HIPAA and Screen Accountability

In this article we explain our privacy-protection process and share actual screenshots from our system.

Some members have raised concerns about laws that protect privacy. For a variety of reasons we have not pursued HIPAA or FERPA certification. At this time, each person must make their own determination about whether or not our process satisfies the regulations that impact your computer activity. While some have found our efforts and process sufficient, others have decided to seek an alternative.

In short – noise, pixelation, blurring, and image reduction are used on each image before being sent over HTTPS and stored on servers that meet industry standards for security.

In detail, here is our privacy-protection process:

  • The Covenant Eyes software on your device captures a screenshot.
  • The software looks for explicit content using proprietary artificial intelligence.
  • The software shrinks all of the screenshots that it takes and blurs them (in three different manners) while still on your device.
  • The program uses HTTPS to transfer those blurred images from your device to our servers.
  • The blurred images are stored on secure servers that use AES 256-bit encryption.
  • The blurred images are stored for no more than 30 days, after which they are permanently and irretrievably deleted from our databases.
  • Screenshots in the report are blurred to protect the member’s personal information, like credit card and banking statements.

Blurred images from our own activity:

  • Password manager (LastPass)
  • 2-person Zoom meeting, native blur
  • 2-person Zoom meeting, after clicking the Decrease Blur button
  • Trading app (TD Ameritrade)

Related Reading