HIPAA Compliance Statement
Last updated: February 1, 2026
1. Overview
The Health Insurance Portability and Accountability Act (HIPAA) establishes privacy and security standards for Protected Health Information (PHI). This statement explains ConfidenceConnect's position regarding HIPAA and how we handle health-related data across our website and mobile application.
2. Website: No PHI Collected
The ConfidenceConnect marketing website (confidenceconnect.app) does not collect Protected Health Information (PHI). We are not a HIPAA-covered entity with respect to our website.
The website collects only:
- Contact form submissions (name, email, message)
- Newsletter email signups
- Usage analytics (via Google Analytics)
None of this data constitutes PHI under HIPAA. The website does not collect, store, or transmit health information, medical records, or any data that would identify an individual in connection with their health status.
3. ConfidenceConnect App: Data Handling
The ConfidenceConnect iOS app allows users to record personal information related to dating anxiety, mood, thought records, and exposure exercises. While this data may be sensitive, the app is designed with privacy-first principles:
- Local-first storage: User data is stored locally on the device by default
- Encryption: Sensitive data is encrypted at rest when stored
- No third-party sharing: We do not sell or share user data with third parties for marketing
- User control: Users can export or delete their data at any time via Settings
If you use optional cloud sync (Phase 3+), data is transmitted securely. We implement appropriate safeguards to protect user data. For full details on app data handling, see our Privacy Policy.
4. Not a HIPAA-Covered Entity
ConfidenceConnect is a consumer wellness app, not a healthcare provider, health plan, or healthcare clearinghouse. We do not provide medical treatment, bill insurance, or create therapist-patient relationships. As such, we are not a HIPAA-covered entity.
However, we take data privacy seriously and implement industry-standard security practices to protect your information, regardless of regulatory classification.
5. If You Share Data with a Therapist
If you choose to share your ConfidenceConnect data with a licensed therapist (e.g., via export or future therapist integration features), that therapist is responsible for HIPAA compliance in their practice. We do not control how therapists handle data you share with them.
6. Questions
For questions about our data practices or this HIPAA statement, contact us at hello@confidenceconnect.app.
Related Documents
- Privacy Policy, How we collect, use, and protect your data
- Terms of Service, Acceptable use and disclaimers