Responsible disclosure of security vulnerabilities

Iconfinder is used by a lot of people every day, and we want to make sure that using it is safe for everyone. So, if you discover a security vulnerability, we greatly appreciate your help by disclosing it to us in a responsible manner.

If you've discovered a security vulnerability or concern, please e-mail us as soon as possible at [email protected]. As security is our highest priority, we'll work with you to make sure that the issue is understood and addressed as soon as possible.

Please act in good faith towards our users' privacy and data during your research, testing and disclosure. We won't take legal or administrative action against you or your account if you act responsibly and follow the following disclosure guidelines:

• Provide us with a reasonable amount of time to address a security vulnerability before publishing your find.
• Make a good faith effort to avoid privacy violations, destruction of data, and interruption or degradation of our service during your research and testing
• Only target accounts you have created for the purpose of your security research, and never attempt to access or disrupt another user's service

Please note that the above applies only the Iconfinder platform (www.iconfinder.com). Security issues discovered with third party software and providers such as on the Iconfinder blog and Iconfinder support forum should be responsibly disclosed to the developers/vendors.