How PANDAS Tracker Protects Your Child's Health Data
Families navigating PANDAS and PANS share some of the most sensitive information imaginable — behavioral health records, psychiatric evaluations, and infection histories for their children. Here is exactly how we protect it.
What does "privacy-first architecture" actually mean?
Privacy-first is an architectural decision made before a single line of code is written. It means data protection is not added as a feature at the end — it is the foundation every feature is built on. PANDAS Tracker collects only the data it needs to provide its service, contains zero advertising SDKs, has no data broker relationships, and its privacy policy is written to restrict data use to service delivery only.
Data encryption in PANDAS Tracker
- TLS 1.3 (in transit): All data transmitted between the app and Firebase backend is encrypted. Prevents interception on public or unsecured Wi-Fi.
- AES-256 (at rest): All Firestore documents encrypted at rest with AES-256. Keys managed by Google Cloud KMS with hardware security modules.
- Firebase Security Rules: Server-side access control enforced on every read and write. Only authenticated family members access their own records — not SPM Health Tech employees.
- Firebase Authentication: Email verification, device-scoped session tokens, automatic token rotation, multi-device sign-out.
Secure systems design
All data is stored in Google Firebase (Google Cloud Platform), which holds SOC 2 Type II, ISO 27001, and FedRAMP certifications. SPM Health Tech has a Business Associate Agreement (BAA) with Google Cloud as required for HIPAA-aligned use. All access to health records is logged. Vulnerability management includes automated dependency scanning with critical patches within 72 hours.
Privacy principles — what we will never do with your data
- Zero data sales: your family's health data is never sold, rented, or licensed to any third party
- No advertising SDKs: no tracking pixels, no third-party analytics that exfiltrate data
- Data minimization: we collect only what is needed to provide the service
- Right to deletion: you can delete your account and all data at any time; removed within 30 days
- Full data export: export your complete history as PDF or DOCX before deleting
- Family-only access: only caregivers you explicitly invite can view your child's records
Regulatory alignment: HIPAA, COPPA, and GDPR
HIPAA: BAA with Google Cloud, encrypted storage, role-based access controls, audit logging, incident response procedures, minimum necessary data collection. COPPA: accounts created by adult caregivers only, no direct data collection from children under 13, no advertising targeting children. GDPR: right to access, correct, delete, and export data; 72-hour breach notification standard; data minimization by design.
Frequently Asked Questions
- How is PANDAS Tracker's privacy-first architecture different from other health apps?
- Most consumer health apps monetize user data through advertising partnerships or data licensing. PANDAS Tracker's architecture is built around a strict "collect only what is needed, share nothing" principle, with no advertising SDKs, no analytics that leak data to third parties, and no data broker relationships.
- What encryption does PANDAS Tracker use for data at rest?
- All health data is stored in Google Firebase Firestore, which encrypts all data at rest using AES-256 encryption with keys managed by Google Cloud Key Management Service (KMS) with hardware-level security modules.
- Is PANDAS Tracker HIPAA compliant?
- PANDAS Tracker follows HIPAA-aligned security practices including encrypted data storage, strict access controls, audit logging, and Business Associate Agreements (BAAs) with Google Cloud (Firebase). SPM Health Tech is committed to maintaining and exceeding HIPAA standards as the platform grows.