Skip to main content

HackerOne Finder Terms and Conditions

Effective Date: June 1, 2020

Welcome to HackerOne!

By signing up as a Finder, you are agreeing to the following terms and the General Terms and Conditions, which are incorporated by reference. A Finder is a hacker, security researcher, or anyone who is willing to help companies and other organizations find bugs and vulnerabilities in their technology.

Your Use of HackerOne Platform

You may use the HackerOne Platform to participate in Programs and submit Finder Submissions provided you comply with the Terms.

Definitions

Some of the capitalized terms used in these Finder Terms and Conditions are defined the General Terms and Conditions.

Conduct

Our Platform operates for the benefit of the Finders and Customers. HackerOne is passionate and proud of the unique ethical environment that it has created. Accordingly, all users of the Platform must conduct themselves in a professional, respectful, and courteous manner when interacting with HackerOne and/or each other. All Finders must use the Platform properly. Any inappropriate behavior by a Finder (or that which is deemed to violate the spirit of the environment) will not be tolerated by HackerOne. In such circumstances, HackerOne, may at is sole discretion terminate a Finder’s use of the Platform. For further information on our approach, please visit HackerOne's Code of Conduct for Finders.

Finder Submissions

By making any Finder Submission available to a Customer, you agree to the Program Policy. HackerOne's Vulnerability Disclosure Guidelines are superseded by individual Program Policies in the event of a conflict.

You represent that neither the Finder Submissions nor any use of Finder Submissions by the Customer will infringe, misappropriate, or violate a third party's intellectual property rights, or rights of publicity or privacy, or result in the violation of any applicable law or regulation, including export control laws.

Rewards

You may be awarded a Reward for submitting Finder Submissions to a Customer for a particular Program, if the submitted Finder Submissions meet the Customer's requirements described in the Program Policy. HackerOne will process Reward(s) that are monetary payments on behalf of Customer, and will typically remit the Reward payments to you within ten (10) business days after HackerOne receives the Reward payment from the Customer (or, if HackerOne has a Reward prepayment from Customer for the Program, within ten (10) business days after Customer notifies HackerOne that you have been awarded the Reward). HackerOne is not responsible for delays in payment outside of HackerOne's reasonable control.

You may remain anonymous by using a pseudonym. To be eligible to receive a Reward, however, you must provide HackerOne with accurate, complete, and up-to-date information about you, including your address, tax identification number (if applicable), and any other information that HackerOne reasonably requests, to allow HackerOne to legally send any Reward to you and file any appropriate tax form following year end. If you do not provide this information to HackerOne, any Reward that would otherwise be paid to you will be paid to a charity of HackerOne's choosing.

Where relevant, you are solely responsible for paying any and all taxes related to the Reward payments.

HackerOne will not be liable in any way for any Program, including any errors or omissions in any Program Policy, or any loss or damage incurred as a result of your reliance on any Program Policy.

Independent Parties/Transactions

You are NOT an employee, contractor, or agent of HackerOne, but are an independent third party who wishes to participate in Programs and connect with the Customer through the Services. Nothing in the Terms is intended to render HackerOne and you as joint venturers, partners, or employer and employee. Under no circumstance shall HackerOne be considered to be your employer, nor shall you have any rights as an employee of HackerOne.

Customers are NOT Affiliates, employees, contractors, or agents of HackerOne, but are independent third parties who want to participate in Programs and connect with you through the Services. You agree that any legal remedy that you seek to obtain for a Customer's actions or omissions or other third parties regarding a Customer's Program, including Finder Submissions, will be limited to a claim against the particular Customer or other third parties who caused harm to you, and you will not to attempt to impose liability on HackerOne or seek any legal remedy from HackerOne with respect to those actions or omissions. Any contract or other interaction between a Customer and you, including with respect to any Program Policy, will be between the Customer and you only. HackerOne is not a party to such contracts and disclaims all liability arising from or related to such contracts.

Ownership and Licenses

HackerOne does not claim any ownership rights in any Finder Submissions. You agree that HackerOne may collect statistical and other information about Finder Submissions and use that information for HackerOne’s benefit. Except for any Finder Submissions, HackerOne and its licensors exclusively own all right, title, and interest in and to the Services and content contained on the Services, including all intellectual property rights. The Services and HackerOne content are protected by copyright, trademark, and other laws of the United States and foreign countries.

By making any Finder Submission available to a Customer through the Services, you hereby grant to HackerOne a perpetual, irrevocable, non-exclusive, transferable, sublicensable, worldwide, royalty-free license to use, copy, reproduce, display, modify, adapt, transmit, and distribute copies of that Finder Submission, for the sole purpose of providing the Services.

By making any Finder Submission available to a Customer through the Services, you hereby grant to the Customer a perpetual, irrevocable, non-exclusive, transferable, sublicensable, worldwide, royalty-free license to use, copy, reproduce, display, modify, adapt, transmit, and distribute copies of that Finder Submission.

HackerOne hereby grants to you a revocable, non-exclusive, non-transferable, non-sublicensable, worldwide, royalty-free license to use the HackerOne Platform and access and view the content that HackerOne makes available on the HackerOne Platform solely in connection with your permitted use of the HackerOne Platform. HackerOne may change or discontinue all or any part of the HackerOne Platform, including your access to it, at HackerOne's discretion.

Authority

If you are using the Services on behalf of a company (such as your employer), or a Customer or other legal entity, you represent that you have the authority to bind that company or other legal entity to the Terms. If you are a minor (in the United States, that means under 18 years old), your parents or legal guardian must agree to the Terms on your behalf, and we may require additional information confirming that agreement by your parents/legal guardians.

Please see our existing Finder Terms and Conditions effective prior to June 1, 2020.