Security Policy

Reporting Security Issues

We take the security of Aeriform Studio's systems seriously. If you believe you have found a security vulnerability, please report it to us as described below.

How to Report a Security Issue

Please send security-related issues to security@aeriformstudio.com. Include the following information:

• Description of the vulnerability
• Steps to reproduce the issue
• Potential impact of the vulnerability
• Any suggested fixes (if applicable)

Response Policy

When we receive a security bug report, we will:

• Confirm receipt of your report within 24 hours
• Provide an initial assessment of the report within 72 hours
• Keep you informed about our progress fixing the issue
• Notify you when the issue is resolved

Disclosure Policy

We follow responsible disclosure practices:

• We request time to address issues before public disclosure
• We credit security researchers who report issues (if desired)
• We provide regular updates about reported issues

Security Measures

• HTTPS Encryption: All data transmission is secured using TLS 1.3
• Content Security Policy (CSP): Strict security headers to prevent XSS and other attacks
• Regular Security Updates: Our infrastructure is regularly updated and monitored
• Data Protection: We follow industry best practices for data protection

Contact

For security-related inquiries, please contact: rraeriform@gmail.com

Scope

This security policy applies to:

• Our main website (aeriformstudio.com)
• Our booking and payment systems
• Customer data and personal information