Big Time Bug Bounty Program

Program Overview

The Big Time Bug Bounty Program is designed to encourage and reward those who assist us in identifying potential exploits or vulnerabilities.  In particular, we are interested in uncovering non-standard, complex in-game exploits or activities related to 3rd party cheat/hack development that could potentially harm our gaming environment or the experience of our players and community.  Common bugs, server issues, and suggestions are not applicable for this program.  We value the collaboration of our community and the wider public in maintaining the integrity and fairness of our game.

Scope

The following categories are eligible for bug bounties:

• In-Game Exploits: These are unintended behaviors within the game that players may abuse to gain unfair advantages. This includes but is not limited to XP farming which circumvents game mechanics, item duplication, cooldown bypass, infinite / excessive damage, currency glitches, no clip exploits, or NPC dialog manipulation (related to unfair progression).
• Third-Party Cheat/Hack Development: This includes, but is not limited to bots, macros, scripts, or mods designed to alter game play or give unfair advantages. Examples include speed hacks, teleportation, invisibility hacks, god mode cheats.

Out of Scope

While we appreciate and encourage the discovery of all bugs and issues that might affect gameplay or user experience, the following are considered out of scope for this bounty program:

• Common Game Bugs: These include issues like visual glitches or discrepancies, UI/UX issues, getting stuck in the environment, items or abilities not working as expected, misplaced items in the world, or quest progress not updating.  While these bugs can affect the game experience, they do not typically offer an unfair advantage to players or undermine the game's economy or balance.
• Server Issues: Issues such as server downtime, lag, or connection problems are also not covered by this bounty program. While we're aware of the frustration these issues can cause, they typically fall under the responsibility of our network and systems team.
• Suggestions for Game Improvements or Balance Changes: Feedback and suggestions regarding gameplay mechanics, character balance, or game design.

While these issues are outside the bounty program, we still encourage and appreciate any reports through our regular Feedback Form. Every report helps us to improve the overall gaming experience.

Classification and Rewards

The identified issues will be classified and rewarded based on their severity and potential impact at the discretion of Big Time. Remember, this program primarily focuses on significant in-game exploits and third-party cheat/hack development, not common bugs.

Identified issues will be classified into three primary levels of severity: Low, Medium, and High.  The classification will be determined based on the potential impact on game balance, player experience, and the integrity of the gaming environment and economy.  

• Low Severity (reward: $20 - $50): Minor exploits or vulnerabilities that may have minimal impact on the game or player experience.  For example, excessive/infinite damage, bypassing objectives, and speed hacking.
• Medium Severity (reward: $50 - $250): Exploits or vulnerabilities that can noticeably impact game balance or player experience but are limited in their scope or use. For example, XP farming through unintended gameplay mechanics, skill point exploits, and item purchase manipulation.
• High Severity (reward: Starting at $250): Exploits or vulnerabilities that can significantly disrupt game balance or harm the game's economy.  This includes major issues such as item duplication or acquiring digital collectables / premium currencies faster than intended.  Please note: Depending on the impact and uniqueness of the bug, the reward can escalate significantly, to appropriately compensate for the critical nature of the discovery.

Note on Reward Discretion and Known Bugs:

Reward amounts are solely at the discretion of Big Time, and are based not only on the severity of the reported issue but also the creativity and potential impact it presents. It's important to note that this program does not offer rewards for reporting issues that are already known to us. While we categorize issues into the categories above, we acknowledge that some issues may not squarely fit these classifications. In such instances, we will assign rewards at our sole discretion.  In exceptional cases, where the reported issue has an extraordinarily high impact, rewards may even exceed the defined range. This allows us to ensure fair and proportionate rewards for every unique contribution.

Submission Process

Before submitting a report, please ensure the issue pertains to in-game exploits or third-party cheat/hack development as outlined in our 'Scope' section. This program does not offer rewards for reporting common bugs.

All participants in the Bug Bounty Program agree to follow these conditions:

1. Not to exploit the vulnerability or problem beyond the necessary extent of discovering and reporting it.
2. Not to disclose the problem or vulnerability to the public before we have had an opportunity to address it.
3. Not to disrupt or compromise the gameplay for other players during the course of discovering and reporting the issue.

To submit a report, please complete our Bug Submission Form and reference "BUG BOUNTY" in the subject/title.  Provide as many details as possible, including a detailed description of the issue, steps to reproduce the issue, and any screenshots or videos that help illustrate the problem.

What Happens Next: Once your submission is received, you can expect an initial acknowledgement from our team within 1-2 business days. Following this, the issue you reported will undergo a thorough verification process. The time taken for this process can vary, largely dependent on the severity and complexity of the reported issue. You will be kept informed of the progress and results of your submission.

In the event that multiple participants report the same issue, the bounty reward will be granted primarily to the first accurate and complete report we receive. However, additional rewards may be considered at our discretion for subsequent reports that provide uniquely helpful information or insight into the reported issue.

Program Eligibility and Legal Notices

Non-Extortion Clause

Any threats or attempts to extract value or exert undue influence over Big Time by withholding or leveraging information about a critical exploit or vulnerability (“extortion”) will result in immediate disqualification from the program and face potential legal action.  Participants are required to act in good faith and cooperate fully with Big Time.

Employees

If you are an employee, contractor, or a close family member of an employee or contractor associated with Big Time or its subsidiaries or affiliates, you are not eligible to participate in this program. All exploits and vulnerabilities discovered by these individuals are to be reported through internal channels.

Age - Other Conditions

In order to participate in the Bug Bounty Program you need to be 18 years old or older and have an Open Loot Marketplace Account. All other matters not covered herein are governed by our Terms of Use available at https://bigtime.gg/terms-conditions 

Tax Liability

Rewards received through the Big Time Bug Bounty Program may be considered taxable income in your jurisdiction. Big Time is not responsible for any taxes or reporting related to the receipt of these rewards. It is the sole responsibility of the participant to understand and adhere to their jurisdiction’s tax laws.

Amendments - Termination

We, in our sole discretion and for any or no reason, may amend, suspend or terminate the Big Time Bug Bounty Program. You agree that any amendment, suspension or termination of the Big Time Bug Bounty Program may be without prior notice, and that we will not be liable to you or to any third party for any such amendment, suspension or termination.