Responsible Disclosure

28 Apr 2015

At Context we are committed to ensuring and improving the security of our clients. Whether for clients or our own purposes, we regularly carry out independent security audits and vulnerability research against third-party software and hardware products. With the ever increasing number of vulnerabilities identified during these independent assessments, Context has elected to publish its Responsible Disclosure Policy which governs Context’s approach to reporting vulnerabilities to affected vendors in order for fixes tobe released.

This policy has been designed to protect our clients,vendors and users of affected products in equal measures. We believe that providing adequate time for a vendor to issue fixes for critical vulnerabilities, whilst maintaining disclosure timeframes provides the best balance for all parties involved.

To read the policy in full please click here.

We endeavour to review, and if deemed appropriate,amend this policy regularly. Please feel free to contact us for more details at

CHECK IT Health Check Service
Cyber Essentials
CESG Certified Service
First - Improving Security Together
BSI ISO 9001 FS 581360
BSI ISO 27001 IS 553326
PCI - Approved Scanning Vendor
NCSC CCSC - Assured Service Provider
ASSURE Cyber Supplier - CAA