Skip to main content
Hypno Admin Pro

Security, Privacy & Support

Last updated: 2 June 2026

Hypno Admin Pro is built for professional hypnotherapists, so client information, session notes, scripts, bookings, and audio files are treated as confidential practice material. This page explains the practical safeguards in place today and the boundaries of the current MVP.

How Your Data Is Stored

Account authentication, database storage, and file storage are handled through Supabase infrastructure. Access is account-based, and the application uses Row Level Security policies so users can only access data that belongs to their own account.

Connections to the service use HTTPS encryption. Audio files and other saved materials are stored in Supabase Storage rather than on your local device only, so a lost laptop or crashed browser does not remove your workspace data.

Payments And Card Details

Subscription payments for Hypno Admin Pro are processed by Stripe. Hypno Admin Pro stores subscription status and related Stripe identifiers so your account can be managed, but it does not store your card details.

Optional client session payments use Stripe Connect: when you connect Stripe in booking settings, clients can pay for paid bookings by card. Those payments are processed by Stripe and paid out to your connected Stripe account — Hypno Admin Pro does not hold client session fees.

AI Processing

AI features use OpenAI to process prompts and generate draft content. Hypno Admin Pro is designed so the practitioner stays in control: you review, edit, and approve any AI output before using it with clients.

Do not include identifiable client information in AI prompts unless you have a proper professional basis for doing so. In normal use, client names and private session notes do not need to be included in prompts.

Account Protection

Users can enable two-step verification with an authenticator app from the dashboard security settings. The dashboard also signs users out after a period of inactivity to reduce the risk of an unattended session staying open.

Data Breach Preparedness

Security is handled as an ongoing responsibility, not a one-time claim. The business maintains insurance cover that includes data breach scenarios, and any serious security or privacy incident would be handled according to legal notification duties and the practical needs of affected users.

HIPAA And Medical Records

Hypno Admin Pro is not currently marketed as a HIPAA-compliant medical records platform. It is a practice workspace for hypnotherapists, and practitioners remain responsible for using it in a way that fits their own professional, legal, and regional obligations.

Support Policy

During the MVP stage, support is handled directly by email at info@hypnoadminpro.com. We aim to respond within 1-2 working days, with urgent access or billing issues prioritised where possible.

This is an actively maintained product. Bugs, support requests, and practitioner feedback are reviewed directly and used to guide improvements.

Responsible Disclosure

We welcome responsible disclosure of genuine security issues. If you believe you have found a vulnerability, please email the details and clear reproduction steps to info@hypnoadminpro.com and allow reasonable time for it to be reviewed and resolved before any public disclosure.

Hypno Admin Pro does not operate a paid bug bounty program and does not offer monetary rewards for reports. Please do not access, modify, or delete data that is not your own, and do not run automated scanning that could disrupt the service for other users.

More Detail

For the full legal privacy wording, including data types, retention, third-party services, and UK GDPR rights, read the Privacy Policy.