Coin by @koyn
To encourage adoption of Safe Harbors in Bug Bounties and CVDs I will list programs that adopt language that follows DOJ guidelines on legal safe harbors for security research and also address the DMCA (for further information see my Enigma talk and below)
6. HackerOne (program)
This is *not legal advice*, the policy might change! read it!
*The company had (according to reports) a legal encounter with a researcher or a reporter