Responsible Disclosure

NeedStreet is highly committed to the security of our platform applications and the data generated in the usage of these applications. If any instance of a vulnerability is found in our applications and systems, it is critical that we are notified as early as possible to prevent any potential damage.

We are grateful to you for to share information regarding a security vulnerability with us. The following process and terms apply.

Vulnerability Notification Process

Should you find a vulnerability please send the vulnerability report to us confidentially by email at the email address responsibledisclosure@continuouscare.io . In your report please include:

  1. Description of the vulnerability

  2. Clear steps to reproduce the issue (including logs, screenshots, responses, or other evidence); proof of concept code or video;

  3. How you found the issue

  4. Your perspective on impact and mitigating steps

  5. Your name and contact details

We will get back to you once we have investigated the reported vulnerability properly. Please allow us a minimum of 7 working days to respond.

Responsible Disclosure Terms

  • As soon as you have identified a vulnerability, you must cease testing of it and report it as described above.
  • You may not engage in any denial of service (DOS) attack
  • You may not use automated tools on our applications as part of your security research without our consent, nor cause any degradation of our application services
  • You may not compromise the privacy and security of any user data, nor cause its modification, misuse or destruction in any way, during your research
  • You may not use social engineering or phishing to solicit login passwords or credentials from our employees, users, contractors, or third-parties is strictly prohibited
  • You may not use any kind of malware as part of your security research of our systems
  • You may not compromise our application infrastructure as part of your security research
  • Submitting a vulnerability report with/without remedial suggestions does not accord a security researcher any IP rights in our applications

Hall of Fame

If a new vulnerability is confirmed we will add you to our hall of fame. Vulnerabilities which have already been reported will be credited to the first reporter of the issue. Vulnerabilities in third-party integrations, plug-ins and libraries, do not qualify for inclusion.

Technopark, Trivandrum

Patient Engagement

Presence Management

Practice Management

Solutions

Healthcare Providers

Your Patients

Practice Marketing

Quick Links

Support

Virtual Practice Mobile App

  • Virtual Practice for Doctors iOS App
  • Virtual Practice for Doctors Android App

© 2024 NeedStreet All Rights Reserved