clinify

Trust Center

Privacy and Security

How we handle patient data when generating clinical notes — from recording through to deletion.

Data Handling

Your data, handled with care

Every step of the process is designed to minimise data exposure and maximise your control.

Microphone
Ready

Audio is never stored

Transcribed in real time, then discarded. No audio ever hits disk.

Encrypted in transit and at rest

All clinical notes are encrypted with AES-256. Application-level encryption means even a database breach reveals nothing.

Data Residency

Your data stays in your region

Choose where patient data lives. It never crosses jurisdictions.

Four regions available

Sydney, London, Frankfurt, and US East. The US East region is HIPAA compliant.

Clinic-controlled

Each clinic selects their data residency region. You can change it at any time from your settings dashboard.

Jurisdictional isolation

Patient-sensitive data — clinical notes and documents — never leaves your selected region. Infrastructure is provisioned per-region.

Compliance

Built to meet healthcare standards

Every subprocessor that handles patient data operates under a Business Associate Agreement.

HIPAA & APP compliant

We meet the highest standards for healthcare data protection in the US and Australia.

BAAs with every subprocessor

Every third-party provider that processes protected health information operates under a signed Business Associate Agreement.

Retention & Deletion

You control your data lifecycle

No patient data is retained indefinitely. You decide how long notes exist.

3d
30d
60d
90d
180d
Stored securely
Auto-redacted

Configurable retention

3 to 180 days. You set the timeline.

Automatic redaction

After your configured retention period, notes are automatically and permanently redacted from our servers.

No indefinite storage

We don't keep patient health data forever. Export notes to your EHR before expiry — they're yours, not ours.

Authentication

Passwordless by design

No passwords to leak, phish, or forget. We use modern authentication to keep accounts secure.

One-time codes

Sign in with a one-time code sent to your email. No passwords means no risk of weak or reused credentials.

Passkey support

Add a passkey for biometric sign-in — Face ID, Touch ID, or your device's security key. Fast, phishing-resistant, and secure.

Clinician-only access

Only the treating clinician can access generated notes. Clinify staff never see decrypted patient data.

Ready to simplify your clinical documentation?

Spend more time with patients and less on paperwork.