Back to Home

Privacy Policy of Web Secure One

1. Introduction

Web Secure One is committed to cybersecurity and responsible vulnerability disclosure. We take data leaks very seriously and follow a 21-day responsible disclosure policy. If an organization does not respond within this period, we escalate the matter to CERT-IN (Indian Computer Emergency Response Team) as per the guidelines issued by the Government of India.

2. Data Collection and Usage

We collect and process only necessary information related to cybersecurity vulnerabilities and breaches, including:

• Details of the security issue
• Technical logs for verification
• Communication records with the affected company
• Incident reports submitted to CERT-IN

3. Responsible Disclosure Policy (21-Day Rule)

Web Secure One follows a responsible disclosure process to help organizations fix security vulnerabilities before they are exploited.

• Day 1: Initial report sent to the company.
• Day 7: Follow-up reminder.
• Day 14: Final notice before escalation.
• Day 21: Escalation to CERT-IN if no response.
• Incident report copy provided to the company.

Disclaimer: Web Secure One is not responsible for any data leaks or damages after escalating an issue to CERT-IN.

4. Legal Compliance & Government Data Protection Laws

(A) The Information Technology Act, 2000

• Section 43A: Companies must adopt security practices or face penalties.
• Section 72A: Unauthorized disclosure of personal data is punishable.

(B) CERT-IN Guidelines (2022)

• Mandatory reporting of breaches within 6 hours.
• Maintaining security logs for 180 days.

(C) Personal Data Protection Bill, 2019

This bill regulates personal data collection, storage, and processing.

5. Actions Against Non-Compliance

If a company ignores a security report:

• Escalation to CERT-IN.
• Copy of registered report provided to the company.
• Notification to affected users if legally permissible.

6. Disclaimer: Web Secure One’s Liability

After reporting an issue to CERT-IN, Web Secure One is no longer responsible for any data leaks, financial losses, or reputational damage resulting from the vulnerability.

7. Contact Information

If you have any questions or concerns, please contact us at:

Email: websecureone@gmail.com

Website: www.websecureone.com