DealerMAX · partnermax · Trust
Trust
Public artefacts that describe how DealerMAX runs the partnermax service: who processes the data, how vulnerabilities are reported, and where the operational surface is documented.
Trust posture
- Sub-processors — machine-readable inventory: https://developers.dealermax.app/.well-known/subprocessors.json
- Security contact — RFC 9116: https://developers.dealermax.app/.well-known/security.txt
- Security advisories — Atom feed: https://developers.dealermax.app/.well-known/security-advisories.atom
- Coordinated disclosure — see https://developers.dealermax.app/trust/dealer-security
- Hall of recognition — public credit for security researchers: https://developers.dealermax.app/trust/hall-of-recognition
Compliance roadmap
SOC 2 Type 1 readiness target Q3 2026. ISO 27001 readiness assessment in roadmap. Independent penetration test on an annual cadence. Full detail at https://developers.dealermax.app/docs → 11 Security & Compliance.