All apps

Is DeepScribe safe with your data?

D
DeepScribe icon

DeepScribe

DeepScribe, Inc.

40/100

Weak disclosure · high confidence

DeepScribe earns a D (40/100) because it leaves much about its data practices unstated.

Dealbreaker flag

  • D2.2: We may retain certain data as necessary to prevent fraud or future abuse, or for legitimate business purposes...if you cease using such Service, we may retain or destroy, at our discretion, all Personal Data

#152

of 211 apps ranked

40

score · Healthcare avg 39

+1

vs category average

Grade scaleA · 70–100B · 60–69C · 48–59D · 35–47F · 0–34

DeepScribe discloses model training with opt-out and claims outputs are user-owned, but lacks concrete retention periods, security certifications, and synthetic-output marking.

What DeepScribe's privacy policy and terms of service say about your data

D1.4 , Outputs & Reuse

The quote conflates output ownership with Customer Data reuse: "we assign to you all of our right, title, and interest, if any, in Outputs" but separately grants "worldwide, royalty-free license to use...Customer Data...for operating, analyzing and improving" , this dual license structure is ambiguous/shared, not clear user-only ownership.

D2.2 & D3.2 , Deletion Refusal

Both award zero+adverse=true: the policy explicitly reserves discretion to retain indefinitely: "we may retain or destroy, at our discretion, all Personal Data" and permits retention "as necessary to prevent fraud or future abuse, or for legitimate business purposes." This is a no-deletion-on-demand clause.

D3.1 , Retention Vagueness

"We will keep Personal Data for as long as it remains necessary for the identified purpose" , no named period, ladder=0.2 reflects vague 'as necessary' language (the lowest specific boilerplate tier).

D7.1 , Security Adjective-Only

"The Company takes reasonable steps to protect the Personal Data" , 'reasonable steps' is an adjective, not a named control (TLS, AES, RBAC, etc.). No concrete mechanism disclosed; award zero per rubric.

What the policy is silent or vague on

  • Not stated: whether training use differs by plan
  • Not stated: a right to delete your data
  • Not stated: data portability
  • Not stated: a retention period for your data

DeepScribe privacy rating

Training-data use1 of 4 disclosed
Keeps user inputs out of model training, or makes training opt-inPartial
Names a way to opt out of or into trainingDisclosed
Says whether training use differs by plan or tierSilent
Lets the user keep ownership of generated outputsPartial
Data-subject rights1 of 5 disclosed
Grants a right to access your dataPartial
Grants a right to delete your dataAdverse
Offers data portability in a usable formatSilent
Grants a right to correct your dataPartial
Grants a way to object to or opt out of processingDisclosed
Retention and deletion0 of 4 disclosed
States a retention period for your dataSilent
States a deletion timeline after closure or requestAdverse
Sets a shorter retention for AI conversation logsSilent
Commits to collecting only the data it needsPartial
Third-party sharing1 of 5 disclosed
Lists the categories of third parties it shares withPartial
References a sub-processor list or data processing agreementPartial
Does not sell or share data for advertising, or offers opt-outDisclosed
Names a safeguard for international data transfersSilent
States a standard for government and law-enforcement accessPartial
Transparency1 of 5 disclosed
Discloses that you are interacting with AIPartial
Marks AI-generated or synthetic outputSilent
Enumerates the categories of data it collectsDisclosed
Maps processing purposes to legal basesPartial
Is versioned and dated, with change noticePartial
Sensitive data and children0 of 3 disclosed
Discloses automated decisions and a human-review pathSilent
Limits the use of special-category dataSilent
Governs biometric data specificallyNot applicable
States protections for children's dataPartial
Security and accountability0 of 3 disclosed
Describes its security safeguardsSilent
Commits to breach notificationPartial
Names a certification or a privacy contactPartial
DisclosedPartialSilentAdverseNot applicable

Details

Category
Healthcare
Modalities
text, audio
Processes biometrics
No
Policy last updated
2025-10-08
Region scored
Global / US-default
Last assessed
2026-07-08

Documents examined

Other healthcare apps

Each grade reflects our analysis of what an app states in its public privacy policy and terms as of the assessment date. It measures the transparency of those documents, not the company's actual data practices, security, or compliance. Grades are our opinion, offered for general information. Full disclaimer.

Is DeepScribe safe with your data? Grade D | AI App Trust & Transparency Index