Reporting Information – Security Incidents & Vulnerabilities
We take the protection of information, assets and data extremely seriously. If you are a customer, supplier or service provider and discover a security incident or vulnerability connected with Sonplas systems, products or data, please notify us immediately.
Step
|
What to do
|
1 – Send an e-mail
|
|
2 – Include the following details
|
- Brief description of the incident / vulnerability
- Date & time of discovery
- Affected systems, applications or data
- Potential impact (e.g. data leakage, production downtime)
- Immediate actions already taken
- Your contact details for follow-up questions
|
3 – Keep data secure
|
- Do not transmit live sensitive data (passwords, personal data) unencrypted. We will gladly provide our PGP key on request.
|
4 – What happens next?
|
- We acknowledge receipt within one business day and give you a ticket number.
- Our incident team assesses severity and scope, initiates containment and corrective measures, and prioritises the case (critical incidents: response time ≤ 2 h).
- Where contractual notification duties exist, we inform the affected contracting parties without delay.
- After resolution you receive a brief report covering root cause, remedial actions and lessons learned.
|
Please use only the address above. Messages via contact forms or social media cannot guarantee a timely response.
Thank you for helping us keep Sonplas information secure!
