Legal Document Center

Security & Responsible Disclosure Policy

Effective: June 1, 2026Last updated: May 30, 2026

This Security & Responsible Disclosure Policy ("Security Policy") describes LifeHub's approach to security vulnerability reporting and responsible disclosure.

This Policy forms part of the LifeHub Terms of Service and related LifeHub policies.

1. Purpose

ProOps Technologies LLC ("LifeHub," "we," "our," or "us") is committed to protecting the confidentiality, integrity, and availability of LifeHub systems, services, and user information.

We recognize that security researchers, customers, and members of the public may identify potential vulnerabilities and wish to report them responsibly.

This Policy establishes a framework for reporting security concerns and vulnerabilities.

2. Reporting Security Vulnerabilities

If you believe you have discovered a security vulnerability affecting LifeHub, we encourage you to report it promptly.

Reports may be submitted to:

Email: support@golifehub.app

Phone: (888) 912-9103

Reports should include, where possible:

  • A description of the vulnerability;
  • The affected system, feature, or service;
  • Steps required to reproduce the issue;
  • Screenshots, logs, or supporting evidence;
  • The potential impact of the vulnerability; and
  • Contact information for follow-up communication.

3. Good Faith Security Research

LifeHub welcomes good-faith security research intended to identify and responsibly disclose security vulnerabilities.

For purposes of this Policy, "Good Faith Security Research" means activities carried out solely for the purpose of testing, investigating, identifying, or reporting security vulnerabilities where:

  • The researcher acts in good faith;
  • No user data is intentionally accessed, modified, copied, retained, or disclosed;
  • The researcher avoids privacy violations;
  • The researcher minimizes disruption to users and systems;
  • The researcher does not exploit vulnerabilities for personal gain; and
  • The researcher complies with this Policy.

4. Authorized Testing Activities

The following activities are generally permitted when conducted responsibly and in accordance with this Policy:

  • Security analysis;
  • Vulnerability identification;
  • Configuration reviews;
  • Security research;
  • Responsible testing of publicly accessible systems; and
  • Submission of vulnerability reports.

Authorization under this Policy is limited and does not extend beyond the activities expressly described herein.

5. Prohibited Activities

The following activities are prohibited without prior written authorization from LifeHub:

Accessing User Data

  • Accessing personal information belonging to others;
  • Accessing location information belonging to users;
  • Accessing private communications;
  • Accessing Document Vault contents;
  • Accessing children's information; or
  • Downloading, copying, storing, or disclosing user data.

Service Disruption

  • Denial-of-service attacks;
  • Distributed denial-of-service attacks;
  • Service degradation;
  • Resource exhaustion attacks; or
  • Activities likely to impair availability.

Social Engineering

  • Phishing;
  • Impersonation;
  • Credential harvesting;
  • Deceptive communications; or
  • Attempts to trick employees, contractors, or users.

Physical Security Testing

  • Unauthorized physical access attempts;
  • Hardware tampering;
  • Facility testing; or
  • Physical intrusion activities.

Malicious Activities

  • Malware deployment;
  • Ransomware deployment;
  • Data destruction;
  • Unauthorized code execution;
  • Privilege escalation beyond what is necessary to demonstrate a vulnerability; or
  • Any activity intended to cause harm.

6. Responsible Disclosure Expectations

Researchers are expected to:

  • Provide reasonable detail regarding discovered vulnerabilities;
  • Allow LifeHub a reasonable opportunity to investigate and remediate issues;
  • Avoid public disclosure until remediation efforts have been completed or coordinated;
  • Cooperate with reasonable requests for additional information; and
  • Refrain from exploiting vulnerabilities after discovery.

7. LifeHub's Commitments

When a vulnerability is reported in good faith and in accordance with this Policy, LifeHub will generally:

  • Acknowledge receipt of the report;
  • Review the reported issue;
  • Investigate the vulnerability;
  • Determine appropriate remediation actions;
  • Communicate with the reporter when appropriate; and
  • Work toward resolution within a reasonable timeframe.

LifeHub does not guarantee a specific response time, remediation timeline, or outcome.

LifeHub may also investigate and respond to suspected security incidents affecting user information in accordance with applicable law, internal security procedures, and the LifeHub Privacy Policy.

8. No Bug Bounty Program

Unless expressly announced by LifeHub in writing, LifeHub does not operate a bug bounty program.

Submission of a vulnerability report does not create any entitlement to:

  • Monetary compensation;
  • Rewards;
  • Employment opportunities;
  • Contracts; or
  • Other consideration.

LifeHub may choose to recognize contributions at its sole discretion.

9. Safe Harbor

To the extent permitted by applicable law, LifeHub will not intentionally pursue legal action against individuals who:

  • Conduct Good Faith Security Research;
  • Comply with this Policy;
  • Promptly report discovered vulnerabilities; and
  • Avoid causing harm to users, systems, or data.

This Safe Harbor applies only to activities authorized by this Policy and does not apply to activities that:

  • Violate applicable law;
  • Cause harm;
  • Access user data;
  • Disrupt services; or
  • Exceed the scope of authorized research.

10. Security Limitations

LifeHub employs commercially reasonable security measures designed to protect its Services and information.

However, no system can be guaranteed to be completely secure.

LifeHub does not warrant that:

  • Vulnerabilities will never exist;
  • Security incidents will never occur;
  • Unauthorized access will never happen; or
  • All security risks can be eliminated.

11. Reservation of Rights

LifeHub reserves the right to:

  • Investigate reported vulnerabilities;
  • Determine whether a report falls within the scope of this Policy;
  • Modify this Policy at any time;
  • Restrict or terminate access to the Services; and
  • Pursue available legal remedies where appropriate.

Nothing in this Policy limits any rights or remedies available to LifeHub under applicable law.

12. Changes to This Policy

LifeHub may update this Security Policy from time to time.

Updated versions become effective upon posting unless otherwise stated.

Continued use of the Services following an update constitutes acceptance of the revised Policy.

13. Contact Information

ProOps Technologies LLC

7901 Blacktail TrailMcKinney, Texas 75070

Email: support@golifehub.app

Phone: (888) 912-9103