# Disclosures

## Terms of Use

{% embed url="<https://www.eclipse.xyz/terms>" %}

## Privacy Policy

{% embed url="<https://www.eclipse.xyz/privacy-policy>" %}

## Cookie Notice

{% embed url="<https://www.eclipse.xyz/cookie-policy>" %}

## Responsible Disclosure

Our [bug bounty](https://docs.eclipse.xyz/developers/eclipse-bug-bounty-program) is now listed on Immunefi. Start taking a look and wait for the launch to report vulnerabilities!

* Do not disclose vulnerabilities publicly or by executing them against a production network. If you do, not only will you be putting users at risk, but you will also forfeit your right to a reward.
* Do not disclose the vulnerability publicly, for example by filing a public ticket or Github issue.
* Do not test the vulnerability on a publicly available network, either the testnet or the mainnet.