Security Principles

MOYA is designed with an infrastructure-first security mindset. This page outlines how we think about data protection, system safety, and responsible disclosure.

Core security principles

Security-by-design and minimal data exposure
Separation between intelligence, content, and access layers
Defense-in-depth across infrastructure components
Continuous risk awareness, not security theater

Data handling posture

MOYA does not intentionally store or process medical, diagnostic, or clinical health data. The platform is designed around wellness education and origin-based guidance.

No medical records No diagnosis data Minimal personal data

Infrastructure-first mindset

We prioritize foundational infrastructure security over rapid feature expansion. System boundaries are defined early to reduce long-term risk and regulatory exposure.

Responsible disclosure

We welcome responsible security research. Potential vulnerabilities may be reported confidentially.

Security contact:
security@moyaherbal.com

MOYA does not claim absolute security. Our commitment is to clarity, proportional safeguards, and responsible response as the platform evolves.