Cybersecurity

Cybersecurity Vulnerability Disclosure Policy

The safety and security of patients and healthcare providers is our top priority. If you discover a potential cybersecurity vulnerability in our medical devices or related software, please notify us as soon as possible. Timely reporting helps us to assess risks and take necessary actions to protect patient safety and device security.

How to Report a Vulnerability

Please get in touch with our Product Security Team via email:
Contact Email: info@foracare.com

Please include the following information in your report, if possible:
  • Your contact details, including name, organization name, email address, and phone number, so we can follow up with you if needed.
    (We use your contact information solely for the purpose of addressing your report and do not share it.)
  • A technical description of the vulnerability, including:
    • When, where, how frequently, and how it was discovered
    • Which products/devices/systems are affected, including product numbers
If you are using an app or PC software:
  • Product name and version
  • Serial number of the connected device
  • Model of your smartphone or computer
  • Operating system version of your device
If you are reporting via the web:
  • Product name and version
  • URL of the website
  • Name and version of the browser used
  • Serial number of the connected device
  • Whether you had access to any protected health information or other personally identifiable information related to the user or product in which you discovered the vulnerability
    (Please do not include any protected health information or personally identifiable information about others in your email.)
  • Any other helpful information, such as:
    • Test environment and tools used
    • Whether you have already reported the vulnerability to other parties (e.g., authorities, vendors, coordination centers)
Disclaimer

The content of this “Cybersecurity Vulnerability Disclosure Policy” may be adjusted or updated due to legal requirements, product characteristics, or specific circumstances.

We do not guarantee that every reported vulnerability will lead to a specific response, resolution, or classification. The use of the information provided in this document or any linked content is at your own risk.

We reserve the right to change, update, or remove the contents of this policy at any time without prior notice. Updates will be published on the official website of ForaCare Europe GmbH.

Cybersecurity Advisories

We publish cybersecurity advisories for identified issues that may pose a moderate or high risk to our medical devices or related software.

We are committed to the safety and reliability of our products. This page will be updated as needed.

Cybersecurity Notifications

We are committed to providing information about relevant cybersecurity risks that may affect our medical devices or related software.
2024
No cybersecurity notifications have been published in 2024.
2023
No cybersecurity notifications were published in 2023.