Ana içeriğe geç
Security & Privacy

Your Data is Safe

Your health data is protected at the highest level with AES-256 encryption, KVKK compliance and privacy mode.

256-bit

AES-256 Encryption

KVKK

KVKK Compliant

7/24

24/7 Monitoring

Our Security Commitment

Protecting your health data is our priority. Every data point is encrypted, every access is audited.

ISO 27001

ISO 27001 Compliant Infrastructure

KVKK

KVKK Compliant System

GDPR

GDPR-Ready Platform

Your data is never shared with third parties.

AES-256 Encryption

Military-Grade Data Protection

Military-Grade Security

AES-256 is the strongest encryption standard used by governments and military organizations worldwide.

Breaking 256-bit encryption would take billions of years with current computing power.

Data at Rest Encryption

All health data stored in the database is encrypted with AES-256.

Data in Transit Encryption

All data transfers occur over encrypted secure channels using TLS 1.3.

Data Masking

Your Privacy Mode is in Your Control

Privacy Mode Off

Normal view — values displayed clearly.

Hemoglobin
Normal
14.2 g/dL

Hemoglobin: 12.5 g/dL

Privacy Mode On

All sensitive values masked — screenshots are safe.

Hemoglobin
Normal
14.2 g/dL

Hemoglobin: 12.5 g/dL

Click the eye icon in the top right corner to enable privacy mode.

Core Security Features

End-to-End Encryption

Your data can only be read on your device and our server.

AES-256 data encryption
TLS 1.3 connection security
Encrypted backups

JWT Authentication

Secure token-based authentication system

Short-lived access tokens
Secure refresh token management
Automatic session expiration

Privacy Mode

Mask sensitive health data with one click.

Instant value masking
Screen protection mode
Secure sharing support

Data Isolation

Each user's data is stored in completely isolated environments.

Per-user isolated storage
Cross-access prevention
Secure deletion protocol

Secure Infrastructure

Certified data centers and security protocols

SOC 2 certified servers
DDoS protection system
24/7 security monitoring

KVKK Compliance

Full compliance with Personal Data Protection Law

Explicit consent management
Right to deletion
KVKK disclosure text

Legal Compliance

We fully comply with data protection legislation.

User Rights

You have the right to access, correct, delete and transfer your data.

Data Sharing

Your data is never shared with or sold to third parties under any circumstances.

Our Security Commitments

  • Encryption: All data encrypted with AES-256

  • Access Control: Access management with least privilege principle

  • Backup: Daily automatic encrypted backups

  • Monitoring: 24/7 security event monitoring

  • Audit: Regular security audits and penetration tests

Technical Security Details

Authentication

JWT Token: RS256-signed JWT access tokens
Password Security: bcrypt-hashed password storage
Session Management: Redis-based secure session management
Email Verification: Email confirmation for registration and password reset

Data Security

PostgreSQL: Secure data storage with encrypted columns
Database Encryption: All sensitive fields encrypted with AES-256
Backup: Daily automatic encrypted backups
Data Retention: All data permanently deleted when account is deleted

Network Security

Docker Network Isolation: Isolated network environment between services
Firewall: Layered firewall protection
Rate Limiting: API rate limiting against abuse
CORS Policy: Strict CORS rules to prevent unauthorized access

Legal Compliance

KVKK: Full compliance with personal data protection legislation
GDPR: Compliance with European data protection standards
Data Export: Right to download all your data in JSON format
Data Deletion: Permanent deletion of account and all data

Privacy Mode Demo

Click the button below to test privacy mode

Privacy Mode Off

Risk Score
Low Risk
85
Hemoglobin
14.2 g/dL

Privacy Mode On

Risk Score
Low Risk
85
Hemoglobin
14.2 g/dL

Secure Health Analysis

Analyze your health knowing your data is safe.