Compass Bug Bounty Program

At Compass, we understand that the protection of consumer data is a high priority and extremely significant responsibility that requires constant monitoring. We deeply value all those in the security community that help us in ensuring 100% security of all our systems at all times.

We believe that responsible disclosure of security vulnerabilities help us in maintaining the utmost security & privacy of all our users, and we invite security researchers to report any security vulnerability that they may come across in our products. Those submitting any bugs within the scope of our program, will be heartily rewarded for their support & security expertise.

How it works

Reach Out

Reach out to us at cs@xoxoday.com to raise a ticket, if you happen to notice any potential security issue whilst meeting all the required criteria in our policy.

Validation

The validation of the reported issue in terms of severity & authenticity will be done by our security team in around 90 days.

Fix Issues

Post validation, steps will be taken to fix the security issues in accordance with our security policies.

Ticket Done

To influence tail-end performance, high achievers or PIP Programs

title

More than 69% of salesmen feel CRMs are a force-fit. See how gamification helps you improve adoption as well as making your data streaming even more powerful.

Read Article

Eligibility

To be eligible for a reward, the following requirements must be met by you:

First Person

You must be the first person to report a vulnerability to Xoxoday.

In scope

The issue must impact any one of the applications listed under our defined scope.

Qualifying

The issue must fall under the ‘Qualifying’ bugs listed.

Public Domain

Publishing of vulnerability information in the public domain is not allowed.

Confidential

Any information about the vulnerability issue must be kept confidential until the issue is resolved.

No Violation

No privacy policies set by Xoxoday must be violated when performing security testing.

To be eligible for a reward, the following requirements must be met by you:

No items found.

Found a Bug?

Reach out to us to raise a ticket, If you happen to notice any potential security issue whilst also meeting all the required criteria in our policy.

Report