Trust & security

What your compliance officer needs to know

Any Medical Form is a documentation aid for licensed clinicians. It is not a HIPAA-covered service, we do not offer a Business Associate Agreement (BAA), and the product is designed so a clinician can use it without ever entering Protected Health Information.

What we send to the AI provider

Dictations pass through a client-side and server-side redactor (src/lib/pii-redaction.ts) that scrubs common identifier shapes — patient / provider names, DOB, address, phone, MRN, SSN, email — before the text is sent to Google Gemini through the Lovable AI Gateway.

We do not use dictations to train models. The AI provider does not retain prompts for model improvement under our gateway configuration.

What we store

  • Dictations: stored in your browser's local storage only, for up to 10 days. They never reach our database.
  • Account: email, display name, and subscription status.
  • Billing: Stripe holds payment details. We store the Stripe customer / subscription IDs and invoice metadata, never card numbers.
  • Redaction telemetry: counts of identifier categories that were stripped (e.g. "1 DOB, 2 phone"), never the identifiers themselves.

Why no BAA / HIPAA claim

A BAA would require us to accept PHI. We deliberately do not — the product is architected around scrubbed, de-identified clinical descriptions. Offering a BAA without the corresponding infrastructure (segregated storage, audit logging, breach notification workflows, subprocessor BAAs) would be misleading. If your workflow requires PHI-in / PHI-out, this is not the right tool.

Subprocessors

  • Lovable Cloud (Supabase) — auth, database, and edge functions.
  • Google (Gemini) via the Lovable AI Gateway — LLM inference.
  • Stripe — billing and payment processing.
  • Resend — transactional email (confirmations, receipts, dunning).

Security posture

  • Row-level security on every user-facing table.
  • Server-side entitlement checks on Generate / Copy.
  • PHI redactor runs before any text reaches the AI gateway.
  • Stripe webhook signatures verified with HMAC + timestamp tolerance.
  • Report a security issue: skazmi1991@outlook.com.

Data retention & deletion

  • Browser dictations: 10 days, then automatically purged.
  • Account deletion: email skazmi1991@outlook.com and we remove your profile, subscription record, and any support correspondence.
Have a question we didn't cover?

Send it to us on the feedback page and we'll answer directly.

Open feedback form

This page describes current product behavior and is not a legal commitment. See our privacy policy and legal disclaimer for the binding terms.