FAQs

Commonly asked questions about IRIS security practices.

What user data do you collect?

We only collect user data about who is interacting with our services so that we can monitor and improve the product, and provide faster, more effective support when issues arise. These events include API requests, sign-ins, sign-outs, etc.


More information on the type of data we collect can be found in our privacy policy.

How do I report a potential vulnerability or security concern?

Please email us at security@shapedbyiris.com and we will get back to you ASAP. 


If you have a discovery, please discretely reach out to a member of the team via email for verification, vulnerability acceptance, and remediation timeline.


We believe in responsible disclosure. At this time we do not have a bug-bounty program in place, but would like one in the future.