Our approach
HealStroke is designed with security in mind as we build toward launch. This page describes practices for the website and waitlist today; app security details will expand as the product ships.
Transport security
We intend to serve the public website over HTTPS so data in transit is encrypted between your browser and our servers.
Access controls
Internal access to systems that store user information should be limited to personnel who need it for their role, with authentication and logging appropriate to the environment.
Data handling
Waitlist and account data should be stored using reputable infrastructure providers with industry-standard safeguards. Specific providers and regions will be documented as they are finalized.
Reporting issues
If you believe you have found a security vulnerability, please contact us through the contact page with enough detail for us to investigate. Please do not publicly disclose unresolved issues.