulnerability. Upon receipt of the report, we will conduct an internal investigation and determine the severity of the vulnerability by considering multiple factors, including but not limited to:
You will be eligible for a bounty only if you are the first person to disclose an issue not previously known to us. Rewards for valid bugs are paid based on the severity of the qualifying bug, to be determined by the Company at its sole discretion. Reward amounts typically range from $100 to $500. Rewards cannot be paid to individuals or organizations if prohibited by US law. Rewards cannot be paid to non-US governments or agencies.
The final award may be higher based on the impact of your report. Bounty payments are made via PayPal, which is currently our preferred method of payment, but we reserve the right to change the payment method at our sole discretion.
Any activities conducted in a manner consistent with this policy will be considered authorized conduct. If legal action is initiated by a third party against you in connection with activities conducted under this policy, we will take steps to make it known that your actions were conducted in compliance with this policy.