ADP (Automatic Data Processing) is a leading provider of cloud-based human resources management, payroll processing, and workforce management solutions worldwide.
External Program
Submit bugs directly to this organization
At ADP, protecting clients' funds and their data has been, and always will be, a top priority. ADP values the work done by security researchers in improving the security of our products and service offerings. As a result, we encourage responsible reporting of any vulnerabilities that may be found in our site, products or applications. ADP is committed to working with security researchers to verify, reproduce and respond to potential vulnerabilities that are reported in accordance with the below requirements. If this policy and ADP's procedures are followed, ADP pledges not to initiate legal action against researchers for penetrating or attempting to penetrate our systems, provided that the following conditions are met.
Please review these terms before you take any action to test an ADP system. For testing requiring authentication please contact your ADP account team.
While we encourage researchers to report to us any vulnerabilities in a responsible manner, ADP does not permit the following actions:
If you responsibly submit a vulnerability report, ADP will use reasonable efforts to:
We expect you to privately share details of the suspected vulnerability with ADP by sending an email to [email protected]. By sending an email to [email protected] you confirm that you are meeting ADP's requirements of the ADP Vulnerability Disclosure Program.
Provide full details of the suspected vulnerability so the ADP security team may validate and reproduce the issue – please be sure as much detail as possible including the product tested, date, account names etc.
If you would like to report a suspicious email to ADP, please send it to [email protected]
If you would like to report suspected fraudulent activity, please contact your client service representative.