Security Policy

At Prism Writing LLC, security is fundamental to everything we do. We are committed to protecting the confidentiality, integrity, and availability of our systems and your data. This policy outlines our security practices and your role in keeping our platform secure.

We take security vulnerabilities seriously and appreciate the work of security researchers in helping us maintain a secure platform. If you discover a security vulnerability, please report it responsibly.

Disclosure Guidelines

When reporting a vulnerability, please:

• Provide detailed information to reproduce the vulnerability
• Give us reasonable time to fix the issue before public disclosure
• Do not access, modify, or delete data belonging to others
• Do not perform attacks that could harm our service availability
• Do not use automated vulnerability scanners without permission

Safe Harbor

We will not pursue legal action against security researchers who discover and report vulnerabilities in good faith, following these guidelines. We consider such activities to be authorized testing.

Security is a shared responsibility. Here's how you can help keep your account secure:

• Use a strong, unique password for your account
• Enable multi-factor authentication when available
• Never share your login credentials with others
• Log out of shared or public computers
• Report any suspicious activity immediately
• Keep your devices and browsers updated
• Be cautious of phishing emails and suspicious links

Our security practices are designed to meet or exceed industry standards and regulatory requirements:

• OWASP: We follow OWASP security guidelines and best practices
• GDPR: We comply with EU data protection requirements
• CCPA: We comply with California privacy requirements
• Arizona Law: We comply with A.R.S. § 44-7501 breach notification requirements
• WCAG 2.1 AA: Our platform meets accessibility standards

For security-related inquiries or to report a security concern: