Privacy Policy

Effective Date: April 2, 2026 | Last Updated: April 2, 2026

Healthy Boundaries ("the platform") is operated by MindWiz LLC ("we," "our," "the company"), a Florida limited liability company. MindWiz LLC is the data controller responsible for your personal information as described in this policy.

Healthy Boundaries is not a healthcare provider, clinical instrument, or legal service. We do not collect, store, or transmit Protected Health Information (PHI) as defined by HIPAA.

1. Information We Collect

1.1 Information You Provide

Account Information: Email address (required), password (stored only as a cryptographic hash), display name (optional — you may use any pseudonym).

Assessment and Logging Data: Diagnostic assessment responses, experience log entries (text, categories, severity, dates), relationship types and labels, individual profile responses, notes and evidence descriptions.

Payment Information: Payment processing is handled entirely by Stripe, Inc. We never see, store, or access your full credit card number, CVV, or bank account details. Charges appear as "HB Digital" or "HBL Services" — never "Healthy Boundaries."

Gift Code Redemption: We record that a code was activated. We do not record who purchased it, and the purchaser never has access to your account or data.

1.1b Communication Data

If you use the communication import feature, the following data is processed:

  • Chat exports you upload (WhatsApp, SMS, messenger applications) — parsed for timestamps, sender/receiver direction, and message frequency
  • Email threads you upload — parsed for sender, recipient, date, and frequency
  • Call log data you upload or manually enter — parsed for date, duration, direction, and frequency
  • Phone recordings or video files you upload as evidence attachments — stored but not transcribed or analyzed for content
  • Social media interaction logs you manually enter

How communication data is processed: Files you upload are parsed on our servers to extract timestamps, direction (incoming/outgoing), and frequency data. We do not read, review, or analyze the content of your messages — only structural metadata (who, when, direction, frequency). Original uploaded files are stored encrypted and can be deleted at any time. Communication data is subject to the same protections as all other account data.

1.2 Information Collected Automatically

IP address (security only, not linked to account data), browser type, device type, aggregated page analytics (not linked to identity or content).

We do NOT collect: location/GPS data, contacts, photos from your device (unless explicitly uploaded), data from other apps, or browsing history outside our platform.

1.3 Information We Never Access

Your assessment responses, log entries, relationship data, and profile information are encrypted and inaccessible to Healthy Boundaries staff. We cannot read your entries, browse your account, or view your scores.

2. How We Use Your Information

We use your information solely to: provide the platform service, calculate your Relationship Health Score, process payments (via Stripe), send essential account communications, prevent fraud, and improve the platform through anonymized analytics.

We do NOT use your data for: advertising, selling to third parties, training AI models, research (unless you opt in), profiling, or sharing with partners.

3. Who Can Access Your Data

You — and only you. No employee, contractor, Professional Partner, or gift code purchaser can access your account content. This is enforced by encryption at rest (AES-256), row-level security, and no admin access to content.

When you export a PDF report, you create a file on your device. You decide who receives it. We are not involved in or aware of this sharing.

We may disclose information if required by valid legal process (court order, subpoena). We will notify you unless legally prohibited.

4. Data Security

In transit: TLS 1.3 encryption. At rest: AES-256 encryption. Passwords: bcrypt hashing. Infrastructure hosted on SOC 2 Type 2 certified platforms. Safety features include quick-exit button, neutral email sender names, "HB Digital" billing descriptor, and one-click account deletion.

5. Cookies and Tracking

We use only essential cookies (session and security). We do NOT use advertising cookies, tracking pixels, social media widgets, fingerprinting, or cross-site tracking.

6. Third-Party Services

Stripe (payment processing), Supabase (database and auth), Vercel (hosting). We do not share your personal content with any third party.

7. Your Rights

Access: View all data anytime. Correct: Edit any entry. Delete: Permanently delete all data with one click (erased within 24 hours, backups within 30 days). Export: Download as PDF. CCPA: We never sell your data. GDPR principles: Data minimization, purpose limitation, right to erasure, data portability applied to all users.

8. Children's Privacy

Not intended for children under 13. Users 13-18 may use the platform. If under 18 and need help: Childhelp National Hotline 1-800-422-4453.

9. Data Retention

Active accounts: retained while active. Deleted accounts: erased within 24 hours, backups within 30 days. Inactive 24+ months: notification sent, deleted after 30 days if no response.

10. Changes to This Policy

Material changes communicated through the platform (not email, to protect users whose email may be monitored).

11. Contact

Data Controller: MindWiz LLC
Product: Healthy Boundaries (healthyboundaries.living)
Privacy: privacy@healthyboundaries.living
Security: security@healthyboundaries.living

Crisis Resources: Emergency: 911 | National DV Hotline: 1-800-799-SAFE (7233) | Crisis Text Line: Text HOME to 741741

© 2026 MindWiz LLC. Healthy Boundaries is a MindWiz product.