Last updated: April 5, 2026
⚡ Beta Notice: Brevara is currently in a limited private beta. This policy applies to the current version of the product and will be updated as Brevara moves toward public launch.
Brevara (“we,” “our,” or “us”) is committed to protecting your privacy. This policy describes how we collect, use, and safeguard information when you use our AI-powered therapy documentation tool at brevara.ai.
Brevara is NOT a HIPAA-covered platform and does not execute Business Associate Agreements (BAAs). Do not enter protected health information (PHI) into Brevara under any circumstances. PHI includes patient names, patient initials, dates of birth, dates of service or visit dates, admission or discharge dates, medical record numbers, room or bed numbers, social security numbers, home or facility addresses, phone numbers, or any other information that could identify an individual patient. Clinical abbreviations such as BUE, ADL, SBA, ROM, and all standard therapy shorthand are appropriate and expected — Brevara is built for clinical shorthand. What is prohibited is patient-identifying information. Use room numbers, case numbers, episode numbers, or general clinical descriptors in place of patient names, patient initials, or any other identifier that could identify a specific individual.
If identifying information is accidentally entered, Brevara’s AI system is configured to detect common PHI identifiers, remove them from the generated note, and return a warning to you. This detection is a good-faith measure only — it is not guaranteed, does not constitute HIPAA compliance, and does not relieve you of your obligation not to enter PHI.
Account Information: When you create an account, we collect your name, email address, professional discipline (OT, COTA, PT, or PTA), and payment information processed securely through Stripe.
Usage Data: We collect information about how you use the app, including the number of notes generated, session timestamps, and feedback ratings you provide.
Clinical Shorthand Input: The shorthand text you enter is processed by our AI to generate documentation. This input should not contain any PHI. Input data may be temporarily processed but is not permanently stored for purposes other than generating your note.
We use your information to provide and improve the Brevara service, communicate with you about your account and product updates, analyze usage patterns to improve the product, and respond to your feedback and support requests.
Brevara uses the following third-party services to operate:
Bubble.io — Application hosting and user authentication. Your account data (name, email, discipline, subscription status) is stored in Bubble’s database. Bubble.io does not offer HIPAA-eligible hosting or Business Associate Agreements. Generated note content is not stored in Bubble’s database — it exists only in your browser session.
Anthropic (Claude AI) — AI-powered note generation. Your shorthand input is transmitted to Anthropic’s API for processing. Anthropic’s API is not covered by a BAA with Brevara. Per Anthropic’s API terms, Anthropic does not use API inputs to train its AI models. Do not enter PHI — your shorthand input should contain only de-identified clinical shorthand.
Stripe — Payment processing. Stripe’s privacy policy governs how payment data is handled.
Netlify — Landing page hosting.
Each of these services has its own privacy policies governing how they handle data. Neither Bubble.io nor Anthropic have executed a BAA with Brevara, and none of these services are HIPAA-covered in the context of their use by Brevara.
We implement reasonable security measures to protect your account information, including encrypted connections (HTTPS) and access controls. However, Brevara does not meet the technical, administrative, or physical safeguard requirements of the HIPAA Security Rule. Do not use Brevara as a HIPAA-covered documentation system. Brevara should not be used as a primary or sole documentation system — always maintain your records in your employer’s or facility’s designated electronic health record (EHR) system.
Account data is retained while your subscription is active. You may request deletion of your account at any time. Generated clinical notes are not stored in our database — they exist only in your browser session and are cleared when you start a new note or close the app.
You may request deletion of your account and associated data at any time by contacting us at support@brevara.ai.
We may update this policy as the product evolves. Significant changes will be communicated via email to active users.
For questions about this privacy policy or your data, contact us at support@brevara.ai.