Announcing Cayan's Bug Bounty Program

Cayan's approach to security focuses on protecting merchants and their data. We monitor every transaction from swipes to payments, and are always innovating in fraud prevention. We protect our merchants' data as if our business depends on it­—because it does. 

As part of our holistic approach to security, Cayan has partnered with HackerOne. Created by security leaders from Facebook, Microsoft and Google, HackerOne is the first vulnerability coordination and bug bounty platform, empowering companies to protect consumer data, trust and loyalty by working with the global research community to surface the most relevant security issues. HackerOne helps Cayan embrace the large and growing community of ethical hackers to attempt to find and responsibly disclose vulnerabilities in our systems.

Partnering with HackerOne allows Cayan to leverage the skills and creativity of the world's largest friendly hacker community to surface critical vulnerabilities before criminals can exploit them. HackerOne's platform will help us track reports, organize our team and coordinate an effective response to any vulnerabilities surfaced.

Effective and ethical disclosure requires mutual respect and transparency between finders and security teams. Cayan's bug bounty program is rooted in respecting our merchants' and cardholders' privacy, as well as promoting an ethos of "do no harm".

Cayan welcomes the contributions of the security research community, and have implemented our program's guidelines to encourage coordinated reporting of security issues with our services. Cayan encourages ethical hackers to help contribute to our partners' and merchants' security by visiting our program page or Cayan's HackerOne Bug Bounty Program, currently open to invited hackers.