Security

Security

SensorLinQ Apps takes the security and privacy of its apps and services seriously. This page explains how to report suspected vulnerabilities or security concerns affecting SensorLinQ Apps websites, Android apps, or related services.

Report a security vulnerability

If you believe you have found a security vulnerability in a SensorLinQ Apps website, Android app, backend service, API, or data-handling process, please report it by email.

Email: sensorlinqapps+security@gmail.com

Suggested subject line: Security report: [short summary]

What to include in a report

  • The affected app, website page, API endpoint, or service
  • A clear description of the issue
  • Steps to reproduce the issue, if safe to provide
  • Screenshots, logs, or proof-of-concept details where appropriate
  • The potential impact
  • Your contact details if you would like follow-up
  • Whether the issue has been shared publicly or with anyone else

Responsible disclosure

Please avoid accessing, modifying, deleting, or sharing other users’ data. Please avoid service disruption, spam, social engineering, phishing, physical attacks, or destructive testing. Reports should be made in good faith and with enough information to allow the issue to be investigated.

Response and handling

Security reports will be reviewed as soon as reasonably possible. If a report is confirmed, SensorLinQ Apps will assess the impact, prioritise an appropriate fix, and provide updates where practical. Some issues may require coordination with third-party providers such as Google Play, RevenueCat, hosting providers, or other service providers.

Scope

  • SensorLinQ Apps website: sensorlinqapps.com
  • ExpiryMate API/service: expirymate-api.sensorlinqapps.com
  • PhotoClean Android app
  • MetaFix Android app
  • ExpiryMate Android app and household sync service, when available

Out of scope and non-security issues

Normal support, feature requests, account questions, billing or subscription questions, and general feedback can still be sent to sensorlinqapps@gmail.com, but should not be marked as urgent security reports unless they involve a security or privacy concern.

Security advisories

Questions or reports related to security advisories can be sent to sensorlinqapps+security@gmail.com.

Date Product/service Advisory Status
No public security advisories have been issued at this time.