Last updated: 23 Nov 2025

At Amy Edwards Home, the security of our website, systems, and customer data is a top priority.

We take all security concerns seriously and encourage responsible disclosure of any potential vulnerabilities.

If you believe you’ve discovered a security issue on amy-edwards-home.co.uk, please follow the guidelines below to ensure it is reported safely and handled appropriately.

1. How to Report a Security Issue

To report a vulnerability or security concern, please contact our Security Team:

📧 security@amy-edwards-home.co.uk

📧 (alternative) contact@amy-edwards-home.co.uk

When reporting an issue, please include:

  • A detailed description of the vulnerability
  • Steps to reproduce the issue
  • URLs and affected endpoints
  • Screenshots, logs, or proof-of-concept (if applicable)
  • Your contact information (optional, but helpful)

We will acknowledge your report within 72 hours.

2. Responsible Disclosure Guidelines

To protect our customers and systems, we ask that you:

✔ Act in good faith and avoid exploiting the issue

✔ Do not modify, copy, or delete data

✔ Do not perform actions that degrade service (e.g., DDoS, brute force)

✔ Do not access confidential or personal information

✔ Do not publicly disclose the issue before we have resolved it

✔ Allow us reasonable time to investigate and fix the issue

We deeply appreciate ethical security research and responsible behaviour.

3. What Happens After You Report?

Once we receive your report:

  1. Initial Acknowledgement We confirm receipt of your report within 72 hours.
  2. Assessment Our technical team investigates the issue and verifies its validity.
  3. Resolution We prioritise vulnerabilities based on impact and severity.
  4. Feedback We inform you once the issue has been fixed or further information is needed.
  5. Credit (Optional) If you wish, we can credit you on a future “Security Acknowledgements” page.

4. Out of Scope

The following types of issues are not considered vulnerabilities:

  • Missing security headers with low impact
  • Email spoofing without actionable exploit
  • Use of outdated libraries without demonstrable exploitation
  • Rate-limiting issues without real-world impact
  • Self-XSS requiring user interaction
  • Social engineering attempts
  • Issues dependent on outdated browsers

However, you are always welcome to report anything suspicious.

5. Prohibited Actions

During research, do not attempt:

❌ Denial of Service (DoS/DDoS)

❌ Spam, phishing, or brute-force attacks

❌ Accessing customer or employee accounts

❌ Modifying or deleting data

❌ Running automated scanners that overwhelm servers

❌ Attempting physical security breaches

Any malicious or abusive activity may result in legal action.

6. Our Commitment to Security

We use:

  • SSL/TLS encryption
  • Secure hosting infrastructure
  • Regular vulnerability scans
  • PCI DSS–compliant payment processors
  • Access control and monitoring
  • Data encryption and hashing
  • Regular security audits

Your report helps us strengthen our systems even further.

7. Contact Information

For all security-related inquiries:

📧 security@amy-edwards-home.co.uk

📧 contact@amy-edwards-home.co.uk

📞 +44 7 453 41 41 90

Amy Edwards Home

📍 8 Teal Cl, Totton, Southampton SO40 8TG, United Kingdom

🌐 https://amy-edwards-home.co.uk