Skip to content

Security & Privacy

Last updated: March 2026

maeda is built on a simple principle: clinical data belongs to the clinician and their patient, not to us. Here is exactly how we protect it.

How Your Data Moves

  1. 1

    Record

    You activate the recording. Audio is captured in your browser and streamed securely to our transcription service over TLS 1.3.

  2. 2

    Transcribe

    Audio is converted to text in real-time. The audio stream is destroyed immediately after transcription. We never store audio files.

  3. 3

    Generate

    The transcript is processed by AI to produce SOAP notes and clinical documents. All processing occurs within Australia.

  4. 4

    Review

    You review and edit the generated output. Only the finalised text you choose to save is stored, encrypted with AES-256.

Our Commitments

AES-256 Encryption at Rest

Every note, transcript, and document is encrypted using AES-256 with managed encryption keys.

TLS 1.3 in Transit

All communication between your browser and our servers uses TLS 1.3. Data is never transmitted unencrypted.

Australian Data Residency

All data is processed and stored in Australia. Patient data never leaves the country.

No AI Training on Patient Data

We do not use clinical data, transcripts, or patient information to train or fine-tune AI models, whether ours or any third party's.

Clinician Retains Ownership

Your notes are yours. Delete a record and it is permanently removed from our systems. We do not retain deleted clinical data.

Privacy Act Compliant

maeda is designed to comply with the Australian Privacy Act 1988 and Australian Privacy Principles (APPs 1–13).

Responsible Disclosure

If you believe you have found a security vulnerability in maeda, please contact us immediately at admin@maedahealth.com. We take all reports seriously and will respond within 48 hours.