Security

Security Practices

How we protect your data and ensure the integrity and availability of the OMRDesk platform.

Data Encryption

All data transmitted between your device and our servers is encrypted using TLS 1.3. Sensitive data at rest is encrypted with AES-256, ensuring it remains protected even if storage is compromised.

Authentication & Access Control

We implement multiple layers of security:

  • Secure password hashing (bcrypt) and salted storage
  • Multi-factor authentication options
  • Role-based access control per institute
  • Regular security audits and penetration testing

Infrastructure Security

Our infrastructure is protected by:

  • Firewalls and intrusion detection systems
  • Regular security updates and patches
  • DDoS protection and mitigation
  • Secure cloud data centers with physical security measures

Monitoring & Incident Response

We continuously monitor our systems for security threats and have a comprehensive incident response plan. In the event of a security breach, we will notify affected users promptly and take appropriate remedial action.

Your Role in Security

You can help keep your account secure by:

  • Using a strong, unique password
  • Enabling two-factor authentication
  • Keeping your login credentials confidential
  • Reporting any suspicious activity immediately

Security Reporting

If you discover a security vulnerability, please report it responsibly to security@omrdesk.com. We appreciate responsible disclosure and will work with you to address any issues promptly.