Cloud Storage and Data Security

Data Storage

EquiHealth uses Supabase, a secure cloud platform hosted in the United States and compliant with the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). Supabase provides encrypted data storage, authentication, and file management infrastructure. User-uploaded data (such as horse photos and health record attachments) are stored in Supabase’s object storage. Each file is associated exclusively with the authenticated user account. Files are stored in a structured path that uses unique, non-guessable identifiers (UUIDs) to prevent public discovery. Files may be accessible through direct URLs for display within the EquiHealth app; however, these URLs are not listed publicly, indexed by search engines, or exposed to third parties. Only users who have access to their EquiHealth account can view their content through the app.

Security & Encryption

All data transfers between the EquiHealth app and Supabase servers are encrypted using TLS/HTTPS. Stored files and database records are encrypted at rest using AES-256. Supabase operates on PostgreSQL and S3-compatible storage with managed infrastructure, including access control and audit logging.

Data Location & Compliance

Supabase currently hosts data in U.S. data centers with security practices aligned to ISO/IEC 27001 standards. Users in the EU, UK, and other regions are informed that data is processed and stored in the United States. EquiHealth complies with applicable GDPR and CCPA requirements, including data-access and deletion requests.

Future Enhancements

EquiHealth plans to implement signed URL access and private bucket permissions in future releases. This will further restrict file access to authenticated users and automatically expire all temporary file links.

Data Privacy Commitment

EquiHealth does not sell, share, or use stored data for advertising, analytics, or profiling purposes. User data remains under the user’s control, and users may request data export or deletion at any time by contacting EquiHealth Support.