Having evidence of this particular app having poor security practices prior to expressing concerns is an impossibly high standard. The comment is clearly based on a pattern of early stage apps putting security second. I think it's fair to ask early stage apps handling highly sensitive info to at least show some evidence that they are following secure data handling practices. This is a good HN conversation to have, not unnecessarily negative.
So that would be my feedback to the poster: Detail how you ensure privacy and secure data. That should be a major part of the product description for this type of app at the outset.
> Detail how you ensure privacy and secure data. That should be…
I assume the app will target American users, but it could be useful to think through the privacy and data security with the EU GDPR — where that "should" becomes a "must".
I'll just copy a few bits, but the articles here are the most relevant:
https://gdpr-info.eu/art-13-gdpr/ : "Provide the data subject with ... the purposes of the processing for which the personal data are intended as well as the legal basis for the processing ... the recipients or categories of recipients of the personal data, if any"
Is the data shared with anyone?
https://gdpr-info.eu/art-30-gdpr/ : "...shall maintain a record of ... the envisaged time limits for erasure of the different categories of data ... a general description of the technical and organisational security measures ..."
How long is data kept after the interviews are completed?
https://gdpr-info.eu/art-32-gdpr/ : "The controller and processor shall take steps to ensure that any natural person acting under the authority of the controller or the processor who has access to personal data does not process them except on instructions from the controller, unless he or she is required to do so by Union or Member State law."
So that would be my feedback to the poster: Detail how you ensure privacy and secure data. That should be a major part of the product description for this type of app at the outset.