Security Policy – PrepMedix

 

Last Updated: 12/27/2025

At PrepMedix, we are committed to safeguarding our platform, user data, payment systems, and proprietary educational content. This Security Policy outlines the measures we take to protect our website, Learning Management System (LMS), and users.

This policy forms an integral part of the PrepMedix Terms & Conditions. By using www.prepmedix.com, you agree to the practices described below.

  1. Scope of This Policy

This Security Policy applies to:

  • The PrepMedix website and subdomains
  • The PrepMedix Learning Management System (LMS)
  • User accounts, course data, and communications
  • Payment-related interactions processed via Stripe
  1. Platform & Infrastructure Security

We implement reasonable and appropriate administrative, technical, and organizational safeguards, including:

  • Secure cloud-based hosting infrastructure
  • Firewalls and access control mechanisms
  • Regular software updates and vulnerability patching
  • Monitoring systems to detect unauthorized access or suspicious activity
  1. Payment & Financial Security (Stripe-Aligned)

PrepMedix uses Stripe, a PCI-DSS Level 1 compliant payment processor.

  • PrepMedix does not store or process card details
  • All payment data is securely handled and encrypted by Stripe
  • Stripe complies with the highest industry security standards for online payments

By making a payment, you acknowledge that your payment information is processed directly by Stripe under its own security and privacy policies.

  1. Encryption & Secure Communication
  • HTTPS / SSL encryption is enforced across the platform
  • Sensitive data is encrypted in transit and, where appropriate, at rest
  • Secure authentication and session management protocols are used to protect accounts
  1. LMS Content Security & Access Control

All courses, videos, study materials, mock exams, and related educational content hosted on the PrepMedix LMS are proprietary and protected.

Important Notice:

  • LMS content is strictly accessible only after successful purchase
  • Unauthorized access, sharing, downloading, screen recording, copying, redistribution, resale, or reuse of course material is strictly prohibited
  • Course data is licensed for personal, non-transferable, non-commercial use only

Any attempt to access or use LMS content without purchase, or beyond the permitted scope, constitutes a serious security and contractual violation and may result in:

  • Immediate account suspension or termination
  • Revocation of course access without refund
  • Legal action and claims for damages
  1. User Account Security Responsibilities

Users are responsible for:

  • Keeping login credentials confidential
  • Preventing unauthorized access to their account
  • Not sharing accounts or login information

PrepMedix is not responsible for breaches caused by user negligence or credential sharing.

  1. Employee & Internal Access Controls
  • Access to user and course data is restricted to authorized personnel only
  • Employees and contractors are bound by confidentiality obligations
  • Access rights are reviewed regularly and revoked when no longer required
  1. Third-Party Services

PrepMedix may use trusted third-party service providers for:

  • Hosting and infrastructure
  • Payment processing
  • Analytics and communication tools

These providers are selected based on security standards, but PrepMedix does not control their internal security practices. Their use is governed by their respective policies.

  1. Monitoring, Audits & Risk Mitigation
  • Systems are monitored to detect misuse, abuse, or security threats
  • Reasonable efforts are made to identify and mitigate vulnerabilities
  • Preventive controls are implemented to protect against unauthorized activity
  1. Incident Response & Data Breaches

In the event of a confirmed security incident:

  • We will promptly investigate and contain the issue
  • Affected users will be notified as required by applicable laws
  • Corrective actions will be taken to prevent recurrence
  1. Responsible Disclosure / Vulnerability Reporting

We encourage responsible disclosure of security vulnerabilities.

If you believe you have identified a security issue, please report it responsibly by emailing:

Email: security@prepmedix.com (or support@prepmedix.com if a security email is not set up)

Please:

  • Do not exploit or misuse the vulnerability
  • Do not access data beyond what is necessary to demonstrate the issue
  • Do not publicly disclose the vulnerability before we have addressed it

PrepMedix appreciates responsible security research and will review all legitimate reports in good faith.

  1. Prohibited Activities

Users must not:

  • Attempt unauthorized access to systems or LMS content
  • Circumvent access controls or payment mechanisms
  • Introduce malware, bots, scraping tools, or malicious code
  • Reverse engineer or interfere with platform security

Violations may result in account termination and legal action.

  1. Disclaimer

While PrepMedix uses reasonable security measures, no system can be guaranteed to be 100% secure. PrepMedix disclaims liability for breaches beyond its reasonable control.

  1. Policy Updates

PrepMedix may update this Security Policy at any time. Changes take effect immediately upon posting. Continued use of the platform constitutes acceptance of the updated policy.

  1. Contact Information

For security-related concerns or general inquiries:

Website: www.prepmedix.com
Email: support@prepmedix.com

 

Shop
Search

Please enter keywords