Privacy Policy
Last updated: March 2026
1. Information We Collect
CareCribe collects information necessary to provide clinical documentation services, including account information (name, email, organization), session audio recordings uploaded by authorized users, and generated clinical notes. We also collect usage data to improve our services.
2. How We Use Your Information
We use collected information solely to provide and improve our clinical documentation platform. Audio recordings are processed for transcription and note generation. We do not sell, rent, or share personal or clinical data with third parties for marketing purposes.
3. HIPAA Compliance
CareCribe is designed to comply with the Health Insurance Portability and Accountability Act (HIPAA). All protected health information (PHI) is encrypted in transit and at rest. We maintain administrative, physical, and technical safeguards as required by HIPAA regulations. We will enter into a Business Associate Agreement (BAA) with covered entities.
4. Data Security
We implement industry-standard security measures including 256-bit TLS encryption, secure access controls, audit logging of all data access, and regular security assessments. Data is stored on secure, HIPAA-compliant infrastructure.
5. Data Retention
Clinical data is retained in accordance with applicable healthcare regulations and your organization's policies. You may request deletion of your data at any time by contacting us. Audio recordings can be deleted after note generation at your discretion.
6. Your Rights
You have the right to access, correct, or delete your personal information. You may also request a copy of your data or restrict its processing. To exercise these rights, contact us at privacy@carecribe.com.
7. Contact Us
For privacy-related questions or concerns, contact us at privacy@carecribe.com.