Trust Center

Security, Privacy, and Clinical Safety

WhisperWise is designed for sensitive family and clinical workflows. We protect data by default and minimize risk through consent, access controls, and safety gating.

HIPAA and COPPA Alignment

Role-aware access, parental controls, and clear data boundaries built for healthcare-adjacent workflows across Studio and Guide.

Encryption and Transport Security

Data is encrypted in transit and at rest. Session authentication, learner-level ownership, and access checks are enforced server-side.

Safety Guardrails

AI outputs are constrained and safety-filtered with escalation paths for sensitive or high-risk support interactions.

Auditability

Critical workflows are logged for operational review, troubleshooting, compliance documentation, export/delete review, and release-gate evidence.

Production Readiness Prerequisites

Before production rollout, WhisperWise requires explicit evidence for the shared Supabase BAA status, High Compliance, Point in Time Recovery, SSL enforcement, and network restrictions, plus billing, observability, support, rollback, and privacy review sign-off.

Need vendor security documentation?

Contact our team for implementation details and deployment architecture notes.

Contact Security Team