The essential role of vulnerability disclosure cover

Navigating the PSTI Act with Vulnerability Disclosure

The UK PSTI Act introduces minimum security requirements for consumer connectable products, including clear vulnerability reporting processes.

This guide explains what the Act means, who needs to comply, and how vulnerability disclosure policies help manufacturers, importers, and distributors meet their obligations.

Get your free copy of the ebook here!

To design an effective crowdsourced defense, you must first understand the minds of the researchers protecting your targets.

Learn what the Product Security and Telecommunications Infrastructure Act covers and why Part 1 matters for consumer IoT security.

See which manufacturers, importers, distributors, and connected product categories fall under the Act’s security requirements.

Explore the Act’s focus on vulnerability reporting processes, no default passwords, and transparent security update periods.

Get practical guidance on scope, reporting channels, acknowledgement, remediation, disclosure, communication, and legal safeguards.

Compare hosting your VDP internally with using a bug bounty platform to centralize reporting, triage, researcher communication, and validation.

Navigating the PSTI Act with vulnerability disclosure

Turn PSTI compliance into a security advantage

Do not let regulatory deadlines or compliance audits disrupt your product lifecycles. Download our handbook to understand the legal scope of the PSTI Act and deploy a compliant vulnerability program today.

Download now

AI Security & Safety

Product types

Platform

For customers

Industries we serve

Resources

Plans to suit your security testing needs

Learn more about our company

About Intigriti

Useful links

Blog

Using AI the smart way. Interview with Cristian Zot (CristiVlad25)

Intigriti named Best Security Company of 2026 at the SC Awards

Marketer by day, bug hunter by night. Interview with Stefan Goossens (G0053)

Navigating the PSTI Act with Vulnerability Disclosure

To design an effective crowdsourced defense, you must first understand the minds of the researchers protecting your targets.

Turn PSTI compliance into a security advantage

AI Security & Safety

For teams using AI to build faster

For teams building AI into products

Product types

Bug bounty

PTaaS

Managed VDP

Live hacking events

Platform

Platform tour

Integrations

Trust center

For customers

Additional demos

Knowledge base

Uptime and status

Changelog

Industries we serve

Retail

Gaming and eSports

Finance and Insurance

Leisure and Hospitality

B2B SaaS

Telecommunications

Government and Public services

Transport & Logistics

Healthcare

News, media, published content

eCommerce and transactional websites

IoT and B2B ecosystems

Resources

Customer stories

Blog

Information sheets

Ebooks

Webinars

Shorts

Events

Bug bounty talks

Plans to suit your security testing needs

Core

Premium

Enterprise

Learn more about our company

About us

Leadership

Careers

Contact us

About Intigriti

How it works

Public programs

Intigriti Ambassador

Useful links

Leaderboard

Learn to hack

Swag shop

Newsletter

Bug bounty talks

Blog

Events

Bug Bounty Starter kit

Blog

Using AI the smart way. Interview with Cristian Zot (CristiVlad25)

Intigriti named Best Security Company of 2026 at the SC Awards

Marketer by day, bug hunter by night. Interview with Stefan Goossens (G0053)

Navigating the PSTI Act with Vulnerability Disclosure

To design an effective crowdsourced defense, you must first understand the minds of the researchers protecting your targets.

Turn PSTI compliance into a security advantage