Security and Responsible Disclosure

Last updated: 15 September 2025

Reporting

Email suspected vulnerabilities to security@focuser.co.uk. Include steps to reproduce and do not share details publicly. We will acknowledge receipt within 5 working days.

Please do not

• Access data that is not yours
• Exploit issues beyond what is necessary to prove impact
• Run automated scanners that could degrade service

We do not currently offer a bug bounty. We are happy to credit researchers who follow this policy.