Privacy Policy

Last updated: January 15, 2024
HIPAA Compliant
Health Insurance Portability and Accountability Act
GDPR Compliant
General Data Protection Regulation
Privacy Act 1988
Australian Privacy Principles

Privacy-First Architecture

ProScribe AI is designed with privacy as the foundation. We employ a zero-trust, client-side storage model that ensures your sensitive data never leaves your device.

Data Storage and Processing
  • Local Storage Only: All transcription content is encrypted and stored locally on your device using browser localStorage
  • No Server Storage: We do not store any transcription text, audio files, or sensitive content on our servers
  • Minimal Metadata: Only basic usage statistics (file size, timestamp, processing engine) are stored for service optimization
  • Automatic Cleanup: Audio files are immediately deleted from our servers after processing
HIPAA Compliance

ProScribe AI meets all HIPAA requirements for healthcare data protection:

  • Administrative, physical, and technical safeguards implemented
  • End-to-end encryption for all data transmission
  • No access to Protected Health Information (PHI) by our systems
  • Audit logs for all system access and operations
  • Business Associate Agreements available upon request
GDPR Compliance

We respect your rights under the General Data Protection Regulation:

  • Right to Access: View all data we have about you
  • Right to Rectification: Correct any inaccurate personal data
  • Right to Erasure: Request deletion of your personal data
  • Right to Portability: Export your data in a machine-readable format
  • Right to Object: Opt-out of data processing activities
Privacy Act 1988 (Australia)

ProScribe AI adheres to the Australian Privacy Principles:

  • Open and transparent management of personal information
  • Anonymity and pseudonymity options where practicable
  • Collection limitation and purpose specification
  • Data quality and security safeguards
  • Individual access and correction rights
Data We Collect
Data Type Storage Location Purpose Retention
Account Information Encrypted Database Service Provision Until Account Deletion
Transcription Content Your Device Only User Access User Controlled
Usage Metadata Encrypted Database Service Optimization 90 Days
Audio Files Temporary Processing Transcription Only Immediate Deletion
Security Measures
  • AES-256 encryption for data at rest and in transit
  • Multi-factor authentication for account access
  • Regular security audits and penetration testing
  • SOC 2 Type II compliance (in progress)
  • Zero-knowledge architecture for sensitive data
Third-Party Services

We use the following third-party services with appropriate data protection agreements:

  • AI Transcription Services: Audio processing only, no data retention
  • Cloud Infrastructure: Encrypted storage and processing
  • Analytics: Anonymized usage statistics only
Your Rights and Controls

You have complete control over your data:

  • Export all your data at any time
  • Delete your account and all associated data
  • Control what data is shared and processed
  • Access detailed logs of all data processing activities
Contact Information

For privacy-related inquiries, please contact our Data Protection Officer:

Email: privacy@proscribe.ai
Address: ProScribe AI Privacy Office
Response Time: Within 72 hours
Updates to This Policy

We will notify you of any material changes to this privacy policy via email and prominent notice on our service. Continued use of ProScribe AI after such changes constitutes acceptance of the updated policy.

Back to Dashboard