People.ai

People.ai Security Reporting

Responsible Disclosure Policy

Responsible Disclosure Philosophy

People.ai believes effective responsible disclosure of security vulnerabilities requires mutual trust, respect, transparency and common good between People.ai and Security Researchers. Together, our vigilant expertise promotes the continued security and privacy of People.ai customers, products, and services.

Security Researchers

People.ai accepts vulnerability reports from all sources such as independent security researchers, industry partners, vendors, customers and consultants. People.ai defines a security vulnerability as an unintended weakness or exposure that could be used to compromise the integrity, availability or confidentiality of our products and services.

Our Commitment to Researchers

  • Trust. We maintain trust and confidentiality in our professional exchanges with security researchers.
  • Respect. We treat all researchers with respect and recognize your contribution for keeping our customers safe and secure.
  • Transparency. We will work with you to validate and remediate reported vulnerabilities in accordance with our commitment to security and privacy.
  • Common Good. We investigate and remediate issues in a manner consistent with protecting the safety and security of those potentially affected by a reported vulnerability.

What We Ask of Researchers

  • Trust. We request that you communicate about potential vulnerabilities in a responsible manner, providing sufficient time and information for our team to validate and address potential issues.
  • Respect. We request that researchers make every effort to avoid privacy violations, degradation of user experience, disruption to production systems, and destruction of data during security testing.
  • Transparency. We request that researchers provide the technical details and background necessary for our team to identify and validate reported issues, using the form below.
  • Common Good. We request that researchers act for the common good, protecting user privacy and security by refraining from publicly disclosing unverified vulnerabilities until our team has had time to validate and address reported issues.

Vulnerability Reporting

People.ai recommends that security researchers share the details of any suspected vulnerabilities using the web form below. The People.ai Security team will acknowledge receipt of each vulnerability report, conduct a thorough investigation, and then take appropriate action for resolution. To encrypt a submission via email, use the public key provided on this page.

Thank you

People.ai values the research community. Contributions from researchers like you can help protect the privacy and security of our customers. People.ai does not offer a bounty program or provide compensation in exchange for security vulnerability submissions.

Encryption

Alternatively, you may send vulnerability submissions or questions to the Comcast Security Team via email to security@people.ai.com. Please use the encryption key, here.

—–BEGIN PGP PUBLIC KEY BLOCK—–
mQINBF2fhAkBEACr+cy630fYXPGPDM5gXgTm6E01HymwRTpVgF9WZ9x5UkUG12R9 qXbwelc1Jon/pLC8yYLpgOjaOb0SkKeZgsXLcRdB1V8AmCnS5rKb0sl1a/FHQx7I UksDBM0FYywStXYXH006UWgh4H6gA7qfZi4Vqc0Jfa8Nm05IU1jTDKU3lrXlfa4E L3nM57gKCB8JbTvMHOCfOvUz7OvUVCtWd/M0VlCj2d95j5phaHocGkjYf2sYgOAX szK2VV/xOJ5LeXVowtB/93xCUWKdHx2LQBOG9vmymBAqCVv1bqEFR4lpz7QEN5KB 1d/ImGO8+kbQtaUhpxDSxv7STMrwg+paNTdZzzTIz7zJGlNDtdLwRJL2QWh3maq8 t7sl9axEUD15HX+Axym3Qbc0PJDlM877IxruAtRfgWfhL65hk38sX9hawT41mz6D EhYR+9UiwGzvIYDQy/5OTBlDhKaN0ZkniELScT/+70nF/XkKudUWpsuglx5iHjli d1gFO1/eWE7KOc1sgZKXb73ewIJ08RMQTTJR43SoEcE8mLK+XuCRWa2d271T+3zV Kbh1Bs0aiGjRt3/ZeanPdbGWHByweR/Los/uG1fFjVqdI68U39ClIA9F47cfKyH0 AFaWTTXyoFxbgWVJhRmPFO82ETCpJyz+lMjCxzEtOwHueNg09kw7fZttLwARAQAB tFJTZWN1cml0eSBAIFBlb3BsZS5haSwgSW5jLiAoVnVsbmVyYWJpbGl0eSBEaXNj bG9zdXJlIFByb2dyYW0pIDxzZWN1cml0eUBwZW9wbGUuYWk+iQJOBBMBCAA4FiEE +ido7AU0+wZhwRiEpTBOZIZhhR4FAl2fhAkCGwMFCwkIBwIGFQoJCAsCBBYCAwEC HgECF4AACgkQpTBOZIZhhR6D8w//bXnyiy/L6whoEqRQ/44GiNCuEVQJ2a8yowKP Laxyi92FdaT2uhDdkK7LTFjJV7U12RVyGnYlOSYbled9fbrffFCcEXwaXpF/Wq05 sp4wsK4au6Rtp+H6+3uIXmX5LpISSMWz+j2Uu2D0Bhh2QR4rWNMaxeqbAqBBedzD 6IFP3meyaJoVynv/vzLuFNDzZAUO02oWZGmq1eLIwqLWxYfpucvdN2lHn+fwbzoM LsmZoKxXg+sq9ixCyHMb6hwDF26DEWvNwOe3+YsxElqGjY7ck5tr+rbfyC5fAZcs cxqlM87z/a+NBeiIjW0sc1zyw3aJqHMCwV5xoxcJUD3VTpVSnTo1dyc/eMwSCHqQ XgIcrdOKSkBjj+Y3GyfFagnThU6sCPbIPV4yAd1mYkauEi2MtvGE2QX0yyhsYj9V OEzu0dUBeIJwgM7XlSCC0i1UDau/3/gJaD9PxEtPN7EB6awoV9dngnbP1LUmw74i 5ajD59czYc4/8rs791UWV1Y7y8XbzEml0zKkIvLORKDRbquX71QLQuZTU1GK0lYq gagNc5V3cPxDTv6HLJSOUU133J3tfYaTBh8OImOO+tAqIZb7Eiib9Fo0gzABaMPw vEaqu4TomhdC+12HQFH5/mhWsJFtW6ESlTQKRqAeI3LxULYl2LQCIYkqZtZdO6HC lB50C1K5Ag0EXZ+ECQEQALVsqHuZSILlOZHrL1restMwEIun5uQ2vANUg6Pq5hsS b5UCOLW7cFkCI6NAvK5QigIL2NKYl8Obfdc4osFEyxPntOqnG7fHKT3FBmF+jP23 lvdQ28MLQ4r0lOzME186y5QBkcpNT3nPLtEIKid/yE3/ueSjwbtQR6uwSzV6qOvC /cZ2zustwDFosNT6bAyXGa4f/hUou/anPHPD7l1qatca0JVuLsh40D7YBZyl3kFB ioyqv/6IzEWwykJj6HveoiKn+GJCLdOWoW5jvKQD6ZwPBQ6ZjiNUIA4XCFBSTXQe bJINDaA6RwRZNJNHYPGR21zEmugzIT0IIOUSDgdau+KGFXNRNobRNb/yMvWYDumd 8M4DBKI57jH79ePtYkDNZrv4wq24L57aF3zxgiizdEVmf+Ne7zIVMX6X2lgnvL0O CHXie2G0/AHVZtchBWwUARirvIIBTqUQ+HmjKXmOhJL3qegbOY0UcdSWbMdapVD5 hFFdK885BSGcRV3xkCfbI2sjyulQOVqQ3vX9g9i/2ojUzX6kXSA01QXsNr4l/+es Xv8iJHj8lrIcV7MFjrzN20wanIeNvsvED00yu8BcDw/CP8ojTlLPdafr7JcwYcnd 63HXyKOv/BEZhLIgW5IIQnAVjZ7Yy2A5T7cqLXzhCohpSY1YLIUIX5D1QveW5WZv ABEBAAGJAjYEGAEIACAWIQT6J2jsBTT7BmHBGISlME5khmGFHgUCXZ+ECQIbDAAK CRClME5khmGFHlu5D/4iY1GoZdiwdR/09ieoXzVaZ3qdtj/SIkEKPtn0yx6SyrBV JuYWVNXCK6HNTI2Y7lt+46gvuO6kYCaBP1AFCqy359dcj7R25nm7Md18Ko0Kq+Td J2K5cLqot8UbdncukOOwKJus7Cn38JUgcBnf+HVNKTTZf8iSDfHnUAQ1JFZSvdeE YRq1OBv82Z4/ShiGbJUfgk8Unm03+mvn7AjFf5qIOLFJinNjvNorKQk3S8gBP6yp GzLf4NV+QWYcxjGXpjhPkc5SdEG9j57aZnXfL41UBobhi/2jJBHWC90dr9sW9Ney m7yOiuygg/c0PMdf1m4uJ3fxuwpa4HETc9SzyXOrwr6ic9TTQfYdUDxYMpcNGDsU Xa4YL4XoyW38ve1zGvAsIvTtkaUNJAINTaTOJSvxhSfPJDEVFEc4sPboFmS04+gT hHq3uJ8biVRj08lJYXFNbSSKabjUlM4fvXvH5qXgxipMyQACFzFMaMJSQLmu57q2 a7iIur9I+gEsHkKasHyXSWhrp4j+77UHDUypfdEDWZ3nz/d07YZ7+lcZ0gWjmQe4 sWGaZ1T+NeR9TWjdsYHuPbW8o35uje+JGxZcwej29s1UGLnefJ54X/hruQgaiCRu ExBJ3gKhn8d6lfO3XoRF1cCiclwffF8tG3x94ziyr5KmddCQnMzVgEH96h3PAA== =rmVj
—–END PGP PUBLIC KEY BLOCK—–