PushPushGo logo PushPushGo push service GDPR compliant
Solutions arrow icon
Products Web push Mobile push Transactional push Onsite notifications PushPushGo Core
Industry News and Media E-commerce Travel Hospitality Telecom Finance
Functions Analytics panel Multi Push Personalization Automation Inbox
Pricing
Resources arrow icon
case study icon Case study
clients speak icon Our clients speak
Business use cases
blog icon Blog
ebooks icon E-books
webinars icon Webinars
emarketing talks icon E-marketing talks
Documentation arrow icon
user guide icon User guide
faq icon FAQ
developers icon Developers hub
changelog icon Changelog
Sign in Sign up
EN
PL
Solutions
Products Web push Mobile push Transactional push Onsite notifications PushPushGo Core
Functions Analytics panel Multi Push Personalization Automation Inbox
Industry News and Media E-commerce Travel Hospitality Telecom Finance
Pricing
Resources
Case study Our clients speak Blog E-books Webinars
Documentation
User guide FAQ Developers hub Changelog
Sign in Sign up
EN
PL
Products Web push Mobile push PushPushGo Core
Functions Personalization Automation Retention Abandoned cart recovery Cross selling
Up selling Conversion rate Lead nurturing Rocket push for breaking news
A/B tests Analytics API SDK
Industries News & Media E-commerce Travel Telecommunication Finance Software
Case study
Our clients speak
Blog
E-books
Webinars
User guide
FAQ
Developers hub
Changelog

Bug Bounty

No technology is perfect, and PushPushGo believes that working with skilled security researchers across the globe is crucial in identifying weaknesses in any technology. If you believe you've found a security issue in our product or service, we encourage you to notify us. We welcome working with you to resolve the issue promptly.

Program Status: SUSPENDED

Disclosure Policy

  • Let us know as soon as possible upon discovery of a potential security issue, and we'll make every effort to quickly resolve the issue.

  • Provide us a reasonable amount of time to resolve the issue before any disclosure to the public or a third-party.

  • Make a good faith effort to avoid privacy violations, destruction of data, and interruption or degradation of our service. Interact only with accounts of your own or with explicit permission of the account holder.

Reporters accounts

Researchers can sign up for a trial with mail suffix +bugbounty ex. person+[email protected]

SLA

PushPushGo will make the best effort to meet the following SLAs for hackers participating in our program:

  • Time to first response (from report submission) - 3 business days

  • Time to triage (from first response) - 3 business days

  • Time for resolution - depending on severity and complexity

Exclusions

While researching, we'd like to ask you to refrain from:

  • (Distributed) Denial of service

  • Weak password policy

  • Spamming

  • Cookie flags

  • Social engineering (including phishing) of PushPushGo staff or contractors

  • Any physical attempts against PushPushGo property or data centers

  • Brute-force, / Rate-limiting, / Velocity throttling, and other denial of service-based issues.

  • XSS (or a behavior) where you can only attack yourself (e.g. "Self XSS").

  • XSS on pages where admins are intentionally given full HTML editing capabilities, such as custom theme editing

Safe Harbor

Any activities conducted in a manner consistent with this policy will be considered authorized conduct and we will not initiate legal action against you. If legal action is initiated by a third party against you in connection with activities conducted under this policy, we will take steps to make it known that your actions were conducted in compliance with this policy.

Thank you for helping keep PushPushGo and our users safe!

How to report issue?

Please send the issue with a description and steps to reproduce to [email protected]

How to receive a reward?

Please prepare receipt / invoice on our company data and the amount that we agreed on.

Company data:

PushPushGo sp. z o.o.
VAT-UE: PL675-160-1766

Al. 29 Listopada 155c
31-406 Cracow
Poland

All of the above data should be visible on the invoice / receipt.

Push your business forward with PushPushGo

Test for free Start a 30-day trial!
pushpushgo logo
Company
About PushPushGo Contact Jobs GDPR Privacy policy Regulations Newsletter terms and conditions Policy of presenting opinions PushPushGo
App
Pricing Bug bounty Changelog User guide Developers Hub Status page
Products
Web push Mobile push Transactional push Onsite notifications CORE by PushPushGo
Would you like to become our partner?
Partners
Subscribe our newsletter
Thank you for subscribing.
Something went wrong! Try again.
More info

I want to receive a newsletter, which includes marketing and commercial information about promotions, new articles on the blog, new products, events, and services related to the website www.pushpushgo.com. Messages will be sent for the purpose of direct marketing, using the email address provided by me. The data controller will be PushPushGo sp. z o.o. You can find more information in the Privacy Policy and Newsletter Terms and Conditions.

[email protected] + 48 12 312-52-13
linkedin pushpushgo twitter pushpushgo facebook pushpushgo instagram pushpushgo youtube pushpushgo
pushpushgo capterra raiting

The administrator of personal data is: PushPushGo sp. z o.o. with its registered office in Krakow at Quattro Business Park, Generała Tadeusza Bora-Komorowskiego 25C, 31-476 Kraków, registered by the District Court for Krakow-Śródmieście in Krakow, XI Economic Division of the National Court Register under the KRS number 0000688693, Tax Identification Number (NIP) 6751601766, and National Official Business Register (REGON) 367877285.

Data Protection Officer: Katarzyna Krzywicka
E-mail: [email protected]

Copyright © 2025 by PushPushGo.
All rights reserved.