Security Policy

Effective date: February 21, 2026

Stellaroos is committed to protecting our website, systems, and user information through reasonable administrative, technical, and organizational safeguards.

1. Scope

This Security Policy applies to the Stellaroos public website and related services we operate.

2. Security Controls

We implement security measures designed to reduce the risk of unauthorized access, misuse, or disclosure, including:

• Use of HTTPS/TLS for encrypted data transmission where available.
• Access controls for administrative systems.
• Routine software updates and patching practices.
• Monitoring and logging to detect suspicious activity.
• Least-privilege principles for system and data access.

3. Vulnerability Reporting

If you believe you found a security vulnerability, report it to info@stellaroos.com with as much detail as possible, including:

• Affected URL(s), feature(s), or endpoint(s).
• Steps to reproduce.
• Potential impact.
• Any proof-of-concept details that are safe to share.

4. Responsible Disclosure

We ask researchers to:

• Avoid privacy violations, data destruction, or service disruption.
• Do not exploit vulnerabilities beyond what is necessary for validation.
• Provide us reasonable time to investigate and remediate before public disclosure.

5. Incident Response

We maintain internal procedures for triage, containment, remediation, and post-incident review. If a security incident affects personal data, we will take steps consistent with applicable law.

6. Policy Updates

We may update this Security Policy from time to time. Changes are effective when posted on this page.

7. Contact

Security contact: info@stellaroos.com
Business contact: info@stellaroos.com