Last Updated: May 23, 2026
At DictaFlow, we take your privacy seriously. This policy describes how we collect, use, and protect your information when you use our Windows, Mac, and iPhone applications and Telegram bot.
The standard DictaFlow service is not intended for medical dictation, clinical documentation, patient care, diagnosis, treatment, or any use involving protected health information (PHI). Do not submit, dictate, process, store, or transmit PHI or other patient information through the standard DictaFlow service.
If you are a healthcare provider, clinic, hospital, medical office, business associate, or other organization that needs to dictate or process medical information, you must use DictaFlow Medical under the applicable medical security configuration and Business Associate Agreement (BAA), where required.
We collect your Google or Microsoft email address and name when you authenticate to verify your subscription status and usage limits. We do not store your audio recordings or the resulting transcriptions on our servers permanently.
Your authentication data is used solely to provide access to the DictaFlow service. Audio data is processed in real time for transcription and related AI features and is discarded after processing unless retention is required for billing, security, or support purposes.
We use third-party cloud AI processors to help deliver DictaFlow features. These providers currently include OpenAI and NVIDIA. Audio or text that you submit may be processed by these providers on our behalf strictly for transcription, inference, and related product functionality. We do not send unnecessary personally identifiable information alongside this data.
The standard DictaFlow service is not configured or offered as a HIPAA-compliant medical service and should not be used for PHI. DictaFlow Medical is the separate product path for medical dictation, enhanced security requirements, and BAA-supported workflows.
If you have questions, contact us at ryan@dictaflow.io