At On Call Health Group, we take the security of our website and the protection of our users very seriously. Below are the guidelines we follow to ensure a secure environment for browsing and online transactions.
1. Data Encryption
- All traffic between our users and On Call Health Group is protected using the HTTPS protocol, ensuring the confidentiality and integrity of the data.
- Payment transactions are processed through trusted third-party providers that comply with PCI DSS (Payment Card Industry Data Security Standard), ensuring that payment information is encrypted and not stored on our servers.
2. Data Backup
- We perform automatic backups of our database and product files, ensuring service continuity in case of technical failures.
- Backups are stored in secure locations and are periodically verified to ensure their integrity and availability when needed.
3. Threat Protection
- On Call Health Group uses a Web Application Firewall (WAF) that detects and blocks suspicious activities, protecting our site from attacks like SQL injection, cross-site scripting (XSS), and other malicious threats.
- We implement malware detection tools and continuous monitoring to identify and mitigate potential security threats before they affect our users.
4. Site Monitoring
- Our team continuously monitors site activity to detect abnormal traffic patterns and suspicious behavior.
- Periodic reviews of security event logs are conducted to identify any unauthorized access attempts or potential vulnerabilities.
5. User Information Protection
- Although On Call Health Group does not store sensitive information such as passwords or credit card data, we ensure that any personal data we collect, like email addresses or mailing addresses, is protected through encryption and controlled access.
- Any data we collect is used exclusively for managing subscriptions and processing product deliveries.
6. Incident Response
- If any security breach is detected, our security team follows a rapid response protocol that includes identifying, containing, and resolving the issue.
- Should the incident affect user data, On Call Health Group is committed to immediately notifying affected users and providing all relevant information about the impact and corrective actions taken.
7. Updating and Patching
- On Call Health Group keeps its software, e-commerce platforms, and content management systems updated with the latest security patches to prevent known vulnerabilities.
- We regularly review and update our security infrastructure to align with best practices and emerging cybersecurity threats.
8. User Privacy
- At On Call Health Group, we respect the privacy of our users. All personal information is handled in accordance with our Privacy Policy, which complies with international data protection regulations, such as the General Data Protection Regulation (GDPR).
- We do not share personal information with third parties without the user’s explicit consent, except to fulfill legal requests or complete transactions.
- Our technical team receives regular training on the latest security best practices, ensuring that our development and site maintenance processes follow the most current security standards.
