Security & Data Protection
WellGrowthAI implements enterprise-grade security to protect your most sensitive wellness data.
Security Measures
- Encryption in transit: TLS 1.3 on all connections
- Encryption at rest: AES-256-GCM for all stored wellness data
- Password security: Bcrypt hashing with secure salts
- Database: Neon serverless PostgreSQL with automated backups
- API security: CSRF protection, rate limiting, and input validation
- No data selling: Your data is never sold to advertisers or third parties
Compliance
- GDPR (EU General Data Protection Regulation)
- PIPEDA (Personal Information Protection and Electronic Documents Act — Canada)
- FIPPA (Freedom of Information and Protection of Privacy Act — Canada)
For security concerns, contact security@wellgrowthai.com.