Report security or privacy vulnerability issues

If you believe you have identified a security or privacy vulnerability in your Ecovacs product, please report it to us.

For technical support, please refer to relevant support articles or contact Ecovacs team.

If you have questions or concerns about Ecovacs' privacy policy or data processing rules, please contact us as well.

How to report security or privacy vulnerabilities

If you believe you have found a security or privacy vulnerability affecting Ecovacs devices, software, services, or web servers, please report it to us. We welcome feedback from anyone,  whether you are a security researcher, developer, or customer.

To report a security or privacy vulnerability, please send an email to product-security@ecovacs.com with the following information included:       

● The product model and software version that you believe are affected

● Description about the behavior you observe and the behavior you expect

● Numbered steps to reproduce the problem scenario or a video demonstration (if the steps may be difficult to complete)

You will receive an automatic response from Ecovacs team to confirm that we have received your report. We will contact you if we need more information.

How Ecovacs will handle these types of reports

To protect our customers, Ecovacs will not disclose, discuss or confirm security issues until the investigation has been completed and any necessary update has been fully rolled out.

Ecovacs uses security bulletins to publish information about security fixes in our products and to publicly thank people or organizations that reported security issues to us. We also thank researchers who reported web server security issues on the Ecovacs web server notification page.