The company should address security vulnerabilities when they are discovered.
Does the company clearly disclose that it has a mechanism through which security researchers can submit vulnerabilities they discover?
Does the company clearly disclose the timeframe in which it will review reports of vulnerabilities?
Does the company commit not to pursue legal action against researchers who report vulnerabilities within the terms of the company's reporting mechanism?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose that software updates, security patches, add-ons, or extensions are downloaded over an encrypted channel?
(For mobile ecosystems and telecommunications companies) Does the company clearly disclose what, if any, modifications it has made to a mobile operating system?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose the date through which it will continue to provide security updates for the device/OS?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company commit to provide security updates for the operating system and other critical software for a minimum of five years after release?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) If the company uses an operating system adapted from an existing system, does the company commit to provide security patches within one month of a vulnerability being announced to the public?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, modifications it has made to a personal digital assistant operating system?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
Does the company clearly disclose that it has a mechanism through which security researchers can submit vulnerabilities they discover?
Does the company clearly disclose the timeframe in which it will review reports of vulnerabilities?
Does the company commit not to pursue legal action against researchers who report vulnerabilities within the terms of the company's reporting mechanism?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose that software updates, security patches, add-ons, or extensions are downloaded over an encrypted channel?
(For mobile ecosystems and telecommunications companies) Does the company clearly disclose what, if any, modifications it has made to a mobile operating system?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose the date through which it will continue to provide security updates for the device/OS?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company commit to provide security updates for the operating system and other critical software for a minimum of five years after release?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) If the company uses an operating system adapted from an existing system, does the company commit to provide security patches within one month of a vulnerability being announced to the public?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, modifications it has made to a personal digital assistant operating system?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
Does the company clearly disclose that it has a mechanism through which security researchers can submit vulnerabilities they discover?
Does the company clearly disclose the timeframe in which it will review reports of vulnerabilities?
Does the company commit not to pursue legal action against researchers who report vulnerabilities within the terms of the company's reporting mechanism?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose that software updates, security patches, add-ons, or extensions are downloaded over an encrypted channel?
(For mobile ecosystems and telecommunications companies) Does the company clearly disclose what, if any, modifications it has made to a mobile operating system?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose the date through which it will continue to provide security updates for the device/OS?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company commit to provide security updates for the operating system and other critical software for a minimum of five years after release?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) If the company uses an operating system adapted from an existing system, does the company commit to provide security patches within one month of a vulnerability being announced to the public?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, modifications it has made to a personal digital assistant operating system?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
Does the company clearly disclose that it has a mechanism through which security researchers can submit vulnerabilities they discover?
Does the company clearly disclose the timeframe in which it will review reports of vulnerabilities?
Does the company commit not to pursue legal action against researchers who report vulnerabilities within the terms of the company's reporting mechanism?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose that software updates, security patches, add-ons, or extensions are downloaded over an encrypted channel?
(For mobile ecosystems and telecommunications companies) Does the company clearly disclose what, if any, modifications it has made to a mobile operating system?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose the date through which it will continue to provide security updates for the device/OS?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company commit to provide security updates for the operating system and other critical software for a minimum of five years after release?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) If the company uses an operating system adapted from an existing system, does the company commit to provide security patches within one month of a vulnerability being announced to the public?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, modifications it has made to a personal digital assistant operating system?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
Does the company clearly disclose that it has a mechanism through which security researchers can submit vulnerabilities they discover?
Does the company clearly disclose the timeframe in which it will review reports of vulnerabilities?
Does the company commit not to pursue legal action against researchers who report vulnerabilities within the terms of the company's reporting mechanism?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose that software updates, security patches, add-ons, or extensions are downloaded over an encrypted channel?
(For mobile ecosystems and telecommunications companies) Does the company clearly disclose what, if any, modifications it has made to a mobile operating system?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose the date through which it will continue to provide security updates for the device/OS?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company commit to provide security updates for the operating system and other critical software for a minimum of five years after release?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) If the company uses an operating system adapted from an existing system, does the company commit to provide security patches within one month of a vulnerability being announced to the public?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, modifications it has made to a personal digital assistant operating system?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
Does the company clearly disclose that it has a mechanism through which security researchers can submit vulnerabilities they discover?
Does the company clearly disclose the timeframe in which it will review reports of vulnerabilities?
Does the company commit not to pursue legal action against researchers who report vulnerabilities within the terms of the company's reporting mechanism?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose that software updates, security patches, add-ons, or extensions are downloaded over an encrypted channel?
(For mobile ecosystems and telecommunications companies) Does the company clearly disclose what, if any, modifications it has made to a mobile operating system?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose the date through which it will continue to provide security updates for the device/OS?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company commit to provide security updates for the operating system and other critical software for a minimum of five years after release?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) If the company uses an operating system adapted from an existing system, does the company commit to provide security patches within one month of a vulnerability being announced to the public?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, modifications it has made to a personal digital assistant operating system?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
Does the company clearly disclose that it has a mechanism through which security researchers can submit vulnerabilities they discover?
Does the company clearly disclose the timeframe in which it will review reports of vulnerabilities?
Does the company commit not to pursue legal action against researchers who report vulnerabilities within the terms of the company's reporting mechanism?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose that software updates, security patches, add-ons, or extensions are downloaded over an encrypted channel?
(For mobile ecosystems and telecommunications companies) Does the company clearly disclose what, if any, modifications it has made to a mobile operating system?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose the date through which it will continue to provide security updates for the device/OS?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company commit to provide security updates for the operating system and other critical software for a minimum of five years after release?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) If the company uses an operating system adapted from an existing system, does the company commit to provide security patches within one month of a vulnerability being announced to the public?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, modifications it has made to a personal digital assistant operating system?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
Does the company clearly disclose that it has a mechanism through which security researchers can submit vulnerabilities they discover?
Does the company clearly disclose the timeframe in which it will review reports of vulnerabilities?
Does the company commit not to pursue legal action against researchers who report vulnerabilities within the terms of the company's reporting mechanism?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose that software updates, security patches, add-ons, or extensions are downloaded over an encrypted channel?
(For mobile ecosystems and telecommunications companies) Does the company clearly disclose what, if any, modifications it has made to a mobile operating system?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose the date through which it will continue to provide security updates for the device/OS?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company commit to provide security updates for the operating system and other critical software for a minimum of five years after release?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) If the company uses an operating system adapted from an existing system, does the company commit to provide security patches within one month of a vulnerability being announced to the public?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, modifications it has made to a personal digital assistant operating system?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
Does the company clearly disclose that it has a mechanism through which security researchers can submit vulnerabilities they discover?
Does the company clearly disclose the timeframe in which it will review reports of vulnerabilities?
Does the company commit not to pursue legal action against researchers who report vulnerabilities within the terms of the company's reporting mechanism?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose that software updates, security patches, add-ons, or extensions are downloaded over an encrypted channel?
(For mobile ecosystems and telecommunications companies) Does the company clearly disclose what, if any, modifications it has made to a mobile operating system?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose the date through which it will continue to provide security updates for the device/OS?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company commit to provide security updates for the operating system and other critical software for a minimum of five years after release?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) If the company uses an operating system adapted from an existing system, does the company commit to provide security patches within one month of a vulnerability being announced to the public?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, modifications it has made to a personal digital assistant operating system?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
Does the company clearly disclose that it has a mechanism through which security researchers can submit vulnerabilities they discover?
Does the company clearly disclose the timeframe in which it will review reports of vulnerabilities?
Does the company commit not to pursue legal action against researchers who report vulnerabilities within the terms of the company's reporting mechanism?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose that software updates, security patches, add-ons, or extensions are downloaded over an encrypted channel?
(For mobile ecosystems and telecommunications companies) Does the company clearly disclose what, if any, modifications it has made to a mobile operating system?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose the date through which it will continue to provide security updates for the device/OS?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company commit to provide security updates for the operating system and other critical software for a minimum of five years after release?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) If the company uses an operating system adapted from an existing system, does the company commit to provide security patches within one month of a vulnerability being announced to the public?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, modifications it has made to a personal digital assistant operating system?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
Does the company clearly disclose that it has a mechanism through which security researchers can submit vulnerabilities they discover?
Does the company clearly disclose the timeframe in which it will review reports of vulnerabilities?
Does the company commit not to pursue legal action against researchers who report vulnerabilities within the terms of the company's reporting mechanism?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose that software updates, security patches, add-ons, or extensions are downloaded over an encrypted channel?
(For mobile ecosystems and telecommunications companies) Does the company clearly disclose what, if any, modifications it has made to a mobile operating system?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose the date through which it will continue to provide security updates for the device/OS?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company commit to provide security updates for the operating system and other critical software for a minimum of five years after release?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) If the company uses an operating system adapted from an existing system, does the company commit to provide security patches within one month of a vulnerability being announced to the public?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, modifications it has made to a personal digital assistant operating system?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
Does the company clearly disclose that it has a mechanism through which security researchers can submit vulnerabilities they discover?
Does the company clearly disclose the timeframe in which it will review reports of vulnerabilities?
Does the company commit not to pursue legal action against researchers who report vulnerabilities within the terms of the company's reporting mechanism?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose that software updates, security patches, add-ons, or extensions are downloaded over an encrypted channel?
(For mobile ecosystems and telecommunications companies) Does the company clearly disclose what, if any, modifications it has made to a mobile operating system?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose the date through which it will continue to provide security updates for the device/OS?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company commit to provide security updates for the operating system and other critical software for a minimum of five years after release?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) If the company uses an operating system adapted from an existing system, does the company commit to provide security patches within one month of a vulnerability being announced to the public?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, modifications it has made to a personal digital assistant operating system?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
Does the company clearly disclose that it has a mechanism through which security researchers can submit vulnerabilities they discover?
Does the company clearly disclose the timeframe in which it will review reports of vulnerabilities?
Does the company commit not to pursue legal action against researchers who report vulnerabilities within the terms of the company's reporting mechanism?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose that software updates, security patches, add-ons, or extensions are downloaded over an encrypted channel?
(For mobile ecosystems and telecommunications companies) Does the company clearly disclose what, if any, modifications it has made to a mobile operating system?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose the date through which it will continue to provide security updates for the device/OS?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company commit to provide security updates for the operating system and other critical software for a minimum of five years after release?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) If the company uses an operating system adapted from an existing system, does the company commit to provide security patches within one month of a vulnerability being announced to the public?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, modifications it has made to a personal digital assistant operating system?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
Does the company clearly disclose that it has a mechanism through which security researchers can submit vulnerabilities they discover?
Does the company clearly disclose the timeframe in which it will review reports of vulnerabilities?
Does the company commit not to pursue legal action against researchers who report vulnerabilities within the terms of the company's reporting mechanism?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose that software updates, security patches, add-ons, or extensions are downloaded over an encrypted channel?
(For mobile ecosystems and telecommunications companies) Does the company clearly disclose what, if any, modifications it has made to a mobile operating system?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose the date through which it will continue to provide security updates for the device/OS?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company commit to provide security updates for the operating system and other critical software for a minimum of five years after release?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) If the company uses an operating system adapted from an existing system, does the company commit to provide security patches within one month of a vulnerability being announced to the public?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, modifications it has made to a personal digital assistant operating system?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
Does the company clearly disclose that it has a mechanism through which security researchers can submit vulnerabilities they discover?
Does the company clearly disclose the timeframe in which it will review reports of vulnerabilities?
Does the company commit not to pursue legal action against researchers who report vulnerabilities within the terms of the company's reporting mechanism?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose that software updates, security patches, add-ons, or extensions are downloaded over an encrypted channel?
(For mobile ecosystems and telecommunications companies) Does the company clearly disclose what, if any, modifications it has made to a mobile operating system?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose the date through which it will continue to provide security updates for the device/OS?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company commit to provide security updates for the operating system and other critical software for a minimum of five years after release?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) If the company uses an operating system adapted from an existing system, does the company commit to provide security patches within one month of a vulnerability being announced to the public?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, modifications it has made to a personal digital assistant operating system?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
Does the company clearly disclose that it has a mechanism through which security researchers can submit vulnerabilities they discover?
Does the company clearly disclose the timeframe in which it will review reports of vulnerabilities?
Does the company commit not to pursue legal action against researchers who report vulnerabilities within the terms of the company's reporting mechanism?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose that software updates, security patches, add-ons, or extensions are downloaded over an encrypted channel?
(For mobile ecosystems and telecommunications companies) Does the company clearly disclose what, if any, modifications it has made to a mobile operating system?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose the date through which it will continue to provide security updates for the device/OS?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company commit to provide security updates for the operating system and other critical software for a minimum of five years after release?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) If the company uses an operating system adapted from an existing system, does the company commit to provide security patches within one month of a vulnerability being announced to the public?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, modifications it has made to a personal digital assistant operating system?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
Does the company clearly disclose that it has a mechanism through which security researchers can submit vulnerabilities they discover?
Does the company clearly disclose the timeframe in which it will review reports of vulnerabilities?
Does the company commit not to pursue legal action against researchers who report vulnerabilities within the terms of the company's reporting mechanism?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose that software updates, security patches, add-ons, or extensions are downloaded over an encrypted channel?
(For mobile ecosystems and telecommunications companies) Does the company clearly disclose what, if any, modifications it has made to a mobile operating system?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose the date through which it will continue to provide security updates for the device/OS?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company commit to provide security updates for the operating system and other critical software for a minimum of five years after release?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) If the company uses an operating system adapted from an existing system, does the company commit to provide security patches within one month of a vulnerability being announced to the public?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, modifications it has made to a personal digital assistant operating system?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
Does the company clearly disclose that it has a mechanism through which security researchers can submit vulnerabilities they discover?
Does the company clearly disclose the timeframe in which it will review reports of vulnerabilities?
Does the company commit not to pursue legal action against researchers who report vulnerabilities within the terms of the company's reporting mechanism?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose that software updates, security patches, add-ons, or extensions are downloaded over an encrypted channel?
(For mobile ecosystems and telecommunications companies) Does the company clearly disclose what, if any, modifications it has made to a mobile operating system?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose the date through which it will continue to provide security updates for the device/OS?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company commit to provide security updates for the operating system and other critical software for a minimum of five years after release?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) If the company uses an operating system adapted from an existing system, does the company commit to provide security patches within one month of a vulnerability being announced to the public?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, modifications it has made to a personal digital assistant operating system?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
Does the company clearly disclose that it has a mechanism through which security researchers can submit vulnerabilities they discover?
Does the company clearly disclose the timeframe in which it will review reports of vulnerabilities?
Does the company commit not to pursue legal action against researchers who report vulnerabilities within the terms of the company's reporting mechanism?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose that software updates, security patches, add-ons, or extensions are downloaded over an encrypted channel?
(For mobile ecosystems and telecommunications companies) Does the company clearly disclose what, if any, modifications it has made to a mobile operating system?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose the date through which it will continue to provide security updates for the device/OS?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company commit to provide security updates for the operating system and other critical software for a minimum of five years after release?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) If the company uses an operating system adapted from an existing system, does the company commit to provide security patches within one month of a vulnerability being announced to the public?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, modifications it has made to a personal digital assistant operating system?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
Does the company clearly disclose that it has a mechanism through which security researchers can submit vulnerabilities they discover?
Does the company clearly disclose the timeframe in which it will review reports of vulnerabilities?
Does the company commit not to pursue legal action against researchers who report vulnerabilities within the terms of the company's reporting mechanism?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose that software updates, security patches, add-ons, or extensions are downloaded over an encrypted channel?
(For mobile ecosystems and telecommunications companies) Does the company clearly disclose what, if any, modifications it has made to a mobile operating system?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose the date through which it will continue to provide security updates for the device/OS?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company commit to provide security updates for the operating system and other critical software for a minimum of five years after release?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) If the company uses an operating system adapted from an existing system, does the company commit to provide security patches within one month of a vulnerability being announced to the public?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, modifications it has made to a personal digital assistant operating system?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
Does the company clearly disclose that it has a mechanism through which security researchers can submit vulnerabilities they discover?
Does the company clearly disclose the timeframe in which it will review reports of vulnerabilities?
Does the company commit not to pursue legal action against researchers who report vulnerabilities within the terms of the company's reporting mechanism?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose that software updates, security patches, add-ons, or extensions are downloaded over an encrypted channel?
(For mobile ecosystems and telecommunications companies) Does the company clearly disclose what, if any, modifications it has made to a mobile operating system?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose the date through which it will continue to provide security updates for the device/OS?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company commit to provide security updates for the operating system and other critical software for a minimum of five years after release?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) If the company uses an operating system adapted from an existing system, does the company commit to provide security patches within one month of a vulnerability being announced to the public?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, modifications it has made to a personal digital assistant operating system?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
Does the company clearly disclose that it has a mechanism through which security researchers can submit vulnerabilities they discover?
Does the company clearly disclose the timeframe in which it will review reports of vulnerabilities?
Does the company commit not to pursue legal action against researchers who report vulnerabilities within the terms of the company's reporting mechanism?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose that software updates, security patches, add-ons, or extensions are downloaded over an encrypted channel?
(For mobile ecosystems and telecommunications companies) Does the company clearly disclose what, if any, modifications it has made to a mobile operating system?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose the date through which it will continue to provide security updates for the device/OS?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company commit to provide security updates for the operating system and other critical software for a minimum of five years after release?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) If the company uses an operating system adapted from an existing system, does the company commit to provide security patches within one month of a vulnerability being announced to the public?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, modifications it has made to a personal digital assistant operating system?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
Does the company clearly disclose that it has a mechanism through which security researchers can submit vulnerabilities they discover?
Does the company clearly disclose the timeframe in which it will review reports of vulnerabilities?
Does the company commit not to pursue legal action against researchers who report vulnerabilities within the terms of the company's reporting mechanism?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose that software updates, security patches, add-ons, or extensions are downloaded over an encrypted channel?
(For mobile ecosystems and telecommunications companies) Does the company clearly disclose what, if any, modifications it has made to a mobile operating system?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose the date through which it will continue to provide security updates for the device/OS?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company commit to provide security updates for the operating system and other critical software for a minimum of five years after release?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) If the company uses an operating system adapted from an existing system, does the company commit to provide security patches within one month of a vulnerability being announced to the public?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, modifications it has made to a personal digital assistant operating system?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
Does the company clearly disclose that it has a mechanism through which security researchers can submit vulnerabilities they discover?
Does the company clearly disclose the timeframe in which it will review reports of vulnerabilities?
Does the company commit not to pursue legal action against researchers who report vulnerabilities within the terms of the company's reporting mechanism?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose that software updates, security patches, add-ons, or extensions are downloaded over an encrypted channel?
(For mobile ecosystems and telecommunications companies) Does the company clearly disclose what, if any, modifications it has made to a mobile operating system?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose the date through which it will continue to provide security updates for the device/OS?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company commit to provide security updates for the operating system and other critical software for a minimum of five years after release?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) If the company uses an operating system adapted from an existing system, does the company commit to provide security patches within one month of a vulnerability being announced to the public?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, modifications it has made to a personal digital assistant operating system?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
Does the company clearly disclose that it has a mechanism through which security researchers can submit vulnerabilities they discover?
Does the company clearly disclose the timeframe in which it will review reports of vulnerabilities?
Does the company commit not to pursue legal action against researchers who report vulnerabilities within the terms of the company's reporting mechanism?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose that software updates, security patches, add-ons, or extensions are downloaded over an encrypted channel?
(For mobile ecosystems and telecommunications companies) Does the company clearly disclose what, if any, modifications it has made to a mobile operating system?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose the date through which it will continue to provide security updates for the device/OS?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company commit to provide security updates for the operating system and other critical software for a minimum of five years after release?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) If the company uses an operating system adapted from an existing system, does the company commit to provide security patches within one month of a vulnerability being announced to the public?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, modifications it has made to a personal digital assistant operating system?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
Does the company clearly disclose that it has a mechanism through which security researchers can submit vulnerabilities they discover?
Does the company clearly disclose the timeframe in which it will review reports of vulnerabilities?
Does the company commit not to pursue legal action against researchers who report vulnerabilities within the terms of the company's reporting mechanism?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose that software updates, security patches, add-ons, or extensions are downloaded over an encrypted channel?
(For mobile ecosystems and telecommunications companies) Does the company clearly disclose what, if any, modifications it has made to a mobile operating system?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose the date through which it will continue to provide security updates for the device/OS?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company commit to provide security updates for the operating system and other critical software for a minimum of five years after release?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) If the company uses an operating system adapted from an existing system, does the company commit to provide security patches within one month of a vulnerability being announced to the public?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, modifications it has made to a personal digital assistant operating system?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
Does the company clearly disclose that it has a mechanism through which security researchers can submit vulnerabilities they discover?
Does the company clearly disclose the timeframe in which it will review reports of vulnerabilities?
Does the company commit not to pursue legal action against researchers who report vulnerabilities within the terms of the company's reporting mechanism?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose that software updates, security patches, add-ons, or extensions are downloaded over an encrypted channel?
(For mobile ecosystems and telecommunications companies) Does the company clearly disclose what, if any, modifications it has made to a mobile operating system?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose the date through which it will continue to provide security updates for the device/OS?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company commit to provide security updates for the operating system and other critical software for a minimum of five years after release?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) If the company uses an operating system adapted from an existing system, does the company commit to provide security patches within one month of a vulnerability being announced to the public?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, modifications it has made to a personal digital assistant operating system?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
Does the company clearly disclose that it has a mechanism through which security researchers can submit vulnerabilities they discover?
Does the company clearly disclose the timeframe in which it will review reports of vulnerabilities?
Does the company commit not to pursue legal action against researchers who report vulnerabilities within the terms of the company's reporting mechanism?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose that software updates, security patches, add-ons, or extensions are downloaded over an encrypted channel?
(For mobile ecosystems and telecommunications companies) Does the company clearly disclose what, if any, modifications it has made to a mobile operating system?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose the date through which it will continue to provide security updates for the device/OS?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company commit to provide security updates for the operating system and other critical software for a minimum of five years after release?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) If the company uses an operating system adapted from an existing system, does the company commit to provide security patches within one month of a vulnerability being announced to the public?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, modifications it has made to a personal digital assistant operating system?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
Does the company clearly disclose that it has a mechanism through which security researchers can submit vulnerabilities they discover?
Does the company clearly disclose the timeframe in which it will review reports of vulnerabilities?
Does the company commit not to pursue legal action against researchers who report vulnerabilities within the terms of the company's reporting mechanism?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose that software updates, security patches, add-ons, or extensions are downloaded over an encrypted channel?
(For mobile ecosystems and telecommunications companies) Does the company clearly disclose what, if any, modifications it has made to a mobile operating system?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose the date through which it will continue to provide security updates for the device/OS?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company commit to provide security updates for the operating system and other critical software for a minimum of five years after release?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) If the company uses an operating system adapted from an existing system, does the company commit to provide security patches within one month of a vulnerability being announced to the public?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, modifications it has made to a personal digital assistant operating system?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
Does the company clearly disclose that it has a mechanism through which security researchers can submit vulnerabilities they discover?
Does the company clearly disclose the timeframe in which it will review reports of vulnerabilities?
Does the company commit not to pursue legal action against researchers who report vulnerabilities within the terms of the company's reporting mechanism?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose that software updates, security patches, add-ons, or extensions are downloaded over an encrypted channel?
(For mobile ecosystems and telecommunications companies) Does the company clearly disclose what, if any, modifications it has made to a mobile operating system?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose the date through which it will continue to provide security updates for the device/OS?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company commit to provide security updates for the operating system and other critical software for a minimum of five years after release?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) If the company uses an operating system adapted from an existing system, does the company commit to provide security patches within one month of a vulnerability being announced to the public?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, modifications it has made to a personal digital assistant operating system?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
Does the company clearly disclose that it has a mechanism through which security researchers can submit vulnerabilities they discover?
Does the company clearly disclose the timeframe in which it will review reports of vulnerabilities?
Does the company commit not to pursue legal action against researchers who report vulnerabilities within the terms of the company's reporting mechanism?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose that software updates, security patches, add-ons, or extensions are downloaded over an encrypted channel?
(For mobile ecosystems and telecommunications companies) Does the company clearly disclose what, if any, modifications it has made to a mobile operating system?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose the date through which it will continue to provide security updates for the device/OS?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company commit to provide security updates for the operating system and other critical software for a minimum of five years after release?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) If the company uses an operating system adapted from an existing system, does the company commit to provide security patches within one month of a vulnerability being announced to the public?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, modifications it has made to a personal digital assistant operating system?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
Does the company clearly disclose that it has a mechanism through which security researchers can submit vulnerabilities they discover?
Does the company clearly disclose the timeframe in which it will review reports of vulnerabilities?
Does the company commit not to pursue legal action against researchers who report vulnerabilities within the terms of the company's reporting mechanism?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose that software updates, security patches, add-ons, or extensions are downloaded over an encrypted channel?
(For mobile ecosystems and telecommunications companies) Does the company clearly disclose what, if any, modifications it has made to a mobile operating system?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose the date through which it will continue to provide security updates for the device/OS?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company commit to provide security updates for the operating system and other critical software for a minimum of five years after release?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) If the company uses an operating system adapted from an existing system, does the company commit to provide security patches within one month of a vulnerability being announced to the public?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, modifications it has made to a personal digital assistant operating system?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
Does the company clearly disclose that it has a mechanism through which security researchers can submit vulnerabilities they discover?
Does the company clearly disclose the timeframe in which it will review reports of vulnerabilities?
Does the company commit not to pursue legal action against researchers who report vulnerabilities within the terms of the company's reporting mechanism?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose that software updates, security patches, add-ons, or extensions are downloaded over an encrypted channel?
(For mobile ecosystems and telecommunications companies) Does the company clearly disclose what, if any, modifications it has made to a mobile operating system?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose the date through which it will continue to provide security updates for the device/OS?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company commit to provide security updates for the operating system and other critical software for a minimum of five years after release?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) If the company uses an operating system adapted from an existing system, does the company commit to provide security patches within one month of a vulnerability being announced to the public?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, modifications it has made to a personal digital assistant operating system?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
Does the company clearly disclose that it has a mechanism through which security researchers can submit vulnerabilities they discover?
Does the company clearly disclose the timeframe in which it will review reports of vulnerabilities?
Does the company commit not to pursue legal action against researchers who report vulnerabilities within the terms of the company's reporting mechanism?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose that software updates, security patches, add-ons, or extensions are downloaded over an encrypted channel?
(For mobile ecosystems and telecommunications companies) Does the company clearly disclose what, if any, modifications it has made to a mobile operating system?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose the date through which it will continue to provide security updates for the device/OS?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company commit to provide security updates for the operating system and other critical software for a minimum of five years after release?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) If the company uses an operating system adapted from an existing system, does the company commit to provide security patches within one month of a vulnerability being announced to the public?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, modifications it has made to a personal digital assistant operating system?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
Does the company clearly disclose that it has a mechanism through which security researchers can submit vulnerabilities they discover?
Does the company clearly disclose the timeframe in which it will review reports of vulnerabilities?
Does the company commit not to pursue legal action against researchers who report vulnerabilities within the terms of the company's reporting mechanism?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose that software updates, security patches, add-ons, or extensions are downloaded over an encrypted channel?
(For mobile ecosystems and telecommunications companies) Does the company clearly disclose what, if any, modifications it has made to a mobile operating system?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company clearly disclose the date through which it will continue to provide security updates for the device/OS?
(For mobile ecosystems and personal digital assistant ecosystems) Does the company commit to provide security updates for the operating system and other critical software for a minimum of five years after release?
(For mobile ecosystems, personal digital assistant ecosystems, and telecommunications companies) If the company uses an operating system adapted from an existing system, does the company commit to provide security patches within one month of a vulnerability being announced to the public?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, modifications it has made to a personal digital assistant operating system?
(For personal digital assistant ecosystems): Does the company clearly disclose what, if any, effect such modifications have on the company's ability to send security updates to users?