Vulnerability Disclosure Policy

  1. Purpose
    This policy outlines our approach to handling security vulnerabilities in our products and services. We prioritize clear and transparent communication regarding data processing practices.
     
  2. Scope
    This policy applies to all devices and services provided by Fermax and addresses interactions with third parties, including advertisers.
     
  3. Data Storage and Processing
    We are committed to ensuring the privacy and security of our users’ personal data. Importantly, we do not collect or store any personal data in the cloud. All data and usage history are securely stored locally within the hub itself. This approach ensures that:

    No Cloud Storage: Personal data is not transferred to or stored in any external cloud services.
    Local Data Management: All data remains on the device, providing users with greater control over their information.
     
  4. Transparency in Data Handling

    While we do not process or store personal data externally, we believe in maintaining transparency about how any data retained on the hub is managed.
    This includes:

    Types of Data Stored: The hub may retain device identifiers and usage history solely for operational purposes.

    Purpose of Local Data Storage: Data stored on the hub is used exclusively for: Enhancing product functionality
    Troubleshooting and product support
    Improving user experience

    Third-Party Involvement: We do not share any personal data with third parties, including advertisers. Our commitment is to maintain user privacy without external data sharing.
     
  5. Reporting Vulnerabilities
    We encourage users and security researchers to report any vulnerabilities they discover. Please submit your findings through our designated reporting channel at [contact information or link to submission form].
     
  6. Response to Vulnerability Reports
    Upon receiving a report, we will:
    Acknowledge receipt within 1 working day.
    Assess the reported vulnerability.
    Communicate with the reporter regarding our findings and any actions taken.
     
  7. Commitment to Security
    The security of our products and services is paramount. Our team is dedicated to promptly addressing vulnerabilities to protect user privacy and data integrity.
     
  8. Updates to this Policy We may periodically update this policy to reflect changes in our practices or regulations. Users will be notified of significant changes through our website or direct communication.
     
  9. Contact Information
    For any questions or concerns regarding this policy, please contact us at vida@fermax.com.sg.