Introduction
This vulnerability disclosure policy applies to any vulnerabilities you are considering reporting to us (the "Organisation"). We recommend reading this vulnerability disclosure policy fully before you report a vulnerability and always acting in compliance with it.
We value those who take the time and effort to report security vulnerabilities according to this policy. However, we do not offer monetary rewards for vulnerability disclosures.
Reporting
If you believe you have found a security vulnerability, please submit your report to us using the following email:
In your report please include details of:
What to expect
After you have submitted your report, we will respond to your report within 5 working days and aim to triage your report within 10 working days. We’ll also aim to keep you informed of our progress.
Priority for remediation is assessed by looking at the impact, severity and exploit complexity. Vulnerability reports might take some time to triage or address. You are welcome to enquire on the status but should avoid doing so more than once every 14 days. This allows our teams to focus on the remediation. When asking for updates please use the original email thread where possible so that all discussions are kept in one place.
We will notify you when the reported vulnerability is remediated, and you may be invited to confirm that the solution covers the vulnerability adequately.
Once your vulnerability has been resolved, we welcome requests to disclose your report. We’d like to unify guidance to affected users, so please do continue to coordinate public release with us.
Guidance
You must NOT:
You must:
Legalities
This policy is designed to be compatible with common vulnerability disclosure good practice. It does not give you permission to act in any manner that is inconsistent with the law, or which might cause the Organisation or partner organisations to be in breach of any legal obligations.
"The quality of hearing aids is immeasurably better than those provided by the NHS. The care and service provided by House of Hearing has added greatly to my quality of life; in daily life, concerts, theatre, etc. I very much value the facility to 'drop-in' for checks as and when necessary."
"Regular visits to deal with the build up of wax in my ears has been of great help and given great comfort. The unexpected (to me) discovery of an infection and subsequent treatment by Melanie was very timely and avoided more serious consequences. Much impressed by friendly and helpful staff on all visits."
“At House of Hearing it is not only the friendliness and warmth of welcome that meets you at the door on every occasion, but the technical expertise of the audiologists. They deliver a professional audiology service with integrity and compassion and have dignity and respect at the heart of their business.
Thank you seems so inadequate, but all I can say is:
Thank you House of Hearing for letting me live my life.”
"I very highly recommend the House of Hearing. They are completely focussed on finding the best possible hearing aids for each client’s particular needs, and to this end nothing is too much trouble. The staff are all very friendly and helpful, and one is made to feel part of the House of Hearing family. I can’t praise them highly enough, and in particular Louise, who couldn’t have done more for me”.
"Service and afterservice is great - very professional wax removal. Also very caring."
All House of Hearing clinics are in town centre locations and accessible to public transport and parking. Home visits also available if mobility is an issue.