Skip to main content

Security & Privacy

Compliance FAQ

Common questions from compliance teams, supervisors, and IT departments.  ·  Privacy Policy  ·  Terms of Service

The short version

BaringaSoft Pulse stores everything locally on your device, encrypted with AES-256. We never see, touch, or transmit your data. There is no server. There is no cloud. Your data is yours alone.

Is Pulse HIPAA compliant?

BaringaSoft Pulse is built with a privacy-first architecture that supports HIPAA-aligned workflows. All data is stored locally on your device, encrypted at rest with AES-256 (via SQLCipher), and never transmitted to any server. Because we never access, process, or store your data, there is no cloud exposure to secure against.

That said, HIPAA compliance depends on your full environment — device security, physical access controls, and organizational policies — not just the software you use. Pulse gives you a strong technical foundation; the rest is up to your practice.

Do we need a BAA with you?

No. A Business Associate Agreement is required when a vendor creates, receives, maintains, or transmits protected health information on your behalf. BaringaSoft does none of these things. Your data never leaves your machine and we have zero access to it — so there is no business associate relationship to formalize.

Where is our data stored?

Only on your local device, in an encrypted SQLCipher database protected with AES-256 encryption. Nothing is stored in the cloud, on our servers, or anywhere else. You own and control every byte.

Can you see our data?

No. We have zero access. There is no server, no telemetry, and no analytics that touch your data. The only network calls Pulse makes are a one-time license activation and an optional update check — neither involves your client data.

What happens if we lose the device?

The database is encrypted with AES-256. Without your password or recovery key, the data is unreadable — even to a sophisticated attacker with full disk access.

We recommend maintaining regular backups (Pulse has built-in backup tools) so you can restore your data on a new device.

Can we use this on shared computers?

Yes. The app locks with a password and encrypts all data at rest. Each user should install their own copy with their own password. Because the database is encrypted, other users on the same machine cannot access your data without your credentials.

A note on compliance

No software can guarantee regulatory compliance on its own. Compliance is a function of your tools, your policies, your training, and your environment working together. BaringaSoft Pulse is designed to give you the strongest possible technical foundation — local-only storage, strong encryption, no data transmission — but the responsibility for meeting your organization's compliance obligations ultimately rests with you.

Still have questions?

We're happy to answer compliance questions from your IT team, supervisor, or compliance officer directly.

BaringaSoft LLC
baringasoft@tuta.com