Privacy Policy

PatientScribe helps you remember what was discussed in medical consultations. Your privacy is fundamental to how we've designed this app.

Who we are

PatientScribe is developed by DigiFrontiers, an Australian business (ABN 90 618 091 195). When this policy says "we", "us", or "our", it means DigiFrontiers.

What we collect

PatientScribe has no user accounts, no analytics, and no tracking. We do not build profiles or collect usage data.

When you record a consultation, your audio and transcript are temporarily processed on our servers in Australia to generate your summary (see "How the app works" below). Your data is deleted from our servers once processing is complete. As a safeguard, any remaining server data is automatically purged within 7 days.

How the app works

When you record a consultation:

1. Audio is recorded on your device with your healthcare provider's consent.
2. Audio is uploaded to our secure servers in Australia for transcription (converting speech to text).
3. The transcript is processed by AI to create your summary.
4. Your summary and transcript are saved to your device.
5. After you save or discard your consultation, your audio, transcript, and summary are deleted from our servers.

What stays on your device

• Your consultation summaries
• Your consultation transcripts (the text version of what was said)
• Your name (if you choose to add it in Settings)
• Your consent confirmations

This data is stored locally on your iPhone. It is protected by iOS data protection and is excluded from iCloud backup. It is not accessible to us or anyone else.

How we process your data

We operate our own servers on Amazon Web Services (AWS) in Australia. Your consultation data is processed and stored in Australia.

Transcription: Your audio is processed by our self-hosted transcription service running on a dedicated server in AWS Sydney. Audio is encrypted in transit and at rest.

Summarisation: Your transcript is processed by an AI language model (Anthropic's Claude) running through AWS Bedrock in Australia. Your data is not shared with Anthropic — AWS runs the model on our behalf within Australia. Your transcript is not used to train any AI models.

Automatic deletion: After you save your consultation to your device, the app requests deletion of your data from our servers. As a safeguard, any remaining data is automatically purged within 7 days.

No human access: Your consultations are processed entirely by automated systems. No one at DigiFrontiers or AWS reviews, reads, or listens to your recordings or transcripts.

Data security

• All data transmission uses HTTPS encryption
• Server-side storage is encrypted at rest using AWS Key Management Service
• On-device data is protected by iOS file protection
• Audio files are deleted from your device after you save or discard your consultation
• No cloud backup, no sync, no external storage of your consultations

Third-party services

We use Amazon Web Services (AWS) in Australia as our cloud infrastructure provider to host and process consultation data. This includes AWS Bedrock for AI summarisation, which runs Anthropic's Claude model within Australia.

We do not share your consultation data with any third-party transcription, analytics, or advertising services. AWS processes data on our behalf and does not use your consultation content to train AI models.

For more information, see the AWS Data Privacy FAQ.

Your control

• You can delete any individual consultation at any time from within the app.
• You can delete all your data at once in Settings.
• You can withdraw your consent for data processing at any time in Settings. You will still be able to view your existing consultations.
• When you delete the app, all local data is permanently removed from your device.

Children's privacy

PatientScribe is not intended for use by children under 13.

Changes to this policy

If we update this policy, we will post the new version here with an updated date.

Contact

Questions about this privacy policy? Contact us at support@digifrontiers.com.au