Solutions
- Airlines
  - Amadeus for Airlines
  - Products
- Airports
  - Amadeus for Airports
  - Products
- Border Authorities
  - Amadeus for Border Authorities
  - Products
- Corporate Travel & Expense
  - Products
  - Capabilities
  - Integrations
    - Travel & Expense Solution for Microsoft Teams
- Travel Sellers
  - Products
  - Content
- Hospitality
- Payments & e-invoicing
  - Outpayce
  - Voxel: B2B Payments and e-Invoicing
- Unlocking the power of AI agents in travel
  
  In this whitepaper, Amadeus and Microsoft explore how AI agents and modern data platforms are improving travel at every stage.
  Learn more
- Traveler behavior is changing at every touchpoint
  
  Explore bold ideas, lead with cutting-edge tech, build powerful partnerships, and contribute to lasting impact.
  Learn more
Support & Training
- Support
- Training
- Already a customer?
  
  Log into Amadeus Service Hub for product news, learning materials, and customer support.
  Login
Partners
- Transforming travel with AI
  
  Our partnership with Microsoft accelerates our Cloud journey and unlocks new, AI‑powered innovations that strengthen and elevate the travel industry.
  Learn more
- Landmark partnership between Amadeus and Google Cloud
  
  Learn how this collaboration strengthens Amadeus' multi-cloud approach and AI innovation to improve efficiency, reliability and growth in travel.
  Learn more
Resources
- Trending Topics
- Connected journeys: How will technology transform travel in the next decade?
  
  From AI-driven planning and biometric check-ins to smarter disruption management.
  Read the report
- Six travel trends that will redefine how we travel in 2026 and beyond
  
  Amadeus, in collaboration with Globetrender, unveils the tech, policy and innovation coming to transform the face of travel.
  Discover now
Company
- About Amadeus
  - About us
  - Leadership
  - Awards
  - Locations
- Careers
- Innovation
- Sustainability (ESG)
  
  Learn how we’re working to make travel a force for good.
- AI at Amadeus
  
  Driving integration, scalability, trust and integrity across the travel industry.
  Learn more
- Latest financial results
  
  Amadeus published its financial results for FY 2025.
  View the results

Vulnerability Disclosure Policy

Last updated - March 2025

Vulnerability reporting policy

Amadeus appreciates the valuable role independent security researchers play in Internet security today. Keeping our customer’s data secure is our highest priority and we encourage the responsible reporting of any vulnerability that may be found. By responsible disclosure Amadeus expects to be provided information about potential security discoveries in a private and confidential manner such that it can be verified and responded to before being made public. Additionally, Amadeus pledges not to initiate legal action against security researchers as long as they adhere to below conditions.

A managed VDP provides a coordinated channel and framework to enable anyone, anywhere, to responsible disclose security vulnerabilities found on publicly accessible assets. A managed VDP helps reduces noise and accelerates remediation. For more context, please see the Vulnerability Disclosure Program .

Reporting a potential security vulnerability

Security researchers should confidentially and responsibly disclose full details of a suspected vulnerability so Amadeus application and security teams may validate and reproduce the issue by sending a vulnerability report.

Amadeus does not permit the following types of security research

Exploitation of a potential vulnerability - only the reporting of potential vulnerabilities
Causing or attempting a Denial of Service(DoS) or Distributed (DDoS) condition
Causing or attempting to cause a service availability risk for production systems, applications or data
Accessing or attempting to access data or information that does not belong to you or that you do not have authority to be accessing legally or contractually
Destroying or corrupting, or attempting to destroy or corrupt application data, systems or network data or information that does not belong to you - or that you do not have legal or contractual authority to access
Phishing or social engineering of Amadeus employees, affiliates, or Amadeus customers
Running automated scanning tools
Current customer or potential new customer security research on community systems

The Amadeus security team commitment

To all security researchers who follow the above policy, the Amadeus security team will make best efforts to:

Respond in a timely manner, acknowledging receipt of your report
Handle your report with strict confidentiality and not pass on personal details to third parties without your permission
Amadeus may at some time in the future give recognition for the discoverer of vulnerabilities – unless the security researcher chooses to remain anonymous which will be respected

No compensation

Amadeus does not compensate people for reporting security vulnerabilities. Any such requests for compensation either directly - or externally in vulnerability marketplaces - will be considered a violation of the above policy conditions. In such an event, Amadeus reserves all of its legal rights.

For U.S. residents:

Please refer to ourUnited States Supplemental Privacy Noticefor additional information applicable to individuals residing in the United States.