Privacy Policy

1. Information We Collect

Scrivify collects the minimum information necessary to provide our dental narrative generation service. This includes:

• Account information: Name, email address, and authentication credentials managed through our identity provider (Clerk).
• Clinical findings: Procedure-specific clinical data you enter into the narrative generator, such as tooth numbers, clinical observations, and treatment details.
• Usage data: Generation history, timestamps, and feature usage patterns to improve our service.

Scrivify does NOT collect patient personally identifiable information (PII) such as patient names, dates of birth, Social Security numbers, or insurance member IDs. Our forms are designed to capture clinical findings only.

2. How We Use Your Information

We use the information we collect to:

• Generate payer-ready clinical narratives using AI
• Maintain and improve the quality of generated narratives
• Authenticate your identity and manage your account
• Enforce rate limits and prevent abuse
• Communicate service updates and important notices

3. AI Processing

Scrivify uses Anthropic's Claude AI to generate clinical narratives. When you submit clinical findings, they are sent to Anthropic's API for processing. Key points about AI processing:

• Clinical data is transmitted securely via encrypted connections to Anthropic's servers.
• Anthropic does not use data submitted through their API to train their models, per their commercial terms of service.
• Generated narratives are streamed back to you in real time and stored in your generation history.
• No patient PII is included in AI prompts because our forms do not collect it.

4. Data Storage & Security

Your data is stored in MongoDB Atlas with enterprise-grade security controls:

• Encryption at rest and in transit (TLS 1.2+)
• Network isolation and IP access controls
• Regular automated backups
• Role-based access controls for database administration

5. Data Retention

We retain your data for as long as your account is active. Generation history is preserved to allow you to reference and reuse past narratives. If you request account deletion, we will remove your personal data and generation history within 30 days, except where retention is required by law.

6. Third-Party Services

We use the following third-party services to operate Scrivify:

• Clerk — Authentication and user management. Clerk processes your email address and login credentials. See Clerk's Privacy Policy.
• Anthropic — AI narrative generation. Anthropic processes clinical findings submitted through our service. See Anthropic's Privacy Policy.
• MongoDB Atlas — Database hosting and storage. See MongoDB's Privacy Policy.

7. Your Rights

Depending on your jurisdiction, you may have the right to:

• Access the personal data we hold about you
• Request correction of inaccurate data
• Request deletion of your data
• Export your data in a portable format
• Object to or restrict certain processing activities

To exercise any of these rights, contact us at hello@scrivify.com.

8. Cookies

Scrivify uses essential cookies required for authentication and session management. We do not use advertising or tracking cookies. Our authentication provider (Clerk) may set additional cookies necessary for secure login functionality.

9. Children's Privacy

Scrivify is designed for licensed dental professionals and is not intended for use by individuals under 18 years of age. We do not knowingly collect information from children. If we learn that we have collected data from a child, we will delete it promptly.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page and updating the "Last updated" date. Your continued use of Scrivify after changes constitutes acceptance of the revised policy.

11. Contact Us

If you have questions about this Privacy Policy or our data practices, contact us at: hello@scrivify.com