PawMiaw
Sign in

Paw Miaw Legal

Trust and Security

Last updated: May 31, 2026

Paw Miaw is built for pet families, care providers, and veterinary clinics that need practical protection for pet profiles, care records, provider workspaces, billing workflows, and shared access. This page summarizes the security and privacy posture we have in place today and the areas we continue to mature as Paw Miaw grows.

Paw Miaw is not designed to store human medical records and is not a system for human protected health information. Pet and clinic records can still be sensitive, so we treat them as protected product data.

1. Encryption and Sessions

  • Paw Miaw is designed to use encrypted HTTPS connections for production web and API traffic.
  • Browser sessions use secure cookie-based authentication instead of relying on bearer tokens stored in browser local storage.
  • Password credentials are handled through the authentication system using one-way password hashing. We do not intentionally store plain text passwords.
  • Password reset links are time-limited, and resetting a password revokes existing sessions.

2. Access Control

Paw Miaw separates household accounts, provider workspaces, provider staff, client relationships, and signed external links. Provider access is controlled by workspace membership, staff roles, permissions, and the product flows where a household or provider grants access.

  • Households control household membership and pet sharing.
  • Provider workspaces control staff invitations, staff roles, and workspace access.
  • Clinic and provider tools use role and permission checks before exposing protected workflows.
  • Signed links are scoped to specific actions, such as appointment confirmations, reminders, invitations, or client sharing.

3. Audit Logs

Paw Miaw records audit events for important provider and workspace activity, including record access, record changes, attachment changes, staff role changes, provider catalog and inventory actions, billing actions, invoice access, PDF generation, payments, and security relevant activity. Audit logs help with accountability, troubleshooting, abuse investigation, and clinic review.

Audit records are intended to preserve operational accountability and may be retained when other account data is deleted where needed for security, fraud prevention, compliance, dispute resolution, or legal reasons.

4. Backups and Recovery

Paw Miaw maintains operational backup and recovery procedures for core service data. Backups are used for disaster recovery, reliability, and service restoration. Backup copies may retain data for a limited period after a deletion request before they expire through normal backup rotation.

5. Subprocessors and Vendors

Paw Miaw uses trusted service providers to operate the Service. These may include hosting, database, cloud storage, email delivery, authentication, analytics, error monitoring, payment processing, app store billing, and customer support providers.

We do not sell personal information, and we do not use pet care, provider, client, record, invoice, or message content for third-party advertising. As our vendor stack becomes final for production, this page or our Privacy Policy may be updated with more specific subprocessor details.

6. Retention, Export, and Deletion

We retain data for as long as needed to provide Paw Miaw, maintain household and provider records, meet legal and tax obligations, support billing, prevent abuse, resolve disputes, and protect the Service. Users may contact support@pawmiaw.com to request account access, export, or deletion.

Some records may be retained when needed for provider recordkeeping, invoices, payments, taxes, security logs, fraud prevention, backups, disputes, legal obligations, or legitimate business needs. More detail is available in our Privacy Policy.

7. Incident Response

If we discover a security issue that may affect users, providers, clinic workspaces, or service data, we will investigate, contain the issue, preserve relevant records, remediate the problem, and provide notices where required by law or appropriate for user protection. Security questions or reports can be sent to support@pawmiaw.com.

8. Current Positioning

Paw Miaw does not currently claim SOC 2, ISO 27001, HIPAA compliance, or human PHI readiness. The Service is for pet care and veterinary workflows, not human healthcare. If Paw Miaw later offers enterprise security addenda, formal compliance reports, or regulated healthcare functionality, those will be covered by separate written terms.