Skip to content / Aller au contenu

Privacy Policy

Effective date: May 1, 2026 — Last updated: April 25, 2026

Download FR (PDF)Download EN (PDF)

1. Introduction

AuraScribe Inc. (“AuraScribe”) provides an AI-powered medical scribing SaaS for licensed physicians. This policy explains how we collect, use, and protect personal information.

AuraScribe does not retain patient information. Audio, text, and generated notes stay in the physician’s browser for up to 24 hours, then auto-delete.

2. Information we collect

  • Full name
  • Professional email
  • Password / authentication
  • Medical license number
  • Specialty, preferred language, clinical preferences
  • Electronic signature
  • Clinic name (optional)
  • Billing information (Stripe – no card data stored)
  • We do not collect or retain patient data.

3. Clinical data processing (transient)

  • Encrypted from browser → AuraScribe GCP VPC
  • Self-hosted Deepgram Nova transcribes (Nova 3 FR‑EN; Nova 2 FR‑EN; Nova Medical EN)
  • Transcript sent to Gemini via Vertex AI
  • Draft note returns to the physician’s browser
  • No patient data is stored
  • Auto-delete locally after ~24 hours

4. Retention

AuraScribe stores only physician account data. No patient data is stored.

5. Security

  • AES‑256 encryption
  • TLS for transmission
  • Segmented VPC architecture
  • Strict access controls
  • No protected health information retained

6. Account deletion

You may delete your account at any time; deletion is immediate and permanent.

Inactive accounts are deleted after 6 months.

7. Payments

Individual payments via Stripe (no card data stored).

Clinics may receive monthly invoices for offline payment.

8. Your rights

  • Access / update your profile
  • Delete your account
  • Request your data
  • Contact our Privacy Officer

9. Privacy Officer

Salah Taileb

Email: salah.taileb@aurascribe.ca

Phone: 438‑402‑4751

Address: 3200 Boulevard Cartier Ouest, Laval, QC, H7V 1J7

Law 25 Addendum (summary)

  • AuraScribe acts as service provider; customer (clinic/physician) determines purposes.
  • Privacy Officer designated; contact published.
  • PIA/EFVP conducted when required; incident register maintained.
  • No patient data at rest; browser-side auto-purge (~24h).

Cookie Policy (essential only)

  • Essential cookies only: session, security, preferences (language).
  • No analytics, ads, or marketing pixels.
  • Browser local storage may hold clinical content up to 24 hours then auto-purge.
  • Blocking essential cookies may prevent the Service from functioning.
Privacy Policy | AuraScribe