Information Security

Reporting Information – Security Incidents & Vulnerabilities

 

We take the protection of information, assets and data extremely seriously. If you are a customer, supplier or service provider and discover a security incident or vulnerability connected with Sonplas systems, products or data, please notify us immediately.

 

1. Send an e-mail

• informationsecurity@sonplas.de

 

2. Include the following details

• Brief description of the incident / vulnerability
• Date & time of discovery
• Affected systems, applications or data
• Potential impact (e.g. data leakage, production downtime)
• Immediate actions already taken
• Your contact details for follow-up questions

 

3. Keep data secure

• Do not transmit live sensitive data (passwords, personal data) unencrypted. We will gladly provide our PGP key on request.

 

4. What happens next?

• We acknowledge receipt within one business day and give you a ticket number.
• Our incident team assesses severity and scope, initiates containment and corrective measures, and prioritises the case (critical incidents: response time ≤ 2 h).
• Where contractual notification duties exist, we inform the affected contracting parties without delay.
• After resolution you receive a brief report covering root cause, remedial actions and lessons learned.

 

Please use only the address above. Messages via contact forms or social media cannot guarantee a timely response.

Thank you for helping us keep Sonplas information secure!