SickDocsClaim packet prep

Privacy Policy

Last updated June 6, 2026

SickDocs helps you organize medical records into insurance claim packets that you review and submit yourself. SickDocs is a server-hosted service: the data you add is stored on SickDocs servers in the United States, encrypted at rest.

This policy explains what we store, who can see it, how long we keep it, and the choices you have today. We describe the service as it actually works now, including the parts that are still partial.

Where your data is stored

Your data is stored on SickDocs servers located in the United States and is encrypted at rest.

What we store

Depending on how you use SickDocs, we may store:

  • Account data (such as your email address).
  • Medical records you import or upload.
  • Generated claim packets.
  • Document metadata we extract to organize your records.
  • Project data (the claims you are preparing and their status).
  • Audit and security records.

Who can access your data

SickDocs staff and administrators may access your data only to operate, secure, support, troubleshoot, or maintain the service.

What we do not do with your data

  • We do not sell your data.
  • We do not use your data for advertising.
  • We do not share your data with advertisers.
  • We do not use your data for research unless you opt in through an explicit consent flow we build in the future.
  • We use your data only to provide the service directly to you.

How long we keep your data

We keep active records until the records or your account are deleted. When data is deleted it is removed from active systems. Encrypted backups may retain deleted data for up to 30 days before those backups expire.

Stopping access, deleting, correcting, and asking how data is used

You can ask us to disconnect a connected health record source, delete your account or stored records, correct data we hold, or explain how your records are used. These requests are support-assisted today: email [email protected] and we will handle them.

Automated, self-service account deletion and export are not yet complete. Until they are, these requests go through support.

Export and deletion are currently partial

Export is partial: we do not yet offer an export of all account data, audit records, metadata, projects, documents, and generated files in one package.

Deletion is partial and support-assisted: because encrypted backups (up to 30 days) and audit records may remain after a deletion request, we do not claim immediate, comprehensive deletion.

What this policy does not claim

This policy is not a claim of HIPAA certification or coverage by a Business Associate Agreement; those are separate and would be stated only if independently verified. We also do not claim a comprehensive access-log export.

Connecting your health records

If you connect your health records through Epic, SickDocs receives read-only data you authorize and never sees or stores your MyChart password. See the Epic connection page for details.

Questions about privacy? Email [email protected].