Ready for impact?
contact us.

Advertising Advantage services clients internationally and runs campaigns across Australia, the United States, United Kingdom, New Zealand and Canada.

Sydney, Australia

Level 4, Suite 1, 109 Pitt St, Sydney, 2000

P +61 2 9225 3300

LET'S TALK

Melbourne, Australia

222 Exhibition St,Melbourne, VIC 3000

P +61 3 9001 7830

LET'S TALK

Brisbane, Australia

310 Edward St, Brisbane, QLD 4000

P +61 7 3184 4485

LET'S TALK

Perth, Australia

152 St Georges Terrace, Perth, WA 6000

P +61 8 9126 9055

LET'S TALK

New York, USA

511 West 25th Street, New York, NY 10001

P +1 646 992 4260

LET'S TALK

Toronto, Canada

3 Tank House Lane, Toronto, Ontario M5A 3C4

P +1 844 910 5464

LET'S TALK

San Francisco, USA

600 California St, 11th Floor, San Francisco, CA 94108, USA

P +1 415 766 4944

LET'S TALK

London, UK

33 Queen St, London, EC4R 1AP, UK

P +44 203 893 3133

LET'S TALK

Responsible Disclosure Program

  1. Responsible Disclosure Program
    1. At Advertising Advantage, the security of our systems and services is of vital importance. We are dedicated to continually improving our systems and welcome the contribution of security researchers in identifying vulnerabilities.
    2. If you believe you have identified a vulnerability in our systems or services, we encourage you to promptly report it to us in accordance with this Program.
    3. For the protection of our clients and partners, we ask that you do not publicly disclose any suspected security vulnerabilities without our permission.
    4. This Program should not be used to report phishing or scam emails. If you have received a hoax or phishing email which appears to have been sent by Advertising Advantage, please send it to security@adad.com.au.
    5. In this Program, a reference to ‘we’, ‘our’ or ‘us’ is a reference to Advertising Advantage Pty Ltd.
  2. Guidelines
    1. Vulnerability research into our systems and services must be conducted in a responsible and ethical manner.
    2. The following types of security research on our systems and services are prohibited:

      (a) clickjacking;

      (b) social engineering (including phishing);

      (c) sending unsolicited or unauthorised messages (such as spam);

      (d) weak or insecure SSL ciphers and certificates;

      (e) denial of service (DoS);

      (f) introduce malicious software or malware that could impact our services;

      (g) any physical attacks;

      (h) any attempts to access data that you are not authorised to;

      (i) any attempts to modify or destroy data; and

      (j) any activities that are unethical or in violation of the law.

    All of Advertising Advantage’s rights in relation to activities of this nature on our systems and services are strictly reserved.

  3. Reporting
    1. To confidentially report a vulnerability, please email us at security@adad.com.au.
    2. To assist in our efforts to investigate and repair the vulnerability, please include as much detail regarding the method by which you produced the vulnerability as possible.
    3. All reports submitted under this policy are confidential and must not be publicly disclosed without our prior written consent. By submitting a report under this policy, you agree to be bound by its terms and waive all of your rights in relation to the information contained in the report.
  4. Response
    1. We will confirm receipt of your report.
    2. The information that you provide will be used to investigate the potential security vulnerability and, if necessary, mitigate or repair the vulnerability. We may maintain communication with you and provide updates regarding the steps that we are taking in response to your report.
    3. We may use the information contained in your report for the purpose of notifications to regulatory authorities or law enforcement agencies, or if required by law.
  5. Compensation
    1. We recognise and thank the researchers who have contributed to the ongoing security of our systems. However, we do not compensate individuals or organisations for identifying suspected or confirmed security vulnerabilities.