This website, is deeply committed to protecting the privacy of Internet users. Utilising the following policies and processes..
We do not automatically collect any personally identifiable information about you such as name, address, phone number, or e-mail address. We do obtain some types of non-personally identifiable information for the purpose of analysing our traffic. The non-personally identifiable data collected includes the Internet Service Provider you use to connect to the Internet, your browser type, or the type of computer operating system you use (Macintosh or Windows, for example).
When you register as a member or make a purchase from our site, we may collect certain personal information to identify you, and to assist you in your and membership subscription. We do not and will not disclose your personal information to third parties without your permission, except in the following circumstances: When required by Law or to protect ourselves from incurring a legal liability;
Credit Card and Payment Processors
Our Credit Card and Payment Processors may also collect information from you in order to be able to process your payments.
If you do not want the benefit of cookies, there is a simple procedure to manually delete your cookies. we don't recommend doing so on our site, Please consult your web browser's Help documentation for more information.
Safe Guarding Your Privacy and File Security
At MiMedikal.com we are committed to protecting your medical records and the integrity of the site.
As well as using an SSL certificate:
Following are some of the security measures we have put in place:
Unique Security Encryption Key.
Security Encryption Key with s2Member®, along with randomly generated Salt Keys, and other WordPress® security standards; greatly reduces the risk of someone stealing and/or sharing your personal information. Security Encryption Keys are also used in some data storage routines, and extensively in Cookie-based authentication, to further safeguard your information during server-based sessions.
Brute Force Login Protection
s2Member® thwarts brute force log in attempts by monitoring the failed login attempts that occur within a short period of time. When/if s2Member® detects an IP address (i.e. a remote User), who is consistently failing to enter a valid username/password, a temporary ban is created; preventing additional attempts from taking place for several minutes (or even hours), as configured by the site owner.
Unique IP Access Restrictions
As with any website granting account access through a username/password combination, it is possible for one User to signup, and then share their username with someone else; or even post it online for the whole world to see. This is known as "link sharing" (aka: "username sharing"). This website takes an important step toward preventing this bad behaviour; both for consumer safety, and for the safety of the site itself; along with associated products/services made available. The s2Member® software application assists in this regard. With s2Member®, a single username, access link, and/or entry point, is only valid for a certain number of unique IP addresses, as configured by the site owner. When/if an upper limit is reached, s2Member® will assume there's been a security breach. At that time, s2Member® will ban (i.e. prevent access) to a specific URL, and/or to an entire account associated with a particular username.
One-Way Password Encryption
This website stores passwords with a One-way Encrypted Hash, using only a "hashed" version of your password for future comparison. This means that your plain text password is not stored anywhere, and therefore cannot be stolen and/or shared through this website. Only an encrypted "hash" is known, with no way to decode the actual value of the password itself (e.g. a One-way Encrypted Hash). This One-way Encrypted Hash allows the site to verify a cryptographic hash algorithm, and if the hash value generated from your entry ( during an attempt to log in ) matches the One-way Encrypted Hash stored in the password database, you are permitted access. The One-way Encrypted Hash value is created by applying a hash function (using cryptographic methodologies) to a string consisting of the submitted password, and another value known as a Salt. The Salt is unique to this site, and it prevents attackers from easily building a list of One-way Encrypted Hash values for common passwords.
We use Trend Micro to inspect and clean if necessary all uploaded files. The medical records are stored in a highly secured vault on a dedicated server. We do NOT use cloud storage for your medical records.
If you have any additional questions or concerns about our dedication to consumer privacy, please do not hesitate to contact us via our Support Desk
Or you may write to:
MiMedkal Pty Ltd
45 Guineas Creek Rd
Elanora, 4221, QLD