Legal document
Security
Security contact and vulnerability reporting for etail.me.
- Last updated
- May 25, 2026
- Version history
- Current version
Report vulnerabilities to security@etail.me. Do not access, modify, or exfiltrate another user’s data while testing.
Reporting
Send vulnerability reports to security@etail.me with affected URLs, reproduction steps, impact, and whether data was accessed.
Use the public security contact and avoid destructive testing, persistence, spam, social engineering, or access to another user’s data.
Platform controls
etail.me uses signed download URLs, hashed API keys, OAuth scopes, webhook signature verification, rate limits, logging, and ledger-backed financial records to reduce abuse.
We may rotate credentials, revoke tokens, disable clients, or suspend accounts when a security issue requires containment.