If you have a concern about the security or confidentiality of your data on the CyberVadis platform, contact your dedicated account manager or our security team directly at infosec@cybervadis.com. We take all reports seriously and will respond promptly.
What to report to this channel
Contact infosec@cybervadis.com for:
A suspected data breach or unauthorized access to your assessment data or documents
A security vulnerability you have identified in the CyberVadis platform or services
Contact your dedicated account manager for:
A confidentiality concern about how your documents or results are being handled
Any other concern related to the security or integrity of your data on the platform
If you do not know who your account manager is, contact us at support@cybervadis.com and we will direct your query to the right person.
What to include in your report
Whichever channel you use, please include the following to help us investigate and respond as quickly as possible:
Your company name and the email address associated with your CyberVadis account
A clear description of the concern or incident
The date and time you first noticed the issue
Any relevant screenshots, error messages, or supporting information
Whether you believe the issue is ongoing or has already been resolved
What happens after you report
Our team reviews all incoming reports and will acknowledge your submission as soon as possible. If your report relates to a confirmed security incident affecting the confidentiality of your data, we will notify you of our findings and the actions taken no later than 72 hours after we become aware of the occurrence.
If your account has been compromised
If you believe your CyberVadis account credentials have been stolen or your account has been accessed without your authorisation, do not use the channels above. Follow the account recovery process immediately. See [Can't access your account? How to recover it] for instructions.
CyberVadis security incident commitment
In the event of a security incident that may affect the confidentiality of your data, CyberVadis will notify you as soon as possible and no later than 72 hours after we become aware of the occurrence. This commitment applies regardless of whether you have submitted a report.
For a full overview of how CyberVadis protects your data, see [How CyberVadis protects your data: overview]. For detailed technical information, see [How your data is stored, transported, and accessed: technical detail].