• Sign In
  • Create an Account
Toggle Nav
My Cart
Search
Advanced Search
  • Compare Products
Menu
Account
Group of hikers from Hiking in London on a winter walk in the parkGroup of hikers from Hiking in London on a winter walk in the park
Hiking in London group during a winter walk in the park
Security Contact - Hiking in London

Security Contact and Responsible Disclosure Policy

At Hiking in London, we take the security of our website and our users' data very seriously. We appreciate the efforts of security researchers and individuals who responsibly discover and disclose any vulnerabilities.

How to Report a Security Issue

  1. Send an email to our security team at: events@hikinginlondon.co.uk with the subject line: "Security Vulnerability Report".
  2. Optionally, call us at +44 7535295739 if the issue is extremely urgent (please note that email is our primary channel for written reports).
  3. Include detailed information about the vulnerability, steps to reproduce it, and the potential impact it may have on our website or users.
  4. If possible, provide supporting evidence such as screenshots or logs.

PGP Encryption (Optional)

If you wish to send us encrypted information, please use our public PGP key (link here if you have one). Currently, we do not require encryption, but you may protect sensitive details if you prefer.

Our Commitment

  • We will acknowledge your report as quickly as possible (usually within 72 hours).
  • We will investigate the report and do our best to address the vulnerability promptly.
  • We may request additional information or clarification if needed.
  • We will notify you once the issue is resolved or if we need more time to fix it.

Scope

This disclosure policy applies to vulnerabilities found on our main site (www.hikinginlondon.co.uk) and any subdomains. It does not cover external services, third-party sites, or integrations not controlled by us.

Responsible Disclosure

We kindly ask that you:

  • Avoid exploiting any vulnerability you discover (e.g., do not download large amounts of data, manipulate servers, etc.).
  • Report the issue to us without making it publicly known.
  • Give us a reasonable timeframe to fix the issue before sharing it publicly, if public disclosure is your intention.

Acknowledgements

We value those who take the time to responsibly disclose vulnerabilities and help us improve our security. Depending on the nature of the vulnerability, we may publicly acknowledge your contribution on our website once resolved. Please let us know if you prefer to remain anonymous.

Thank you for helping us keep Hiking in London secure!

© Hiking in London Club - Tue 21 Jan 2025

Copyright © Club Hiking In London Ltd: Founded in 2016 - 2025 and registered in BMC. All rights reserved.