Kaseya develops and adheres to strict playbooks for rapid response as soon as suspicious activity is reported and validated. Kaseya’s policy is to isolate the source of the incident and limit impacts while establishing transparent communication channels as the source of truth. Kaseya partners with security researchers, digital forensics and incident response (DFIR) firms, and law enforcement authorities to assure a state of readiness to swiftly respond. If you have a suspected incident to disclose, please provide details to [email protected].

We welcome responsible, professional and discretionary disclosure of vulnerabilities by security researchers and the public to help improve our security. If you believe you have discovered a vulnerability, privacy issue, exposed data, or other security related issue in any of our infrastructure or IT Complete modules, then we want to hear from you.

Kaseya Disclosure Policy – Datto Disclosure Program