As more and more laws, policies, and frameworks are introduced that aim to provide guidelines for how companies should treat user data, it's important that we are as transparent as possible to Expo users about what data Expo collects (spoiler alert- it's very little).
If you have questions about this, please post in our forums.
HIPAA Compliance and Expo
Are Apps Built with Expo HIPAA Compliant?
They can be! You can build HIPAA compliant apps with Expo if you follow the requirements.
Expo doesn't collect any individually identifiable health data, and you can actually see all the data that Expo collects on our privacy explained page. That being said, you are ultimately in control of the data you collect from your users, so we cannot guarantee that all apps built with Expo are HIPAA compliant, as in the end it is up to you as an individual application developer. But there should be no compliance issues with using Expo.
They can be! You can build GDPR compliant apps with Expo if you follow the requirements.
While Expo ensures the proper handling and processing of developer data and end-user data, we cannot guarantee that the developers who build apps with Expo follow similar data privacy practices themselves.