Privacy Policy

Last updated: March 2026

Overview

Docjot is a personal health notes application that helps you record, organize, and review information from your doctor visits. We take your privacy seriously. This policy explains what information we collect, how we use it, and your rights regarding your data.

Your health notes are yours. We do not sell your data, share it with advertisers, or use it for any purpose other than making Docjot work for you.

Information We Collect

Account information: When you create an account, we collect your email address and a hashed (encrypted) password, or your Google account identifier if you sign in with Google.

Health notes and content: Any notes, recordings, transcripts, appointment details, medications, supplements, lab results, and action items you enter into the app. This content is stored securely and is only accessible by you.

Usage data: We track how many times you use AI features (voice transcription and chat) each month to enforce fair usage limits. This data is not shared with third parties.

How We Use Your Information

  • To provide the Docjot service and display your notes and health data back to you
  • To send authentication emails (account confirmation, password reset) through our email provider
  • To process AI features — your notes and questions are sent to Google's Gemini AI model to generate transcripts and answers. Google processes this data according to their API terms
  • To enforce monthly usage limits on AI features
  • To maintain the security and reliability of the service

What We Do Not Do

  • We do not sell your personal data or health information to any third party
  • We do not share your data with advertisers or use it for targeted advertising
  • We do not use your health notes to train AI models
  • We do not share your information with employers, insurance companies, or healthcare providers

Data Storage and Security

Your data is stored using Supabase, a secure cloud database platform. All data is encrypted in transit (HTTPS) and at rest. Authentication emails are sent via Resend, a transactional email service.

The application is hosted on Vercel's infrastructure. None of these providers are permitted to use your data for their own marketing or advertising purposes.

AI Features

Docjot uses Google's Gemini AI to power voice transcription and the health assistant chat. When you use these features, relevant portions of your notes and questions are sent to Google's API for processing. These requests are made from our secure backend — your API keys are never exposed in the browser.

If you have concerns about AI processing of your health data, you can use Docjot without using the voice recording or AI chat features.

Your Rights

  • Access: You can view and export all of your data at any time using the Export Data feature in the app
  • Deletion: You can delete individual notes, medications, and appointments from within the app. To request full account deletion, contact us at the email below
  • Correction: You can edit any information you have entered at any time

Children's Privacy

Docjot is not directed at children under 13. We do not knowingly collect personal information from children under 13. If you believe a child has provided us with personal information, please contact us so we can delete it.

Changes to This Policy

We may update this privacy policy from time to time. We will notify you of significant changes by posting a notice in the app or sending an email to the address on your account.

Contact

If you have questions about this privacy policy or how your data is handled, please contact us at support@docjot.app.