Security Policy
🛡️Our Commitment to Security
At Vantage Lane, we take the security of our systems, customer data, and operations very seriously. We are committed to maintaining the highest standards of security and privacy in the luxury transportation industry.
This policy outlines our approach to security vulnerabilities, responsible disclosure, and our commitment to working with the security research community.
🚨Reporting Security Vulnerabilities
✅ Please DO
- • Report vulnerabilities to security@vantagelane.com
- • Use PGP encryption for sensitive reports
- • Provide detailed reproduction steps
- • Allow reasonable time for remediation
- • Act in good faith and follow responsible disclosure
❌ Please DON'T
- • Access, modify, or delete user data
- • Perform tests that may affect service availability
- • Disclose vulnerabilities publicly before resolution
- • Violate privacy of users or employees
- • Perform social engineering attacks
🤝Our Commitments to You
Quick Response
Acknowledge receipt within 48 hours of report submission
Clear Timeline
Provide resolution timeline and regular status updates
Recognition
Credit responsible researchers on our acknowledgments page
🌐Scope of This Policy
✅ In Scope
- • vantagelane.com (main website)
- • www.vantagelane.com
- • api.vantagelane.com
- • booking.vantagelane.com
- • Mobile applications
- • Customer-facing systems
❌ Out of Scope
- • Third-party services and integrations
- • Physical security of offices/vehicles
- • Social engineering attacks
- • Denial of Service attacks
- • Issues requiring physical access
- • Spam or social engineering reports
Get in Touch
Primary Contact:
security@vantagelane.com
PGP Key: Available at /.well-known/pgp-key.txt
Alternative:
Contact form at /contact
Response time: Within 48 hours
This policy is effective as of November 5, 2025. We reserve the right to modify this policy at any time.
For questions about this policy, contact us at security@vantagelane.com