HackerOne Community Member Terms and Conditions

Effective Date: May 11, 2026

By signing up to the HackerOne Community Member Terms and Conditions, you are agreeing to the following terms, the Code of Conduct for Community Members, and the General Terms and Conditions, which are incorporated by reference (together, the "Terms").

A Community Member is an independent third party (other than a Customer), whether an individual or entity, that has completed the applicable Community Member Registration and is accessing or using the HackerOne Platform primarily to participate in Programs and/or provide Community Member Submissions, including, without limitation, any Commercial Community Member, Finder, Reviewer, Pentester, hacker, or security researcher.

A. USE OF HACKERONE PLATFORM, PRODUCTS AND SERVICES

1. Use of HackerOne Platform

1.1) You may use the HackerOne Platform to participate in Programs and submit Community Member Submissions, provided you comply with these Terms.

1.2) All account registrations are subject to approval by HackerOne. Your account will be activated once approved by HackerOne. HackerOne reserves the right to decline a registration or terminate an account for any lawful reason, including for the purpose of enforcing its Code of Conduct for Community Members or any of HackerOne's terms and conditions.

1.3) By registering for an account or by using the HackerOne Platform, you represent that you: (a) are doing business under your own name as a self-employed individual, sole proprietor, or are an employee or agent of an independent business; (b) are using the HackerOne Platform for lawful business purposes and/or for purposes related to good-faith ethical security research, code review, and/or penetration testing; and (c) will comply with the Code of Conduct for Community Members and any and all Applicable Law in using the HackerOne Platform.

1.4) To the extent you provide information on your public profile, you agree that such information will not be false or misleading information (e.g., information you choose to provide about your location, credentials, etc.).

1.5) You agree not to register for or maintain more than one account. By creating an account on the HackerOne Platform, you are responsible for all activity on the account. You agree not to request or allow another person or entity to create an account for you, your use, or your benefit and you agree that you will not share, sell, lease, or otherwise allow third parties access to your account or information/access you have been granted as a result of your account on the HackerOne Platform without authorization from HackerOne.

2. Definitions

Some of the capitalized terms used in these Community Member Terms and Conditions are defined in the General Terms and Conditions.

3. Conduct

3.1) Our Platform operates for the benefit of the Community Members and Customers. HackerOne is passionate and proud of the unique ethical environment that it has created. Accordingly, all users of the Platform must conduct themselves in a professional, respectful, and courteous manner when interacting with HackerOne, Customers and/or each other. All Community Members must use the Platform properly for the purpose of making the internet safer and helping organizations find and fix bugs and vulnerabilities in their technology.

3.2) All Community Members must comply with Code of Conduct for Community Members. HackerOne reserves the right, in its sole discretion, to take enforcement action, including suspension or termination of a Community Member's account or access to the Platform, for any violation of the Code of Conduct. For more information, please see HackerOne's Code of Conduct for Community Members.

3.3) Restrictions. Community Members shall not (and shall not permit any third party to), directly or indirectly:

(i). reverse engineer, decompile, disassemble, or otherwise attempt to discover the source code, object code, or underlying structure, ideas, or algorithms of the Platform or any HackerOne product or service (except to the extent Applicable Laws specifically prohibit such restriction);

(ii). modify, translate, or create derivative works based on the Platform, or any HackerOne product or service;

(iii). copy, rent, lease, distribute, pledge, assign, or otherwise transfer or encumber rights to the Platform, or any HackerOne product or service;

(iv). use the Platform, or any HackerOne product or service for the benefit of a third party;

(v). remove or otherwise alter any proprietary notices or labels from the Platform, or any HackerOne product or service or any portion thereof;

(vi). use the Platform, or any HackerOne product or service, to build or modify an application or product that is competitive with any HackerOne product or service;

(vii). interfere or attempt to interfere with the proper working of the Platform, or HackerOne product or service, or any activities conducted on the Platform or through any HackerOne product or service; or

(viii). bypass any measures HackerOne may use to prevent or restrict access to the Platform, or any HackerOne product or service (or other accounts, computer systems, or networks connected to the Platform or any HackerOne product or service).

SECTIONS (I), (VII), and (VIII) OF 3.3 SHALL NOT APPLY TO GOOD FAITH SECURITY RESEARCH.

4. Community Member Data

4.1) By making any Community Member Submission available to a Customer, you agree to the Customer's Program Policy. HackerOne's Vulnerability Disclosure Guidelines are superseded by individual Program Policies in the event of a conflict.

4.2) You represent that neither the Community Member Data nor any use of Community Member Data by HackerOne or the Customer will infringe, misappropriate, or violate a third party's intellectual property rights, or rights of publicity or privacy, or result in the violation of any Applicable Law or regulation, including export control laws.

5. Community Membership Eligibility

5.1) You agree that you are eligible to access and use the HackerOne Platform and are not using the Platform in violation of export control laws or regulations and/or economic sanctions laws and regulations that are imposed, administered, or enforced by the U.S., the U.K., the EU, or any other relevant jurisdiction.

5.2) If at any time, HackerOne has reason to believe that you are in violation of Applicable Law, HackerOne reserves the right to terminate your access to the HackerOne Platform and any other products or services, at its sole discretion and with immediate effect. If the foregoing occurs, all applicable Rewards will be held unless and until suitable information is provided to support a lawful claim to the Reward; otherwise, they may be forfeited.

5.3) HackerOne's Platform, products and services are not intended for use by children under the age of 13. If you are a minor (as defined under the applicable legal standard), you must disclose this to HackerOne in writing, and your parents or legal guardian must agree to the Terms on your behalf. HackerOne may require additional information confirming that agreement by your parents/legal guardians.

6. Rewards

6.1) You may be awarded a Reward, if the submitted Community Member Submissions meet the Customer's requirements described in the Program Policy. HackerOne will process monetary Reward(s) on behalf of Customer, and will typically remit the Reward payments to you within ten (10) business days after (a) you have provided all requested information necessary to remit payment under Applicable Law; and (b) HackerOne receives the Reward payment from the Customer (or, if HackerOne has a Reward prepayment from Customer for the Program, within ten (10) business days after Customer notifies HackerOne that you have been awarded the Reward). HackerOne is not responsible for delays in payment outside of HackerOne's reasonable control.

6.2) To the extent that you are entitled to receive a monetary Reward, you appoint HackerOne as your agent to accept payment on your behalf. Payment from HackerOne's Customer to HackerOne, for delivery to you, satisfies and discharges the obligations of the HackerOne Customer to you, if any, to the extent of such payment. You authorize HackerOne to receive funds on your behalf and deliver such funds from HackerOne Customers to you.

6.3) You may create a user account with your real name or a pseudonym. However, pursuant to Applicable Law, to be eligible to receive a Reward, you must not be subject to any categories in Section 5.1 and you must provide HackerOne (or our applicable service provider) with accurate, complete, and up-to-date information about you, including but not limited to, your name, residential address, nationality, tax identification number (if applicable), identification document, image, and any other information that HackerOne reasonably requests (or is directed to request by a third-party payment processor), to allow HackerOne to lawfully send any Reward to you and file any appropriate tax forms following year end. For details on the handling of this data, please see our Privacy Policy. If you do not cooperate with this process, any Reward that would otherwise be paid to you may be paid to a charity of HackerOne's choosing.

6.4) You are solely responsible for paying any and all taxes related to the Reward payments.

6.5) HackerOne will not be liable for any unpaid Rewards arising directly or indirectly as a consequence of a breach of the Terms by a Community Member.

6.6) HackerOne will not be liable in any way for any Program, including any errors or omissions in any Program Policy, or any loss or damage incurred as a result of your reliance on any Program Policy.

7. Independent Parties/Transactions

7.1) You are NOT an employee, contractor, or agent of HackerOne, but are an independent third party who wishes to participate as a Community Member in Programs and connect with the Customer through the HackerOne Platform. Nothing in the Terms is intended to render HackerOne and you as joint venturers, partners, or employer and employee. Under no circumstance shall HackerOne be considered to be your employer, nor shall you have any rights as an employee of HackerOne.

7.2) Customers are NOT Affiliates, employees, contractors, or agents of HackerOne, but are independent third parties who want to participate in Programs and connect with you through the Platform. You agree that any legal remedy that you seek to obtain for a Customer's actions or omissions or other third parties arising from or related to a Customer's Program, including Community Member Submissions, will be limited to a claim against the particular Customer or other third parties who caused harm to you, and you will not attempt to impose liability on HackerOne or seek any legal remedy from HackerOne with respect to those actions or omissions. Any contract or other interaction between a Customer and you, including with respect to any Program Policy, will be between the Customer and you, only. HackerOne is not a party to such contracts and disclaims all liability arising from or related to such contracts.

7.3) If a dispute arises between you and the Customer in connection with a Program or your use of the HackerOne Platform, you must engage constructively with the Customer and cooperate with the HackerOne Mediation Team in a good faith effort to resolve the dispute before pursuing any other remedies that may be available to you. The HackerOne Mediation Team is an internal group that helps resolve disputes between Customers and Community Members related to Community Member Submissions through the HackerOne Platform.

8. Ownership and Licenses

8.1) HackerOne does not claim any ownership rights in any Community Member Data. You agree that HackerOne may collect statistical and other information about Community Member Data and use that information to provide, improve and develop the Platform and other HackerOne products and services. Unless otherwise agreed in writing, except for any Community Member Data, HackerOne and its licensors exclusively own all right, title, and interest in and to the Platform and all HackerOne products and services and content contained therein, including all intellectual property rights. The Platform and all HackerOne products and services and related content are protected by copyright, trademark, and other laws of the United States and other countries.

8.2) By making any Community Member Data available through the use of the Platform, you hereby grant to HackerOne a perpetual, irrevocable, non-exclusive, transferable, sublicensable, worldwide, royalty-free license to use, copy, reproduce, display, modify, adapt, transmit, and distribute copies of that Community Member Data for our business purposes, including to provide and develop our products or services.

8.3) By making any Community Member Submission available to a Customer through the Platform, you hereby grant to the Customer a perpetual, irrevocable, non-exclusive, transferable, sublicensable, worldwide, royalty-free license to use, copy, reproduce, display, modify, adapt, transmit, and distribute copies of that Community Member Submission in connection with the Customer's use and receipt of the Services.

8.4) HackerOne hereby grants to you a revocable, non-exclusive, non-transferable, non-sublicensable, worldwide, royalty-free license to use the HackerOne Platform and access and view the content that HackerOne makes available on the HackerOne Platform solely in connection with your permitted use of the HackerOne Platform. HackerOne may change or discontinue all or any part of the HackerOne Platform, including your access to it, at HackerOne's sole discretion.

9. Authority

9.1) If you are using the Platform on behalf of a company (such as your employer), or a Customer or other legal entity, you represent that you have the authority to bind that company or other legal entity to the Terms and you will provide HackerOne with reasonable documentation demonstrating the business relationship upon request.

10. Artificial Intelligence

10.1) HackerOne may incorporate artificial intelligence (AI) and automated technologies within certain features of the Platform and related products and services. How we use AI in relation to the Community is described in documentation set out at https://docs.hackerone.com.

Please also see Section B. (HackerOne Platform Tools) below for terms related to Community Member use of HackerOne products, tools, features and services offered or made available to Community Members on the Platform.

B. HACKERONE PLATFORM TOOLS

HackerOne may provide Community Members with access to products, tools, features, or services through the Platform (collectively, "Platform Tools"). These Additional Terms apply to your use of Platform Tools as a Community Member, in addition to all other terms applicable to you while using the Platform.

1. Acceptable Use and Acknowledgements

1.1) You may use Platform Tools solely in connection with your authorized lawful use of the HackerOne Platform, applicable Program Policies and in accordance with the terms of any technical information found at https://docs.hackerone.com regarding use of such Platform Tools or that are otherwise provided or made available to you by HackerOne ("PT Documentation"). In addition to all other requirements applicable to your use of a Platform Tool, you agree not to use any Platform Tool to (i) process or input information in violation of confidentiality obligations set forth in applicable Program Policies, the Terms, or other terms applicable to you while using the Platform or (ii) process, input, generate, store, or transmit Personal Data, regulated data or any other data or content in violation of Applicable Law.

1.2) Certain Platform Tools may be capable of generating novel or derivative content or output, including by leveraging AI, machine learning and other automated technologies ("PT Output"). To the extent you use a Platform Tool capable of generating PT Output, you acknowledge and agree that you remain responsible for reviewing, validating, and ensuring the accuracy, completeness, and appropriateness of such PT Output prior to using such PT Output. Platform Tools may generate unreliable or harmful outputs, and you assume all risks associated with their use, including any consequences resulting from your failure to independently verify any PT Output.

1.3) You acknowledge and agree that Platform Tools are assistive features designed to support your use of the Platform and your participation in Programs and other authorized activities accessible to you through the Platform. No Platform Tool or PT Output shall be deemed a representation, warranty, commitment, or promise by HackerOne, and HackerOne assumes no duty to update, monitor, correct, or validate any PT Output or other content generated by a Platform Tool.

1.4) To the extent permitted by law, you agree to be responsible for any Customer or third-party claims, damages, or costs that arise from: (a) your use of the Platform Tools, (b) your failure to review or validate PT Output prior to submitting such PT Output to a Customer or other authorized third-party, or (c) your violation of Applicable Law with respect to your use of the Platform Tools or PT Output.

2. Ownership, Intellectual Property and Confidentiality

2.1) HackerOne does not claim any ownership in any Community Member Data included in any PT Output generated by your use of a Platform Tool.

2.2) By using Platform Tools, you hereby grant to HackerOne a perpetual, irrevocable, worldwide, fully paid-up and royalty-free license, with the right to assign and transfer (including by operation of law), to access, view, use, copy, modify, adapt, reproduce, distribute, analyze, create derivative works from, and otherwise use PT Output generated by any Platform Tool for the purposes of providing, supporting, maintaining, improving, and securing the Platform and all HackerOne products and services, subject to any other use restrictions set forth herein and any applicable PT Documentation.

2.3) By making any PT Output available to a Customer through the use of the Platform Tools, you hereby grant to the Customer a perpetual, irrevocable, non-exclusive, transferable, sublicensable, worldwide, royalty-free license to use, copy, reproduce, display, modify, adapt, transmit, and distribute copies of that PT Output in connection with the Customer's use and receipt of the Services.

2.4) Any PT Output or portion thereof that includes Confidential Information shall be subject to the confidentiality obligations set forth in Section 3 of the General Terms and Conditions.

3. No Reliance or Warranty

3.1) Platform Tools are provided on an "as-is" and "as-available" basis.

3.2) HackerOne does not guarantee that the Platform Tools or PT Output will be error-free, complete, or suitable for any particular purpose. You are responsible for evaluating PT Output before relying on it. PT Output may be incorrect, misleading, biased, fabricated, or otherwise unsuitable for use without independent human verification.

3.3) To the maximum extent permitted by law, HackerOne disclaims all warranties, express or implied, including but not limited to warranties of accuracy, non-infringement, merchantability, fitness for a particular purpose, and error-free operation. HackerOne is not liable for any loss, damage, claim, exposure, breach, incident, cost, or consequence arising from or related to the use of, inability to use, or reliance on the Platform Tools or PT Output.

4. Policy Violations

Misuse of Platform Tools, including in violation of these Additional Terms or any usage requirements set forth in applicable PT Documentation, may result in limitations on or the suspension of your access to Platform Tools, corrective action, or other measures set forth under the Code of Conduct and any other HackerOne policies and procedures applicable to you while using the Platform.

Please see our existing Community Member Terms effective prior to May 11, 2026.