Security

Security and privacy are built into Notefree from day one. Our architecture is designed for healthcare use with strict controls, minimisation of data, and predictable deletion.

All processing and storage occur within the European Economic Area (EEA). Your data does not leave the EEA.

Ambient AI audio is processed in small, real‑time chunks. Each chunk is deleted immediately after processing. A full recording is never stored on our servers.

• Encryption in transit (TLS) and at rest.
• Role‑based access with least‑privilege enforcement.
• Audit logging and monitoring for suspicious activity.

Clinical notes and transcripts are stored temporarily and deleted automatically after 24 hours. After deletion, the data is unrecoverable.

Clinical inputs are not used to train models.

We maintain incident response processes and will notify relevant authorities and customers as required by law.

• Security and privacy inquiries: [email protected]