Ally Heart Security Information

Last Updated: August 2024

At Ally Heart, we prioritize the security and privacy of our users. We understand the sensitive nature of the information you share on our platform, and we are committed to ensuring that your data is protected. Below is an overview of the security measures we have implemented to safeguard your information.

1. Data Encryption

• In Transit: All data transmitted between your device and Ally Heart’s servers is encrypted using Secure Socket Layer (SSL) technology. This ensures that your information is protected from interception during transmission.
• At Rest: Sensitive data stored on our servers is encrypted using industry-standard encryption algorithms. This includes any personal information, health records, and payment details.

2. Access Controls

• User Authentication: We use multi-factor authentication (MFA) to ensure that only authorized users can access their accounts. This adds an extra layer of security by requiring a second form of identification in addition to your password.
• Role-Based Access: Access to sensitive data within Ally Heart is restricted based on user roles. Only authorized personnel have access to critical systems and data, ensuring that your information is handled securely.

3. Data Privacy

• Confidentiality: Ally Heart adheres to strict confidentiality policies. Your personal and health-related information is only accessible to you and the healthcare providers you choose to share it with. We do not sell, rent, or share your data with third parties without your explicit consent, except as required by law.
• Anonymization: When possible, we anonymize your data for research and analytical purposes, ensuring that your identity remains protected.

4. Regular Security Audits

• Vulnerability Assessments: We conduct regular security assessments and vulnerability scans to identify and address potential security risks.
• Penetration Testing: Ally Heart engages third-party security experts to perform penetration testing on our systems to ensure that our defences are robust and up-to-date.

5. Incident Response

• Monitoring: Our systems are continuously monitored for suspicious activity. We have implemented real-time security monitoring tools to detect and respond to potential security incidents quickly.
• Incident Management: In the event of a security breach, Ally Heart has a comprehensive incident response plan in place. This includes notifying affected users, containing the breach, and conducting a thorough investigation to prevent future occurrences.

6. User Education

• Security Awareness: We provide our users with resources and guidance on how to protect their accounts and personal information. This includes tips on creating strong passwords, recognizing phishing attempts, and securing their devices.
• Support: Our support team is available to assist you with any security-related concerns or questions you may have. If you suspect any unauthorized activity on your account, please contact us immediately.

7. Compliance with Legal Standards

• Data Protection Regulations: Ally Heart complies with all applicable data protection laws, including the General Data Protection Regulation (GDPR) for users in the EU and the Information Technology Act, 2000, in India. We are committed to maintaining the highest standards of data privacy and security.

8. Continuous Improvement

• Security Updates: Ally Heart is committed to staying ahead of emerging security threats. We regularly update our systems and processes to incorporate the latest security technologies and best practices.
• Feedback Loop: We welcome feedback from our users to help us improve our security measures. If you have any suggestions or concerns, please reach out to us.

Contact Information: If you have any questions or concerns about security at Ally Heart, please contact our security team at:

• Email: [email protected]
• Phone: ‎+91 93106 99696 and +91 95941 40809