Privacy Policy

ClinicClaw is an AI-powered practice management platform built for healthcare clinics. We help practices automate patient communication, manage appointments, and grow their business through intelligent automation. ClinicClaw is operated by Metaphase Marketing LLC.

Contact: hello@clinicclaw.com

Information You Provide

• Practice name, contact email, phone number, and billing information when you create an account
• Practice branding, preferences, and configuration settings

Google Account (Gmail, Calendar, Business Profile, Analytics)

• We access your Gmail account to send patient communications (appointment reminders, follow-ups, recall campaigns) from your practice inbox on your behalf
• We read Gmail threads solely to detect patient replies and prevent duplicate outreach. We do not store, index, or analyze email content for any other purpose
• We access Google Calendar in read-only mode to surface appointment data in your dashboard
• We access Google Business Profile to retrieve and display your practice reviews
• We access Google Analytics in read-only mode to display website traffic data alongside your campaign metrics

HubSpot / Salesforce

• We create and update contact records, deals, and activity logs in your connected CRM on your behalf

Other Integrations (Jane App, Cal.com, Twilio, Meta Lead Ads)

• We read appointment and patient data to power scheduling automation
• We send SMS messages and receive inbound lead data on your behalf

Automatically Collected

• Usage data, session logs, and feature interaction data for product improvement
• IP addresses and browser metadata for security and fraud prevention

• Provide and operate the ClinicClaw platform
• Execute automated patient communications you configure
• Sync data between your connected tools
• Display analytics and performance data in your dashboard
• Respond to support requests and send billing notifications

We do not:

• Sell your data or your patients' data to third parties
• Use Gmail content to serve advertising
• Train AI models on patient communication data without explicit consent

ClinicClaw's use of data received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

• Gmail data is used only to send and read emails on behalf of the authenticated user's practice
• Gmail data is not transferred to third parties except as necessary to operate features the user has enabled
• Gmail data is not used for advertising or to build user profiles beyond what is necessary for the service
• We do not allow humans to read Gmail content unless you have explicitly shared it with support for troubleshooting, or we are required to do so by law

You can revoke access at any time from your Google Account Security settings.

• All data is encrypted in transit (TLS 1.2+) and at rest (AES-256)
• Database hosted on Supabase infrastructure meeting SOC 2 standards
• Payment processing handled by Stripe — we never store raw card numbers
• Integration credentials are encrypted at rest and never exposed in logs

ClinicClaw offers a Business Associate Agreement (BAA) for practices that handle Protected Health Information (PHI). A signed BAA is required before PHI may be processed through ClinicClaw. Contact hello@clinicclaw.com to request a BAA.

• Account data is retained for the duration of your subscription plus 90 days after cancellation
• After 90 days, account data is permanently deleted upon request
• Activity logs are retained for 12 months for billing and audit purposes

Depending on your jurisdiction, you may have the right to access, correct, delete, export, or restrict processing of your personal data. Email hello@clinicclaw.com to exercise these rights. We respond within 30 days.

We share data with trusted service providers: Supabase (database), Vercel (hosting), Stripe (payments), Resend (email delivery), Twilio (SMS), and Anthropic (AI processing). Message content is processed to generate responses and is not used for model training. All providers are contractually bound to protect your data.

We use essential cookies for authentication and session management only. We do not use third-party advertising cookies.

We will notify you of material changes by email and by posting an updated version at clinicclaw.com/privacy. Continued use of ClinicClaw after changes constitutes acceptance.

Metaphase Marketing LLC
hello@clinicclaw.com
clinicclaw.com