Even we can't read your content.
End-to-end encryption isn't a marketing checkbox. For a HIPAA-compliant executive function app handling children's data, it's a fundamental design decision that shapes everything we build.
How end-to-end encryption works in Squirrel
Your device generates encryption keys — a unique identity keypair that never leaves your device.
Your family shares an organization key — distributed securely to each family member, wrapped with their individual key.
Content is encrypted before it leaves your device — task titles, descriptions, notes, and messages are all encrypted using ChaCha20-Poly1305.
We store ciphertext — our servers see encrypted blobs. Dates and status are operational metadata; your actual content is opaque to us.
End-to-End Encryption
Your content is encrypted on your device. It travels encrypted. It's stored encrypted. Only your family has the keys.
You Hold the Keys
Your encryption keys live on your devices, not our servers. We literally cannot access your content — by design.
Zero Child Tracking
No third-party analytics on child accounts. No ad networks. No behavioral profiling. Period.
HIPAA Compliant
Business Associate Agreements for clinical data. Audit trails. Access controls. The HIPAA compliance rigor that healthcare and executive function therapy demands.
Your Data, Your Choice
Export everything. Delete everything. You control your data completely. No lock-in, no hostage situations.
“Your dreams are not for sale.”
We will never sell your data. We will never use it for advertising. We will never train AI on your family's private moments. This is a promise, not a policy.