Security Policy

Cardiff is committed to resolving security vulnerabilities quickly and carefully. In order to protect our users and their data, we request that vulnerabilities be responsibly and confidentially reported to us so that we may investigate and respond accordingly. Vulnerabilities should not be announced until we have developed and rolled-out an update.

Unpermitted Uses of Cardiff's Website and Unpermitted Types of Security Research

Intentionally harming the experience or usefulness of the service to others
Causing, or attempting to cause, a Denial of Service (DoS) condition
Accessing, or attempting to access, data or information that does not belong to you
Destroying or corrupting, or attempting to destroy or corrupt, data or information that does not belong to you

Changes in Policy

We may update or amend this policy at any time with or without notice to you. We encourage you to periodically review this page for the latest information on our privacy practices. If you have any questions regarding this policy, please email us at security@bankofcardiff.com