Cyber Security Policy
MEDWEV is a brand name and healthcare service platform operated by AngelAisle (OPC) Private Limited.
This is the current published version.
1. Authentication & Access
- Secure login
- Password hashing
- MPIN hashing
- Role-based access control
- Multi-role permission control
- Session security
- Failed login lock
- Unauthorized access blocking
2. Data Protection
- Data encryption
- Bank account encryption/masking
- Payment gateway key protection
- Audit logs
3. Application & API Security
- API security
- File upload security
- Lab report security
- Prescription upload security
4. Testing & Incident Response
- VAPT (Vulnerability Assessment & Penetration Testing) process
- Incident reporting and escalation
5. Employee / Admin Security Responsibilities
Staff must protect credentials, follow least-privilege access, and report suspicious activity immediately.
6. Provider Security Responsibilities
Providers must safeguard their accounts and any patient data accessed through approved, consent-based flows.
7. Customer Security Responsibilities
Customers should protect their login/MPIN, avoid sharing OTPs, and report unauthorized access.
8. Security Reporting Contact
Report security concerns to admin@angelaisle.com.
This Cyber Security Policy is a platform template and should be reviewed by a qualified cyber security/legal professional before final publication.
MEDWEV is a brand name and healthcare service platform operated by AngelAisle (OPC) Private Limited.
AngelAisle (OPC) Private Limited
CIN: U47912KL2025OPC098925
GST: 32ABECA2660C1ZB
Email: admin@angelaisle.com
Phone: +91 80899 09899