Privacy
Privacy is part of the product, not a footnote.
DoulaPaid is being designed as PHI-ready from the start, even while the MVP uses synthetic demo data.
Use synthetic data in development and demos.
Never put client identifiers into public tools, marketing forms, or AI-assisted research.
Use row-level security and local-first development practices.
MVP privacy posture
This early build is not yet a production HIPAA deployment. Before real client information or client data is used, DoulaPaid needs completed security review, hosting decisions, access controls, backups, audit logging, and appropriate agreements with any service providers.