01 / SecurityHow your
How your
health data is protected.
Encryption, infrastructure, sessions, telemetry, deletion. Treated with the seriousness the data deserves.
02 / Practices
Eight practices, no asterisks.
S01
Encryption at rest
Data stored in an encrypted database on infrastructure we control. Passwords hashed with bcrypt. API keys stored as SHA-256 hashes. Encrypted nightly backups.
S02
Encryption in transit
All connections use TLS 1.3. HSTS preload enforced. Cloudflare for DDoS and edge-cached static assets only — health data never touches the CDN.
S03
Session security
Session tokens SHA-256 hashed before storage. CSRF on all forms. Password change invalidates all other sessions. Rate limiting on auth endpoints.
S04
Zero tracking
No Google Analytics. No Mixpanel. No tracking pixels. No third-party analytics. No data sales. No ads. No data brokers.
S05
Self-hosted infrastructure
Runs on dedicated infrastructure (Hetzner), not shared cloud. We control the hardware, the network, the data. No multi-tenant risk.
S06
Bring your own key
Optional: provide your own AI API key. Requests go directly to the provider. Your key is encrypted at rest, never stored in plaintext.
S07
Data export & deletion
Export biomarker data as CSV or full dataset as JSON. Account deletion from settings — immediate, irreversible, complete.
S08
Input validation
All uploads validated by content-type, magic bytes, and size. All SQL parameterised. AI-generated HTML sanitised before render.
03 / Backup & recovery
Four-tier retention, encrypted.
Backup retention policy
Daily
7
days retained
Weekly
4
weeks retained
Monthly
12
months retained
Yearly
3
years retained
In the unlikely event of data loss, restore from the most recent backup. Restore process documented; tested quarterly.