Privacy
How we handle data.
Last updated: May 22, 2026
Working draft
What data we handle.
ClapMed is a multi-tenant electronic medical record platform. Depending on how it is deployed, the system may handle clinic account information (user names, email addresses, roles), operational data (appointments, schedules, billing records), and protected health information held by the clinic (patient demographics, encounters, notes, lab results, prescriptions, documents).
Where data lives.
Patient data is stored in a relational database with a separate schema for each tenant. Files and images are stored in S3-compatible object storage controlled by the deployment. AI models that read clinical content run inside the deployment, so clinical notes and lab results are not transmitted to third-party AI providers.
Who can access it.
Access is controlled by role-based permissions configured by each clinic. Sign-in supports two-factor authentication, and sessions time out after a period of inactivity. Sensitive actions are recorded in an audit trail for review.
How long we keep it.
Clinical records are retained for the period required by the clinic's applicable regulations. Audit log entries are retained to support investigations and compliance reviews. Backup cadence and retention are configured per deployment.
Your rights.
Where applicable law gives you rights to access, correct, or request deletion of personal information held about you, those requests are handled by the clinic that controls your record. ClapMed acts as a processor on behalf of the clinic and supports them in honoring those requests.
Security architecture.
For more detail on tenant isolation, authentication, audit logging, and how we keep data inside the deployment, see our security page.
Contact.
Questions about how data is handled in ClapMed? Reach us through the contact page.