Report a security concern
At OVO, we value the investigative efforts of well-intentioned ethical security researchers who identify vulnerabilities in our security. We are fanatical about our customer’s security and work in close collaboration with the security community to identify, investigate, and resolve security issues within our platform and services.
Bug Bounty
OVO offers a pre-registered paid bug bounty program. Details on joining the programme are available via our partner here.
Reporting a vulnerability
If you discover an issue which you believe is a security vulnerability, please report it via OVO’s Vulnerability Disclosure Programme.
Please read the instructions fully prior to reporting any vulnerabilities to ensure that you understand and can act in compliance with policy. This includes further guidance on common good practice among well-intentioned security researchers. It does not give you permission to act in any manner that is inconsistent with the law or cause OVO to be in breach of any of its legal obligations.
If you have a general issue with your OVO account, please chat to us via webchat instead.