Covepet logoCovepet
← Back to Home

How Covepet Will Protect Your Data

Your pet's health information is sensitive. Here's exactly how I'm building Covepet to keep it safe.

Industry-Standard Encryption

All your pet's health data is encrypted in transit (HTTPS/TLS 1.3) and at rest (AES-256). This protects your data from unauthorized access while still allowing essential features like search, analytics, and vet portal integration.

Canadian Data Residency

All data is stored on Canadian servers (AWS Canada Central region) and subject to Canadian privacy laws (PIPEDA). Your information never leaves Canada.

You Control Access

You decide who sees your pet's data. Share specific records with your vet, pet sitter, or family - and revoke access anytime. No one gets your data without your explicit permission.

Regular Backups

Automated daily backups to multiple geographic locations. If something goes wrong, your data is safe and recoverable.

No Third-Party Access

No third-party analytics on your pet's health data. No advertising networks. No data brokers. It's between you and Covepet.

Secure Authentication

Industry-standard authentication with secure password hashing (bcrypt), optional two-factor authentication, and session management that keeps your account safe.

Technical Security Measures

  • Transport Security: All connections use HTTPS with TLS 1.3
  • Data Encryption: AES-256 encryption at rest, SSL/TLS in transit
  • Infrastructure: AWS with multi-AZ deployment for reliability
  • Access Control: Role-based permissions and audit logging
  • Monitoring: 24/7 automated security monitoring and alerts

What I Promise NOT to Do

  • Sell your data to anyone, ever - not advertisers, not data brokers, not "partners"
  • Use your pet's health information for anything other than providing the service
  • Share data with government or law enforcement without a valid court order
  • Train AI models on your private pet health data
  • Store data outside of Canada or move it to cheaper, less secure regions

If Something Goes Wrong

Despite best efforts, no system is 100% secure. If there's ever a security incident:

  • I'll notify you immediately (within 24 hours of discovery)
  • I'll be transparent about what happened and what data was affected
  • I'll provide clear guidance on what you should do to protect yourself
  • I'll publish a public post-mortem explaining what went wrong and how I'm preventing it from happening again

Security Questions?

Building secure software is something I take seriously. If you have specific security concerns or questions, I'm happy to discuss them.

Security contact: security@covepet.com

(Please don't email vulnerabilities - I'll set up a responsible disclosure policy before launch. For now, if you find something serious, contact me at the above email)