The Government today refuted the media reports of a data breach in the COWIN platform. The Health Ministry in a statement clarified that all such reports are without any basis and mischievous in nature. <br />''<br />''It said, the Co-WIN portal of the Health Ministry is completely safe with adequate safeguards for data privacy. The Ministry said, security measures are in place on the Co-WIN portal, with Web Application Firewall, Anti-DDoS, SSL and TLS, regular vulnerability assessment, Identity and Access Management and others. It said, only OTP authentication-based access to data is provided.<br />''<br />''The Ministry said, certain posts on the social media platform Twitter have claimed that using a Telegram BOT, the personal data of individuals who have been vaccinated is being accessed which is not correct. The development team of COWIN has confirmed that there are no public APIs where data can be pulled without an OTP.<br />'' <br />''<br />''<span style="color: #222222;">Health Ministry has requested the Indian Computer Emergency Response Team (CERT-In) to look into this issue and submit a report. In addition, an internal exercise has been initiated to review the existing security measures of CoWIN. CERT-In in its initial report has pointed out that the backend database for the Telegram bot was not directly accessing the APIs of the CoWIN database.</span><br />