Safety & Privacy

Your health data security is our top priority

Our Security Commitment

Health data is among the most sensitive personal information. At Nurafya, we've built our systems from the ground up with security and privacy as core principles, not afterthoughts.

🔒 End-to-end encryption
🛡️ POPIA/NDPA compliant
Regular security audits

Data Protection Measures

  • Encryption Everywhere

    All data is encrypted in transit (TLS 1.3) and at rest (AES-256). Even our team cannot access your raw health data without your explicit authorization.

  • Minimal Data Collection

    We only collect data necessary to provide our services. We don't track your location, browsing history, or any information beyond what's needed for diabetes management.

  • You Control Your Data

    Request a copy of your data anytime. Delete your account and all associated data with one command. Your data, your choice.

  • No Data Selling

    We will NEVER sell your personal health data. Period. Our business model is based on subscriptions, not data monetization.

Regulatory Compliance

We comply with data protection laws in all our operating markets:

  • Nigeria: Nigeria Data Protection Act 2023 (NDPA)
  • Kenya: Data Protection Act 2019
  • South Africa: Protection of Personal Information Act (POPIA)

Medication Verification Safety

Our anti-counterfeit medication verification system is designed to protect you from potentially dangerous fake drugs:

  • We partner with verified pharmaceutical supply chain databases
  • Unverified medications trigger immediate safety warnings
  • We encourage reporting suspicious drugs to local authorities

Report a Security Issue

If you discover a security vulnerability, please report it responsibly to security@nurafya.com. We appreciate your help in keeping our users safe.