UK PSTI Information
Statement of Compliance
Here you can find our Statement of Compliance with the UK Product Security and Telecommunications Infrastructure (PSTI) Act 2022 for xTool products.
Our Vulnerability Disclosure Policy
xTool is devoted to providing secure products and services to our customers, and welcome reports from independent researchers, industry organizations, vendors, customers, and other sources concerned with security.
If you believe you have discovered a security vulnerability in a xTool product or service, please report to us by submitting the following Vulnerability Report Form.
Your report receipt will be confirmed within 7 calendar day and a preliminary assessment of risk levels will take place within 3 business days. Depending on the level of risk, we expect that:
·Critical risk vulnerabilities will be fixed within 3 business days.
·High and medium risk vulnerabilities will be fixed within 30 business days.
·Low risk vulnerabilities will be fixed within 180 business days.
(Note: some vulnerabilities are subject to environment or hardware restrictions. Final remediation time will be determined according to the real-world situation.)
You will be updated with status progress at least every 30 days until the vulnerability is fixed.We greatly appreciate anyone who can give us a chance to improve our products and services, and better protect our users.
We greatly appreciate anyone who can give us a chance to improve our products and services, and better protect our users.
Vulnerability Report Form
The personal information collected via this form will only be used for the procedures necessary to reply to and handle the submission.The subject personal information will be managed using appropriate safety measures, and it will not be disclosed or provided to third parties without the advance permission of the reporter.The content of the submission will be used jointly by the related Makeblock Group entities.
For information on our handling of personal information, please see our Privacy Policy.