Enterprise-Grade Security
Security You Can Trust
WoundCam is built with healthcare security requirements at its core. Patient data protection is not an afterthought—it's foundational to every design decision.
AES-256 Encryption
All wound images are encrypted using AES-256 before being stored on the device.
Secure Key Storage
Encryption keys are stored in the device's secure keychain (iOS) or keystore (Android).
Local Data Control
All data remains on-device unless explicitly shared. You maintain full control.
HTTPS Only
All network communication uses TLS encryption for secure data transmission.
Data Protection
Your patient data is protected at every step
Image Captured
Raw data in memory
AES-256 Encrypted
Secure transformation
Stored Securely
Local .enc file
Security Architecture Details
Encryption Implementation
- •AES-256 encryption using .NET's System.Security.Cryptography
- •Unique Initialization Vector (IV) generated for each encryption operation
- •IV prepended to encrypted data for seamless decryption
- •Async operations prevent UI blocking during encryption
Key Management
- •Keys stored in iOS Keychain / Android Keystore via MAUI SecureStorage
- •Keys never written to disk or logs
- •Hardware-backed security on supported devices
- •Automatic key generation on first use
API Security
- •All API communication over HTTPS/TLS
- •API keys stored in SecureStorage, not hardcoded
- •Configuration validation before API calls
- •Graceful error handling without exposing sensitive data
Questions about our security implementation?
We're happy to discuss our security architecture in detail during a demo.
Request a Demo