**Last Updated:** January 2026

**Docstrive** ("we," "our," or "us") provides a surgical logbook application for surgery residents.

We operate under a **"Zero Knowledge"** privacy model. **We cannot read, access, or recover your patient data.** All patient information is encrypted on your device before it ever reaches our servers.

By using the Docstrive application (the "App"), you agree to the practices described below.

1. Information We Collect

1.1. User Account Information

To verify your residency status, we collect:

• **Full Name**

• **Email Address**

• **Specialty & Institution**

1.2. Clinical & Surgical Data

To provide analytics and logbook generation, we store de-identified medical data:

• **Procedure Details:** (e.g., "Laparoscopic Cholecystectomy")

• **Operational Data:** (e.g., Date, Duration, Emergency/Elective)

• **Outcomes & Complications**

• **Surgical Role & Approach**

This data is stored in plaintext to enable statistics, filtering, and logbook generation.

1.3. Patient Identity Information (End-to-End Encrypted)

Patient names and dates of birth are **end-to-end encrypted** on your device.

• **We cannot read this data.** Patient identifiers are encrypted using AES-256-GCM before leaving your device.

• **We cannot recover this data.** Only your 24-word recovery phrase can decrypt patient information.

• **We do not store your encryption key.** Your key exists only on your device and in your written recovery phrase.

2. How Encryption Works

2.1. Your Recovery Phrase

During setup, you receive a **24-word recovery phrase**. This phrase:

• Is the **only way** to access your encrypted patient data

• Is **never sent to our servers**

• Must be **written down and stored securely** by you

2.2. What Gets Encrypted

| Data Type | Encrypted | Recoverable by Docstrive |

| ----------------------- | --------- | ------------------------ |

| Patient Names | Yes | No |

| Patient Dates of Birth | Yes | No |

| Surgery Procedures | No | Yes |

| Surgery Dates & Details | No | Yes |

| Your Account Info | No | Yes |

2.3. If You Lose Your Recovery Phrase

**Your encrypted patient data will be permanently inaccessible.** We cannot help you recover it.

Your surgery records, statistics, and account will remain intact - only patient names and dates of birth will be lost.

3. Data We Do NOT Collect

• Patient names (stored encrypted - unreadable to us)

• Patient dates of birth (stored encrypted - unreadable to us)

• Medical record numbers

• Your encryption key or recovery phrase

• Device location data

• Usage analytics or tracking data

4. Data Security

• **Patient Data:** AES-256-GCM encryption with keys only you control

• **Transport:** All data transmitted over HTTPS/TLS

• **Storage:** Hosted on Supabase with row-level security enabled

• **Authentication:** Secure session management via Supabase Auth

5. Your Responsibilities

Since we cannot access your patient data:

• **Store your recovery phrase securely** - losing it means permanent data loss

• **Do not share your recovery phrase** with anyone

• **Keep your device secure** - your encryption key is stored locally

6. Data Retention

• **Account data:** Retained while your account is active

• **Surgical records:** Retained while your account is active

• **Encrypted patient data:** Retained until you delete it (we cannot read it)

You may request account deletion by contacting us. Upon deletion, all your data including encrypted patient information will be permanently removed.

8. Changes to This Policy

We may update this policy periodically. Significant changes will be communicated through the App.

9. Contact Us

For privacy questions, contact us at:

**tech@docstrive.com**

---