heldd
← All articles

Privacy by Design: Why Your Mental Health Data Is Sacred

Lock, shield, or safe—conveying security and trust

In an age of data leaks and surveillance capitalism, it's reasonable to be scared. You're being asked to share your darkest thoughts—your fears, your struggles, your vulnerability—with an app. Why would you trust that?

This article is our answer. We believe your mental health data is sacred. It deserves more than compliance—it deserves a design philosophy that puts privacy at the center from day one.

The Stakes

When you use a mental health app, you're sharing things you might not tell anyone else. Thoughts of self-harm. Feelings of worthlessness. Moments when you didn't know if you could keep going. That information, in the wrong hands, could be used to:

  • Discriminate (insurance, employment, relationships)
  • Manipulate (targeted ads, dark patterns)
  • Expose (leaks, hacks, breaches)
Data flowing into a safe vs. leaking out

The bar for mental health apps cannot be "we follow the law." It has to be: we treat your data as if it were our own.

What "Privacy by Design" Means

Privacy by Design is a framework that builds privacy into the product from the start—not as an afterthought. For heldd, that means:

1. Data minimization

We collect only what we need to provide support. We don't need your location, your contacts, or your browsing history. We need enough to offer grounding tools, hope-building exercises, and a safe space—and nothing more.

2. Encryption

Your data is encrypted in transit and at rest. Industry-standard protocols. No shortcuts.

3. No selling, no sharing

We do not sell your data. We do not share it with advertisers, data brokers, or third parties for marketing. Period.

4. You own your data

You can request access to what we hold. You can request deletion. Your data is yours.

5. Transparency

We publish clear privacy policies. We explain what we collect, why, and how we protect it. No fine-print surprises.

What We Don't Do

  • We don't track you across the web. No cookies for ad targeting. No cross-site tracking.
  • We don't require unnecessary permissions. We ask for what we need—and we explain why.
  • We don't use your data to train models for other purposes. If we use AI, it's to support you—not to build products that exploit your vulnerability.
Trust and security—what we don't do

Why This Matters for heldd

heldd exists because we believe everyone deserves a safe space when things feel heavy. Safety includes privacy. You can't feel safe if you're worried your deepest thoughts might end up somewhere you didn't intend.

We're building heldd with that in mind. Your trust is not something we take for granted—it's something we earn, every day, through how we handle your data.

If you or someone you love could use that kind of support, heldd is here.

Join the waitlist

If you're in crisis, please reach out: 988 Suicide & Crisis Lifeline (US) — call or text 988.