Privacy & Security

We take privacy seriously and design for security from the start. Our approach focuses on minimizing personally identifiable information (PII), encrypting data in transit and at rest, and maintaining robust access controls and audit trails.

• PII minimization: We only collect the minimum necessary information and prefer aggregated, de-identified signals whenever possible.
• Encryption: All sensitive data is encrypted in transit (TLS) and at rest.
• Audit logging: Access to sensitive systems is logged and reviewed.
• HIPAA-ready path: We partner with organizations under appropriate BAAs and follow best practices for handling PHI within partner environments.

Questions? Contact us at hello@peppermint.engineering.