Security & Compliance

Your Data is Safe

We protect your health data with the highest security standards. Full security with our HIPAA, GDPR, and KVKK compliant infrastructure.

HIPAA

HIPAA Compliant

We protect your patients' data with infrastructure and processes that meet HIPAA requirements, the US health data protection standard.

GDPR

GDPR Compliant

Full compliance with the European Union General Data Protection Regulation (GDPR). Data processing, storage, and deletion processes meet EU standards.

KVKK

KVKK Compliant

Full compliance with Turkey's Personal Data Protection Law (KVKK). We operate as a VERBIS registered data controller.

End-to-End Encryption

All data is protected with AES-256 encryption. Communications are secured with TLS 1.3 protocol.

SOC 2 Infrastructure

Hosted on SOC 2 Type II certified cloud infrastructure. Security, availability, and privacy controls are continuously audited.

Regular Audits

Regular penetration tests and security audits are conducted by independent security firms.

Data Residency

Your data is stored in local data centers in compliance with relevant country legislation. Turkey data stays in Turkey.

AES-256

TLS 1.3

WAF

SIEM

LaykUp LLC Legal Guarantee

HekimDoktor operates under LaykUp LLC. All legal processes and data protection obligations are guaranteed under the corporate umbrella.

Responsible Disclosure Policy

If you have discovered a security vulnerability, please report it to us following our responsible disclosure procedure: security@hekimdoktor.com