Report Security Issue

Please contact us immediately if you discover any security vulnerabilities on NKC Gold. All valid reports will be taken seriously, and we will work to resolve verified issues as quickly as possible. This security program is managed and operated by NKC Gold LLC.

SECTION 1 – CORE PRINCIPLES

NKC Gold LLC will not pursue legal action or investigation against individuals who submit vulnerability reports in accordance with the guidelines below:

1. Allow Reasonable Time: Provide sufficient time for us to investigate and remediate the issue before any public disclosure.
2. Respect User Privacy: Do not access, retrieve, or modify personal data belonging to other users.
3. Act in Good Faith: Avoid service disruption, data destruction, or any action that could negatively impact other users.
4. Do Not Exploit: Do not use the vulnerability to access sensitive data, gain unauthorized privileges, or create additional risk.
5. Follow Applicable Laws: Ensure all actions comply with relevant local and international laws.

SECTION 2 – BOUNTY PROGRAM

NKC Gold LLC appreciates the efforts of ethical security researchers. At our sole discretion, monetary rewards may be granted for valid and impactful vulnerability disclosures, depending on severity and potential business risk. To qualify, reports must follow our core principles and demonstrate a genuine security risk to our systems.

SECTION 3 – NON-ELIGIBLE SUBMISSIONS

The following issues are not eligible for rewards: spam reports, social engineering attempts, phishing campaigns, missing SPF/DMARC configurations, clickjacking on non-sensitive pages, and Denial-of-Service (DoS) attacks.

How to Submit a Report

When submitting a vulnerability report, please include detailed reproduction steps, potential impact assessment, and any relevant screenshots or supporting documentation.