Response

At Gimlet, we take a proactive approach to security, ensuring that potential threats are addressed quickly and transparently.

Report an Issue

If you discover a potential security issue or vulnerability, please report it to security@gimletlabs.ai.

Our team will respond within 3 working days of your email. The team will help diagnose the severity of the issue and determine how to address the issue.

Critical issues will receive immediate attention and be fixed as quickly as possible. You will be kept informed of the status as we work towards a resolution. Non-critical issues will also be addressed in a timely manner, with regular updates provided throughout the process.

Incident Response

Our team monitors systems 24/7 to detect any potential threats or vulnerabilities. When an issue is identified, we act quickly to mitigate the risk and protect user data.

In cases of critical security incidents, we operate under an established Incident Response Plan (IRP) that involves dedicated roles and responsibilities, escalation paths, and a clear communication strategy for both internal teams and affected customers.

Customer Communication

In the event of a security incident affecting customer data, we will notify affected parties promptly and provide transparent updates throughout the remediation process.

We also encourage customers to reach out directly if they have questions or concerns during or after any security incident.