Security First
Security and privacy are our number one priority.

Security Statement
Foxo has been built with a ‘privacy and security first’ mindset in conjunction with leading privacy lawyers and security experts.
Our goal is, and always will be, to deliver powerful communication solutions to healthcare whilst upholding the most stringent security and privacy standards.
If you have a question or concern about our security or privacy we want to hear from you. Please contact our data protection officer at security@foxo.com
Year on year, Healthcare leads the Notifiable Data Breach scheme with the majority of incidents attributed to stolen credentials (malware and ransomware) or compromised via human errors (eg. breach via incorrect system or process)

ISO 27001 DC
ISO27001 Accredited Data Centre (AWS Sydney)

Independently Tested
Independently Security Tested every 3 months

IRAP certified infrastructure
Foxo runs on Australian IRAP certified infrastructure (AWS Sydney)

GDPR compliant
Personal and sensitive information is carefully stored and managed

Australian Owned
Foxo is 100% Australian owned & operated, nimble and responsive.
Data Protection and Storage
Data is stored on secure, encrypted servers located in Australia. All patient data and user data is encrypted at rest and in transit using enterprise-grade encryption protocols.
Data in transit: Movement of data between the webserver and browser is secured with the latest HTTPS technology using RSA encrypted TLS (Transport Layer Security).
Data storage: All User and patient data is stored on secure Amazon Web Services servers located in Australia. These servers conform to the ISO27001 standard ensuring data remains backed up and safe at all times.
Security testing
Foxo engages an independent security team to undertake penetration testing on a 3 monthly basis to ensure vulnerabilities and threats are detected and addressed.

“Pentested by Sistematik” mark means the Foxo business and product have undergone independant penetration testing with successful results and no open critical findings.
Verified network of users
All users of Foxo undergo mandatory verification to establish their identity. This provides you with the confidence you are contacting the right person.

User access controls
Foxo mobile users can utilise a 4-digit pin to secure their account to add an additional layer of security. In the event your device is lost or stolen your account can be locked by contacting our support team and hello@foxo.com

Secure photo sharing
Clinical images taken within Foxo app are stored on secured Australian servers NOT on your personal mobile device or 3rd party cloud servers such as Apple iCloud, Dropbox or Google drive. This ensures compliance with national privacy regulations is maintained at all times.
Personal (user) Data
The only personal (user) data Foxo actively collects from customers is what we need for profile creation and account administration purposes.