How PathwayNotes Stores and Protects Your Data

Data Handling, Storage, and Protection

PathwayNotes handles account information, login information, journal entries, mood selections, messages, assessment information, client profile information, AI-generated summaries or insights, and protected health information when used by a covered entity.

Access is role-based. Clients use the iPhone app to access their own entries, reflections, summaries, messages, assessments, and settings. Clinicians use the web dashboard to access information for their assigned clients. Practice administrator access depends on the account structure and permissions.

The Privacy Policy states that personal information is securely stored and access is limited. The BAA states that safeguards include encryption of ePHI in transit and at rest, access controls, audit logging, workforce training, and a written information security program.

Archiving a client removes the client from the active roster without deleting the full history. Permanent deletion, export, retention, and cancellation questions should be handled through PathwayNotes support and reviewed against the official policy documents.

    • Related Articles

    • What Clinicians Can See — and What Stays Private for Clients

      What clinicians can see All journal entries the client has shared (Shared with counselor toggle is on), mood selections, weekly and monthly summaries, all messages exchanged between the client and the AI, all direct messages to the clinician, ...

    • How Content Awareness Flags Work

      WEB APP ONLY Content Awareness Flags are a clinician web dashboard feature only. They do not appear in the iPhone app for clinicians or clients. Content awareness runs silently on every journal entry and message submitted. The AI scans for language ...

    • HIPAA Compliance Overview

      PathwayNotes is designed for clinical use where protected health information may be involved. When a covered entity uses PathwayNotes with PHI, HIPAA-related responsibilities are addressed through the PathwayNotes Business Associate Agreement. HIPAA ...

    • The Business Associate Agreement (BAA)

      A Business Associate Agreement, or BAA, is a HIPAA-related agreement between a covered entity and a service provider that may create, receive, maintain, or transmit protected health information on the covered entity’s behalf. The PathwayNotes BAA ...