Contact: mailto:security@time.global
Expires: 2025-12-31T23:59:59.000Z
Encryption: https://time.global/pgp-key.txt
Acknowledgments: https://time.global/security-acknowledgments
Preferred-Languages: en
Canonical: https://time.global/.well-known/security.txt

# Security Policy

We take security seriously at time.global. If you discover a security vulnerability, please report it to us responsibly.

## Reporting Security Issues

Please report security vulnerabilities to security@time.global. We appreciate your responsible disclosure.

## What to Include

- Description of the vulnerability
- Steps to reproduce
- Potential impact
- Suggested remediation (if any)

## Response Time

We aim to acknowledge security reports within 48 hours and provide a detailed response within 5 business days.

## Safe Harbor

We will not take legal action against security researchers who:
- Make a good faith effort to avoid privacy violations
- Do not access, modify, or delete user data
- Report vulnerabilities responsibly
- Do not perform testing on production systems without permission