Compliance

At Cosmicforge HealthNet, we take compliance seriously. We design every part of our platform to meet strict global standards for your payment security and trust.

We do not collect or store your credit card data. All financial transactions are processed through our PCI DSS Level 1 certified partners, including Paystack and Flutterwave. Our partners handle card entry, authorization, and disbursement securely.

Our platform ensures:

No storage of card numbers, CVVs, or sensitive payment details.

All payment sessions are encrypted with HTTPS and SSL/TLS

Secure redirection or embedded payment flows managed by certified providers

Role-based permissions to control system access

Retention of only non-sensitive data, such as transaction IDs and payment status, for reconciliation and reporting

As a brand that does not handle card data directly, Cosmicforge HealthNet qualifies as a Level 4 PCI-DSS merchant. While we are not required to hold independent PCI certification, we uphold the same best practices.

We commit to working only with certified providers, to maintain security, and to avoid storage of sensitive information.

We also perform regular internal reviews and security assessments to protect your data and maintain our alignment with global standards. Our compliance framework ensures safe, reliable payments for both patients and doctors on our platform.