HIPAA Compliance
This page explains our approach to health data protection. Please note that this is a personal project and not a certified HIPAA-compliant healthcare service.
Important Disclaimer
This is NOT a HIPAA-compliant healthcare service. This is a personal project for educational and organizational purposes only. We are not a covered entity or business associate under HIPAA. This tool should not be used for storing sensitive medical information that requires HIPAA compliance.
Always consult with qualified healthcare professionals and use certified medical record systems for official health data.
Data Protection Approach
While not HIPAA certified, we implement basic security measures to protect your personal information.
Basic Security
Standard security measures for personal data protection
Data Encryption
Data encrypted using standard cloud infrastructure
Secure Storage
Data stored using Supabase cloud infrastructure
User Control
You have full control over your data
Transparency
Open about our limitations and data practices
Personal Use Only
Not for professional healthcare or sensitive data
Your HIPAA Rights
As a patient, you have specific rights regarding your health information under HIPAA.
Right to access your health information
Right to request corrections to your records
Right to request restrictions on use and disclosure
Right to receive confidential communications
Right to receive an accounting of disclosures
Right to file a complaint with HHS
Our Data Protection Approach
Important: This is a personal project, not a HIPAA-compliant service. We implement basic security measures but cannot guarantee enterprise-level compliance. This tool is for personal organization only and should not be used for sensitive medical data requiring HIPAA protection.
Basic Security Measures
- User authentication and authorization controls
- Data encryption using standard cloud infrastructure
- User control over their own data
- Transparent data practices and limitations
- Personal project with no commercial healthcare claims
- Clear disclaimers about service limitations
Infrastructure Security
- Data stored using Supabase cloud infrastructure
- Standard cloud security measures provided by hosting provider
- User data is isolated and protected by authentication
- No physical access controls (cloud-based service)
- Basic data backup and recovery procedures
Technical Security
- Data encrypted using standard cloud encryption methods
- User authentication and session management
- Basic access controls and user permissions
- Standard web security practices
- Data integrity through cloud provider services
- HTTPS encryption for data transmission
Incident Response
As a personal project, we will handle any security incidents as follows:
- Notify users promptly if we become aware of any security issues
- Work to resolve any technical problems quickly
- Provide transparency about what happened and what we're doing
- Help users secure their accounts if needed
- Be honest about our limitations as a personal project
Contact Information
If you have questions about this personal project or your data:
General Questions: Contact through the Contact page
Data Concerns: Use the Contact form for any data-related questions
Technical Issues: Report bugs or issues through the Contact page
Note: This is a personal project, not a commercial service
Questions About Data Protection?
We're transparent about our data practices and limitations. Contact us if you have any questions.