Salon & Spa Software
Responsible Disclosure Policy
Responsible Disclosure Policy
SalonRunner Software, LLC is providing this service to help ensure a safe and secure environment for all users.
If external parties find any sensitive information, potential vulnerabilities, or weaknesses, please help by responsibly disclosing it to ResponsibleDisclosure@fullsteam.com.
This policy applies to SalonRunner Software, LLC hosted applications and to any other subdomains or services associated with products. SalonRunner Software, LLC does not accept reports for vulnerabilities which solely affect marketing websites (rosysalonsoftware.com), containing no sensitive data.
Security researchers must not:
- engage in physical testing of facilities or resources,
- engage in social engineering,
- send unsolicited electronic mail to SalonRunner Software, LLC users, including “phishing” messages,
- execute or attempt to execute “Denial of Service” or “Resource Exhaustion” attacks,
- introduce malicious software,
- execute automated scans or tools that could disrupt services, such as password guessing attacks, or be perceived as an attack by intrusion detection/prevention systems,
- test in a manner which could degrade the operation of SalonRunner Software, LLC systems; or intentionally impair, disrupt, or disable SalonRunner Software, LLC systems,
- test third-party applications, websites, or services that integrate with or link to or from SalonRunner Software, LLC systems,
- delete, alter, share, retain, or destroy SalonRunner Software, LLC data, or render SalonRunner Software, LLC data inaccessible, or,
- use an exploit to exfiltrate data, establish command line access, establish a persistent presence on SalonRunner Software, LLC systems, or “pivot” to other SalonRunner Software, LLC systems.
Security researchers may:
- View or store SalonRunner Software, LLC nonpublic data only to the extent necessary to document the presence of a potential vulnerability.
Security researchers must:
- cease testing and notify us immediately upon discovery of a vulnerability,
- cease testing and notify us immediately upon discovery of an exposure of nonpublic data, and,
- purge any stored SalonRunner Software, LLC nonpublic data upon reporting a vulnerability.
Thank you for helping to keep SalonRunner Software, LLC and our users safe!
Footer
About Us
Rosy Salon Software was founded by former Salon & Spa owners to develop common sense management solutions specifically for Salons & Spas. We are fully committed to help grow your business!
Our Mission
To provide full-featured salon and spa management Software as a Service (SaaS) to the beauty industry that leverages the latest technology and allows users to build deeper relationships with clients while increasing their revenue and profitability.
Get In Touch
Rosy Salon Software
SalonRunner Software, LLC
540 Devall Dr, Suite 301
Auburn, AL 36832
(877) 346-7679
