# Whitelist The whitelist feature allows companies to authorize bounty hunters' credentials, such as phone numbers, emails, or both, on specific in-scope assets. Whitelisting is applied on a per-asset basis, ensuring targeted access control. Bounty hunters can request whitelisting through the programs they are part of, enabling seamless collaboration while maintaining security and compliance. ## Enable Whitelisting To enable whitelisting for an asset, companies should follow these steps: 1. **Navigate to Assets**: Go to `/company/assets`. 2. **Edit an Asset**: Select the asset you want to edit. * Locate the **Require Whitelist** dropdown option. * Choose the appropriate whitelisting requirement, such as phone, email, or custom input from user, from the dropdown. * Incase of requirement of custom input from user, you can mention the custom field description below this will be shown to the researcher while requesting for whitelisting.

## Managing Whitelist Requests To manage whitelist requests after authorizing on the platform, follow these steps: 1. **Navigate to Whitelist Requests**: Go to `/company/assets/whitelist`. 2. **View Requests**: All users who have requested whitelisting will be listed here. 3. **Filter Requests**: * Use filters to view requests by specific assets or across all assets. * Further refine results by request status: **Requested**, **Approved**, or **Rejected**. * Additionally you can view custom field entered by researcher as well: ![](https://1542818622-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FVsYaOURvSKmQ57SN2CBT%2Fuploads%2FVZ8bbgqMh5b99flily2w%2FScreenshot%202025-06-27%20at%2010.53.44%E2%80%AFAM.png?alt=media\&token=6dc491b6-1b45-49ff-a7ee-8a50243b530e) 4. **Approve or Reject Requests**: * Select one or multiple users. * Click on the **Approve** or **Reject** button to take action.