Security

Your family's health data is sacred

We handle your parents' most sensitive information. We take that responsibility more seriously than anything else. Here's exactly how we protect it.

Our Commitment

Hospital-grade security, consumer-grade simplicity

We built SeniorSecretary with the same security standards required of hospitals and insurance companies — because your parent's health data deserves nothing less.

HIPAA Compliant

SeniorSecretary is fully HIPAA compliant. We follow the same regulations that govern how hospitals, clinics, and insurance companies handle your protected health information (PHI).

End-to-End Encryption

All data — call recordings, transcripts, medical information — is encrypted in transit and at rest using the same standards banks use. Nobody can read your data except you.

SOC 2 Type II Certified

Our systems are independently audited to verify we meet strict standards for security, availability, and confidentiality. This isn't a claim — it's a verified certification.

How We Protect Your Data

The details matter

For the security-minded, here's exactly what we do and don't do with your family's information.

✓ What we do

  • Encrypt all data at rest (AES-256) and in transit (TLS 1.3)
  • Store call recordings in HIPAA-compliant cloud infrastructure
  • Require multi-factor authentication for all accounts
  • Run quarterly penetration tests by independent security firms
  • Maintain detailed audit logs of all data access
  • Sign Business Associate Agreements (BAAs) with all healthcare providers
  • Let you delete all your data permanently at any time

✗ What we never do

  • Sell your data. To anyone. For any reason. Period.
  • Share health information with advertisers or data brokers
  • Use your medical data to train AI models
  • Store data longer than you want us to
  • Give employees access to your data without logging and justification
  • Make it hard to leave — export or delete everything in one click

Our Philosophy

Privacy isn't a feature. It's a right.

We built SeniorSecretary because we've been in your shoes. We know what it's like to coordinate care for aging parents. We know the stress, the phone calls, the "did I remember to refill the prescription?" anxiety.

That means we also know how sensitive this information is. Your parent's medical history, their medications, their insurance details — this is deeply personal data. We don't take that lightly.

Our business model is simple: you pay us $99/month, and we provide a great service. That's it. We don't have a hidden data monetization strategy. We don't sell "anonymized" data to research companies. We don't run ads.

You are the customer, not the product. And your parent's health data will always be treated with the respect it deserves.

Compliance & Certifications

🏥

HIPAA

Health Insurance Portability and Accountability Act

🔒

SOC 2 Type II

Service Organization Control — independently audited

🌐

CCPA

California Consumer Privacy Act compliant

🛡️

GDPR Ready

General Data Protection Regulation prepared

Questions about security?

Our security team is happy to answer any questions. Reach out anytime.

Contact Security Team →