boAt Bug Bounty Program

At boAt, we take security seriously and are dedicated to keeping our community safe. If you are a security researcher or expert who believes you have discovered security flaws in the boAt website or services, we would appreciate it if you would appropriately notify us.

Please provide us with a thorough description of the problem, as well as the steps to reproduce it. We have faith in the security community to go to great lengths to secure the data and privacy of our consumers.

Disclosure Policy

Let us know as soon as possible upon discovery of a potential security issue, and we'll make every effort to quickly resolve the issue.

Provide us a reasonable amount of time to resolve the issue before any disclosure to the public or a third party.

Make a good faith effort to avoid privacy violations, destruction of data, and interruption or degradation of our service. Only interact with accounts you own or with the explicit permission of the account holder.

Scope

The scope of issues is limited to technical vulnerabilities in the BoAt website and services. Please do not attempt to compromise the safety or privacy of our users (so please use test accounts), or the availability of boAt through DoS attacks or spam. We also request that you not use vulnerability testing tools that generate a significant volume of traffic.

In-Scope

• https://support.boat-lifestyle.com/
• https://wearable.boat-lifestyle.com
• https://auth.boat-lifestyle.com
• https://app.boat-lifestyle.com
• https://boat-lifestyle.com

Out-of-Scope

Subdomains of our website (unless mentioned in the "in-scope" section)

Note: We accept out of scope reports and rewards are based on the impact and severity of the Bug Reported

Rewards

We offer Coupon Codes which can be claimed on our website on purchase as a reward for successful bug reports, which are categorised based on their priority level.