BizMerlinHR Named "Cool Vendor" for HCM by Gartner    Learn More

Responsible Disclosure of Security Vulnerabilities

BizMerlin is committed to the privacy, safety and security of our customers.

BizMerlin aims to keep its service safe for everyone, and data security is of the utmost priority. If you are a security researcher and have discovered a security vulnerability in our product, website, or service, we appreciate your help in disclosing it to us in a responsible manner.

If you are a current customer

If you feel your account may have been compromised, or if you suspect fraudulent behavior, please, send us an email at “hello_AT_bizmerlin_DOT_com” and  your issue will be investigated immediately and thoroughly.

If you are a security researcher or have discovered a vulnerability

If you think you’ve found a security vulnerability in BizMerlin please send the the email at “whitehat_AT_bizmerlin_DOT_com”

  • Please include as much information as possible in your report, including a way for us to reproduce the issue. “Proof-of-Concept” programs, tools, or test accounts that you’ve created are welcome.
  • Please do not make your research or findings public (or share them with anyone) until we have had an adequate time to investigate and deploy a fix. We will notify you when the security vulnerability has been patched.
  • Tell us how to identify you and your company (if applicable) so we may enshrine you in our Hall of Fame section below.