Responsible disclosure and safe reporting process.

• Primary contact: contact@totalhomewireless.com
• Canonical file: /.well-known/security.txt
• Please include: affected URL, reproduction steps, impact summary, and proof-of-concept details.

• In scope: publicly reachable THWS web properties and security misconfiguration findings.
• Out of scope: social engineering, physical attacks, denial-of-service attempts, and non-consensual scanning of third-party systems.

• Acknowledgment: within 3 business days.
• Triage target: within 7 business days.
• Status updates: at least every 14 days for confirmed issues until resolution.

THWS supports good-faith security research that follows this policy and avoids privacy impact, service disruption, and data access beyond what is necessary to demonstrate the issue.