Patient Data Does Not Leave the Device
Mindset Medical maintains strict privacy protections for clinical data. All biometric processing occurs locally on patient devices with zero video transmission to cloud infrastructure.
Privacy Architecture
Edge-first design
No
Video Stored
AES-256
Encryption
HIPAA
Compliance
Patient Data's Journey
Every stage is designed to minimize exposure and maximize patient privacy. Trace exactly what happens from scan to delivery.
Patient Initiates Scan
Each measurement requires explicit opt-in consent through a clear interface prompt. The patient activates their device camera for a 30–60 second guided face scan. No background collection or passive tracking ever occurs.
On-Device Processing
Video frames are captured and analyzed entirely on the patient's device using edge computing. rPPG algorithms extract physiologic signals locally. No facial imagery, biometric video, or identifiable content is ever transmitted across any network.
Biometric Destruction
Raw video frames, processed waveforms, and all biometric artifacts are permanently destroyed from the device immediately after measurement. No recoverable biometric data persists on any storage medium.
Multilayer Security for Metric Transit
Only de-identified numeric vitals — pulse rate, respiratory rate, blood pressure values — are transmitted via AES-256 encryption. This ensures that data reaches only the right partner-specified endpoints.
Privacy Architecture
Three foundational pillars ensuring patient data never leaves the device unprotected.
Edge-First Processing
All video analysis happens on the patient's own device. Our WebSDK never transmits camera frames, facial imagery, or raw biometric signals. Only numeric clinical values leave the device.
Government-Approved Encryption
AES-256 end-to-end encryption protects all metric transmissions. AES-256 is the strongest industry-adopted and government-approved algorithm for encrypting data. Encryption keys rotate per- session, eliminating replay attack vectors entirely.
Zero PHI Exposure
Protected health information stays exclusively within partner-controlled EHR systems. Mindset Medical processes no identifiable data under HIPAA definitions. No central patient data repository exists.
Data Transparency
Complete clarity on what we collect, what we don't, and why.
Data Types Blocked
Never collected or transmitted
Only Transmitted
Encrypted to authorized endpoints (e.g., provider EHR)
Patient Controls
Patients retain full control over their data at every stage of the measurement process.
Privacy by Design, Not an Afterthought
Our architecture makes privacy violations technically impossible. Video never leaves the device. There is no server to breach, no database to leak, no cloud storage to compromise.
Opt-In Consent
Every scan requires explicit patient authorization. No passive, background, or automatic data collection.
Data Deletion Rights
Delete transmitted metrics through partner portals or EHR patient access. No central repository exists.
Full Transparency
Complete visibility into what data is collected, how it's processed, and where numeric results are sent.
No Data Monetization
Patient data is never sold, shared with advertisers, or used for any purpose beyond clinical care.
Compliance & Security
Regulatory readiness and enterprise-grade security controls built into every layer.
HIPAA Framework
Zero PHI cloud exposure. Mindset Medical only needs deidentified data (e.g., HIPAA safe harbor method). Integration partners receive encrypted numerics only.
Access Controls
Role-based permissions restrict administrator console access. Multi-factor authentication for all WebSDK provisioning.
Audit Trail
Complete records for each measurement are maintained and accessible to providers for billing compliance.
Regulatory Ready
Remote Patient Monitoring eligibility that meets the FDA's definition of a medical device and digitally uploads data.