diff --git a/README.md b/README.md
new file mode 100644
index 0000000..c2a4e4f
--- /dev/null
+++ b/README.md
@@ -0,0 +1,25 @@
+# Docker Build Cloud Feedback
+
+## Documentation
+
+If you don't understand something about Docker Build Cloud, the [extensive
+documentation](https://docs.docker.com/build/cloud/) is a great place
+to look for answers.
+
+## Support
+
+Support for Docker Build Cloud is available to Docker Build Cloud customers on a Pro, Team or Business plan
+by completing the [support form](https://hub.docker.com/support/contact/).
+
+Bugs with the Docker Build Cloud software can be filed as issues in this repository, which we respond to
+on a best-effort basis. Support requests in this repository (i.e., trouble setting up
+or using the software) will be ignored, but community support is available from the
+[Docker community](https://www.docker.com/docker-community).
+
+## This Repository
+
+This repository contains an issue tracker for Docker Build Cloud. If you find a problem with the software, first [browse the existing issues](https://github.com/docker/build-cloud-feedback/issues) or search from the bar at the top (`s` to focus) and then, if you don't find your issue, [open a new issue](https://github.com/docker/build-cloud-feedback/issues/new).
+
+Feature requests should be filed on the [Docker Roadmap](https://github.com/docker/roadmap).
+
+Security issues should not be reported here. Please see [SECURITY](security.md) for instructions on how to report a security vulnerability.
\ No newline at end of file
diff --git a/SECURITY.md b/SECURITY.md
new file mode 100644
index 0000000..d5e1abe
--- /dev/null
+++ b/SECURITY.md
@@ -0,0 +1,5 @@
+### Reporting a Vulnerability
+
+Please **DO NOT** file a public issue, instead send your report privately to _security@docker.com_.
+
+Security reports are greatly appreciated and we will publicly thank you for it, although we will keep your name confidential if you request it. We also like to send gifts—if you're into swag, make sure to let us know. We currently do not offer a paid security bug bounty program, but are not ruling it out in the future.
\ No newline at end of file