Built with Security in Mind
At AyloCare, we take data protection seriously. Our platform is built on a foundation of encryption, data isolation, and GDPR-compliant practices—so you can focus on your clients with complete peace of mind.
Security by the Numbers
Our commitment to protecting your data is backed by industry-leading standards and practices.
How We Protect Your Data
Multi-layered security practices designed to keep your practice and client data safe.
Data Encryption & Transport Security
All data is encrypted both at rest and in transit. Every connection to AyloCare uses HTTPS/TLS, and your stored data is protected with AES-256 encryption—the same standard used by financial institutions.
Multi-Tenancy & Data Isolation
Every practice on AyloCare operates in its own isolated environment. Your data is stored in a separate database—completely walled off from other practices. There is zero data sharing between tenants.
Secure Payments
All payment processing is handled by Stripe—a PCI DSS Level 1 certified provider. AyloCare never sees, stores, or has access to your clients' credit card numbers. Payment data stays with Stripe.
Secure Video Sessions
Telehealth sessions run through Google Meet or our built-in video tool. In both cases, video content is not recorded or stored on our servers. Your sessions remain private.
Monitoring & Incident Response
We use Sentry for real-time application monitoring and error tracking. Our infrastructure is continuously monitored, and we apply security patches and updates regularly.
Data Privacy & Compliance
We follow strict data privacy principles to protect your practice and your clients' personal information.
GDPR Compliant
AyloCare is designed with European data protection standards at its core. We follow GDPR principles including data minimisation, purpose limitation, and the right to be forgotten.
- European-hosted infrastructure
- Right to data deletion
- Data portability support
- Privacy by design
Access Controls & Audit Logging
Every action within AyloCare is logged. You control who has access to what, with role-based permissions and secure session management.
- Role-based access controls
- Activity and audit logging
- Secure session management
- Application monitoring via Sentry
Backups & Continuity
Your data is backed up daily and stored on European servers. Our infrastructure is continuously monitored to ensure availability and rapid recovery.
- Automated daily backups
- EU-based infrastructure
- Regular security updates
- Disaster recovery procedures
Transparent answers to what practitioners ask most about data protection.
Your data is stored on European servers within the EU. We do not transfer your data outside of the European Economic Area.
Only you and the team members you explicitly grant access to. AyloCare staff do not access your client data except in limited cases of technical support, and only with your permission.
No. Video sessions — whether through Google Meet or our built-in video tool — are not recorded or stored on our servers. What happens in a session, stays in a session.
We have an incident response plan in place. In the unlikely event of a breach, we will notify affected users promptly and take immediate steps to contain and remediate the issue in accordance with GDPR requirements.
Yes. Under GDPR, you have the right to request complete deletion of your account and all associated data. Contact our support team and we will process your request within 30 days.
Have a specific question about security or data handling?
Contact our security teamBuild the Practice You've Been Imagining
Everything you need to run, brand, and grow your practice — in one place.
Set up in under 5 minutes · Cancel anytime