Data Security
At Hemolog, your health data is sacred — not just “data.” We’re building a product that puts privacy, control, and transparency first.
This page explains how we secure your information and why you can trust us with it.
🔒 Security by Design
We bake security into every layer of the product.
-
Encryption in Transit & at Rest
We use AES-256 encryption for stored data and TLS 1.3 for all communication. -
Passwordless Login
Authentication is powered by secure magic links — no passwords to steal or forget. -
Zero Trust Access
Access to your data is strictly controlled and scoped via role-based access policies.
🛡️ Infrastructure & Compliance
-
Built on Trusted Cloud Providers
We use infrastructure partners (like Supabase, Google Cloud) that follow ISO 27001, SOC 2, and HIPAA-aligned practices. -
Audit Logging
All data access is logged and monitored for unauthorized behavior. -
Data Residency
We prioritize hosting in India-compliant data zones and follow all applicable local laws.
👁️ You're Always in Control
-
Share Only When You Choose
You can share reports with doctors or family. It’s optional — and revocable at any time. -
No Ads. No Data Sales.
We will never sell your data or show you ads. Ever. -
Export & Delete Anytime
You can request full data export or deletion from your account settings or via support.
🧪 Secure Development Practices
-
Internal Code Reviews
Every release is reviewed and tested for security flaws. -
No Unvetted Access
Our team can’t see your personal health data unless you explicitly authorize support access. -
Frequent Patching
We keep our systems up to date with the latest security patches.
🛠️ Found a Vulnerability?
We welcome responsible disclosures.
📧 security@hemolog.in
We’ll acknowledge within 72 hours and work on a fix ASAP.
🙌 Built on Trust
Hemolog is more than a tool — it’s a responsibility. We’re committed to treating your data with the care, confidentiality, and respect it deserves.
If you have questions or concerns, just reach out.