All traffic is encrypted with 256-bit TLS/SSL.
We never store full card numbers or CVV — payments are tokenized through certified PCI-DSS gateways.
Accounts support two-factor authentication, and checkout is verified with a one-time email code.
We are HIPAA and GDPR aligned; health data is encrypted at rest with AES-256.
Found a vulnerability? Email our support team — we welcome responsible disclosure.