Compliance & Security
Enterprise-grade security and regulatory compliance standards.
📋 Regulatory Compliance
- ✓FDA 21 CFR Part 11: Electronic Records & Signatures
- ✓EU GDPR: Data protection and privacy compliance
- ✓ICH-GCP: Good Clinical Practice standards
- ✓HIPAA: Healthcare data privacy (US)
- ✓CDSCO India: Central Drugs Standard Control Organization
🔒 Security Standards
- ✓ISO 27001: Information security management
- ✓SOC 2 Type II: Security, availability, and confidentiality
- ✓AES-256 Encryption: Data at rest and in transit
- ✓Multi-Factor Authentication: Enhanced access control
- ✓DPO Assigned: Dedicated Data Protection Officer
Data Protection & Privacy
Data Residency
Customer data is stored in region-specific data centers with compliance to local regulations. Choice of EU, US, or Asia-Pacific regions.
Encryption
End-to-end encryption for all sensitive data. AES-256 for storage, TLS 1.3 for transmission with perfect forward secrecy.
Access Control
Role-based access control (RBAC) with audit trails for all data access. No MedLii employee can access customer data without explicit approval.
🔍 Regular Audits
- • Annual third-party security audits
- • Quarterly vulnerability assessments
- • Monthly penetration testing
- • Continuous compliance monitoring
- • Regular disaster recovery drills
📞 Support & Maintenance
- • 24/7/365 security monitoring
- • Incident response team on-call
- • Regular security updates & patches
- • Business continuity assurance
- • Compliance reporting available
Compliance Questions?
Our compliance team is ready to help with audits, attestations, and specific regulatory requirements.
Contact Compliance Team