Pre-order sale on Couture Items

Your cart

Your cart is empty

Continue shopping

Vulnerability Disclosure Policy

The safety and security of our customers’ data, as well as the reliability of our products and services, are critical to LULU LIU LONDON. We are committed to designing and delivering products and services that meet the highest standards of security and dependability. However, due to the complex and evolving nature of technology, vulnerabilities or errors may occasionally arise.

This policy outlines LULU LIU LONDON’s approach to receiving and managing reports related to potential vulnerabilities or errors in our products and services from individuals who interact with them.

We encourage our customers, users, researchers, partners, and all those who interact with LULU LIU LONDON’s products or services to report any identified vulnerabilities or error.

The preferred method for reporting vulnerabilities or errors to LULU LIU LONDON is by contacting us via email at security@lululiu-london.com

We greatly value the effort and diligence of those who report vulnerabilities or errors, as these reports help us improve the security and reliability of our products and services.

Optional Contact Information

You may choose to include your contact information when submitting a report. Providing this information is entirely voluntary and at your discretion. If you do provide your contact details, LULU LIU LONDON will only use them to clarify the details of your report, should that be necessary. Otherwise, please refer to LULU LIU LONDON’s Privacy Policy to understand how we protect your personal information.

Terms of Submission

By submitting a report to LULU LIU LONDON, you agree to the following terms:

1. Usage of Reports: LULU LIU LONDON may use your report for any purpose deemed appropriate, including addressing and correcting reported vulnerabilities or errors. If your report includes suggestions for improvements to LULU LIU LONDON’s products or services, you assign all rights to such suggestions to LULU LIU LONDON.

2. Your Assurances:

  • You have not exploited or misused the discovered vulnerabilities or errors.
  • You have not conducted testing with the intent to harm LULU LIU LONDON, its customers, employees, or partners.
  • You have not accessed, altered, or destroyed any data during the discovery process.
  • You have not engaged in activities such as social engineering, phishing, spamming, denial-of-service attacks, or resource-exhaustion actions.
  • You have not tested the physical security of any property or locations owned by LULU LIU LONDON.
  • You have adhered to all applicable laws during your discovery process.

3. Confidentialit You agree not to disclose any information related to your report, including details of the vulnerability or error, to third parties without the express written consent of LULU LIU LONDON.

4. No Obligation or Reward:

You acknowledge that you are submitting your report voluntarily, without any expectation of financial or other compensation, and without any requirement that LULU LIU LONDON address the reported issue.

Exclusions

Reports concerning TLS ciphers, email spam, missing web security headers, and general "best practices" will not be considered valid unless a clear and exploitable vulnerability is demonstrated.

Policy Updates

LULU LIU LONDON reserves the right to update this Vulnerability Disclosure Policy at any time. Updates will be posted on this page with the revised effective date.

Thank you for helping keep LULU LIU LONDON and our customers safe!