For Professional Researchers: Security Disclosure Policy
The Royal Bank of Scotland’s dedicated team of security professionals work vigilantly to help keep customer information secure, and we recognise the important role that security researchers and our customers also play. We run an amnesty for security researchers who, in good faith, identify vulnerabilities our online systems.
A Security Disclosure is something you want to tell us about which impacts the confidentiality, integrity, or availability of bank or customer data or systems.
If you have identified a potential vulnerability you can email us at firstname.lastname@example.org after reading the Security Disclosure Submission Terms, which contain all the information you need to be aware of before making a submission.