TrialsNest
Sign Up
Legal

Vulnerability Disclosure Policy

Responsible vulnerability reporting scope, safe harbor, and expectations.

Vulnerability Disclosure Policy Effective Date: 04/29/2026 We welcome responsible reports of security vulnerabilities.

Scope

In scope:

www.trialsnest.com [App URL] [API URL] Out of scope:

Denial-of-service attacks Social engineering Physical attacks Spam Automated scanning that degrades service Accessing, modifying, deleting, or exfiltrating user data

Reporting

Send reports to security@trialsnest.com with:

Description of the issue Steps to reproduce Impact Screenshots or proof of concept if safe Your contact information

Safe Harbor

We will not pursue legal action against good-faith security research that follows this policy, avoids harm, avoids privacy violations, and gives us reasonable time to fix the issue.

Related legal pages
Terms of Service
Rules for using TrialsNest, account responsibilities, communications, and service limitations.
Privacy Policy
How TrialsNest collects, uses, shares, protects, and retains personal information.
HIPAA Privacy & Security Notice
How TrialsNest handles protected health information when HIPAA applies.
Cookie Policy
Cookies, tracking technologies, sensitive health pages, and user choices.
SMS/Text Messaging Terms
Terms for text message opt-in, frequency, costs, HELP, STOP, and support.
Electronic Communications & E-Sign Consent
Consent to receive notices, disclosures, authorizations, and communications electronically.
Cookie preferences
Learn more about cookies

Essential cookies keep the site working. Optional cookies help improve traffic and regional insights.