diff --git a/SECURITY.md b/SECURITY.md
new file mode 100644
index 000000000..84c72498f
--- /dev/null
+++ b/SECURITY.md
@@ -0,0 +1,10 @@
+If you believe you have discovered a security or privacy vulnerability that affects Apple devices, software, services, or web servers, please report it to us. We welcome reports from everyone, including security researchers, developers, and customers. 
+
+To report a security or privacy vulnerability, please send an email to product-security@apple.com that includes: 
+
+The specific product and software version(s) which you believe are affected
+* A description of the behavior you observed as well as the behavior that you expected
+* A numbered list of steps required to reproduce the issue and a video demonstration, if the steps may be hard to follow
+* Please use Apple's Product Security PGP key to encrypt sensitive information that you send by email. You can also use Mail Drop to send large files.
+
+You'll receive an automatic reply from Apple to acknowledge that we received your report, and we’ll contact you if we need more information.