Partner with Getlabs to collect labs, vitals, biometrics. Learn More
partners
sign inbook nowbook now
Legal

Security Program & Responsible Disclosure Policy

Last Updated: March 25th, 2022

‍1. Data Security

At Getlabs, we always encrypt data both at rest and in transit for everything we do. We use tools like Google's Cloud Key Management Service to manage encryption keys for maximum security in line with industry best practices, and ensure that all of our hardware is managed and securely encrypted.

2. Application Security

Getlabs regularly reviews usage and access patterns across our entire organization. In addition, we use high-quality static analysis tooling provided by our partners to secure our product at every step of the development and deployment process.

We also regularly engage with some of the industry's best application security experts for third-party penetration testing, which includes evaluation of the source code, running application, and the deployed environment.

3. Infrastructure Security

Getlabs uses Google Cloud Platform to host our applications, and we make full use of the security tools and products that are offered by GCP. Our infrastructure is fully documented and goes through our full product development lifecycle process whenever changes are made.

In addition, we deploy all our applications using containers on GCP managed services. This means that we do not manage any bare metal or VM instances in production.

4. Responsible Disclosures

Data security is a top priority for Getlabs, and we believe that working with skilled security researchers can identify weaknesses in our technologies and applications. If you believe you've found a security vulnerability in any Getlabs product or service, please notify us at security@getlabs.com. We will acknowledge your email within 3 business days and we will work with you to resolve the issues as quickly as possible.

Please provide us with a reasonable amount of time to resolve the issue before disclosing it to the public or to a third party. We aim to resolve critical issues within 5 business days of disclosure.

Make a good faith effort to avoid violating privacy, destroying data, or interrupting or degrading any of our services. We ask that you only interact with accounts you own or for which you have the explicit permission from the account holder.

While researching, we'd like you to refrain from Denial-of-Service (DoS) attacks, spamming, social engineering or phishing of Getlabs employees or contractors, and any attacks against Getlabs' physical property.

Getlabs is always open to feedback, questions, and suggestions. If you would like to talk to us, please feel free to email us at security@getlabs.com.

COMPANY
  • About
  • Blog
  • Careers
  • Locations
  • Press
PATIENTS
  • Patients
  • Patient FAQ
  • Labs Near Me
  • Diagnostic Tests
  • Contact Us
PARTNERS
  • Partners
  • Partner FAQ
follow us
Facebook
Instagram
X.com
LinkedIn

Better care starts at home.

Getlabs is the nationwide leader for at-home diagnostics. Patients can book a nearby phlebotomist to draw their labs for Labcorp and Quest. Healthcare organizations can use our technology platform to dispatch skilled medical specialists to their patients and collect labs, vitals, biometrics, and more.

© Getlabs, Inc.
Locations
Labs Near Me
Diagnostic Tests
Privacy
Terms
Security
CCPA Notice
company
AboutBlogCareersLocationsPress
patients
PatientsPatient FAQLabs Near MeDiagnostic TestsContact Us
partners
PartnersPartner FAQ
follow us
Facebook
Instagram
X.com
LinkedIn

Better care starts at home.

Getlabs is the nationwide leader for at-home diagnostics. Patients can book a nearby phlebotomist to draw their labs for Labcorp and Quest. Healthcare organizations can use our technology platform to dispatch skilled medical specialists to their patients and collect labs, vitals, biometrics, and more.

  • © Getlabs, Inc.
  • Locations
  • Labs Near Me
  • Diagnostic Tests
  • Privacy
  • Terms
  • Security
  • CCPA Notice
Privacy
Terms
Security
CCPA Notice