Free for a week, then $19 for your first month
Expert Advice

How Twofold Keeps Your Notes Safe (Without Ever Saving Audio)

Discover how Twofolds AI scribe protects patient privacy with audio deletion and secure data encryption.

Dr. Danni Steimberg's profile picture
By  Dr. Danni SteimbergDr. Danni Steimberg profile pictureDr. Danni SteimbergLicensed Medical Doctor

Dr. Danni Steimberg is a pediatrician at Schneider Children’s Medical Center with extensive experience in patient care, medical education, and healthcare innovation. He earned his MD from Semmelweis University and has worked at Kaplan Medical Center and Sheba Medical Center.

 , Licensed Medical Doctor
5 min read Expert Verified How is this page expert verified? At Twofold Health, we take the accuracy of our content seriously. "Expert verified" means our Clinical Advisory Board — practicing clinicians and industry experts — has thoroughly evaluated the article for accuracy, clarity, and relevance. They hold us accountable for delivering trustworthy resources clinicians can rely on. About our Review Board
How Twofold Keeps Your Notes Safe (Without Ever Saving Audio) Hero Image

In today's digital‑first clinical practice, efficient documentation must never come at the cost of patient privacy. The very tools that save time can create significant security risks if they retain sensitive audio recordings.

Twofold’s AI medical scribe is built on a foundational promise: to never save your audio. By permanently deleting recordings after processing, we uphold the highest standard of confidentiality by design. Explore the multi‑layered structure that ensures your clinical documentation is not only HIPAA‑compliant but trustworthy, allowing you to focus on care.

Why Note Security Matters More Than Ever in Clinical Workflows

The pressure to document efficiently is immense, but it cannot come at the cost of patient privacy. Healthcare remains one of the most breached sectors, with nearly 57 million individuals affected by data breaches in 2025. A single incident can trigger millions in fines, legal action, and irreversible reputational damage. The stakes are uniquely high for clinical documentation, and unlike billing codes or lab results, psychotherapy notes contain a patient’s deepest narratives, fears, and histories. Therefore, a breach here isn't just a data loss; it's a major violation of the therapeutic bond.

This makes security a core clinical and ethical duty. HIPAA provides the essential framework for this duty, mandating safeguards that align with ethical practice. Choosing a tool that embodies these principles is critical for modern clinicians.

The Privacy Risks of Audio Recording in Clinical Documentation

While capturing session audio seems efficient, it creates significant privacy liabilities that undermine both security and the therapeutic process. The core risks can be broken down as follows:

  • Audio is Raw, Unfiltered PHI: An audio file is a complete, unredacted recording. It contains every spoken word, emotional inflection, and tangential, but deeply personal detail. This raw data is far more sensitive than a finalized, structured clinical note, which filters information to what is clinically relevant and necessary.
  • It Creates a Liability: Unlike a note, which has a defined retention period, a stored audio file becomes a perpetual target. It must be encrypted, access-controlled, and managed indefinitely, vastly expanding your long-term data breach exposure and compliance overhead.
  • It Introduces Ethical Gray Areas: Even with legal consent, the knowledge that a digital recording is being permanently archived can alter the therapeutic dynamic. Patients may self-censor, potentially hindering the openness required for effective treatment.

How Twofold Processes Conversations Without Storing Audio

This follows a “process to text, then delete” principle. Here is a simple breakdown of how this works.

  • Step 1: Secure Real-Time Stream: Audio is instantly encrypted, while our AI models transcribe and analyze it.
  • Step 2: Immediate Deletion: The raw audio data is permanently deleted from memory once the draft is created.
  • Step 3: Text Only Output: The only saved item is the final, structured note draft.

How Twofold Keeps Clinical Notes Safe End to End

After the audio is deleted, your notes are protected by multiple, layered security controls.

  • End-to-End Encryption: All data is secured in transit and at rest using TLS 1.2+ and AES-256 encryption, respectively.
  • Compliant Infrastructure: Data is hosted on the compliant cloud provider Microsoft Azure, with strict physical and network security.

Data Access Controls and User Boundaries That Keep Notes Safe

Controlling who can see what information is just as important as encrypting it.

  • Role-based Access Control: Permissions are segmented by job role.
    • A clinician can create and view all notes for their caseload.
    • A billing staff member can only see required codes and dates, not the clinical narrative text.
    • An admin can manage user accounts but cannot view clinical content.
    • This is especially critical for protecting sensitive psychotherapy notes, which receive a higher level of access restriction.
  • Comprehensive Audit Trails: The system maintains a log that records every action.
    • Tracks exactly who accessed which note, when, and from where.
    • This is non-negotiable for HIPAA-compliant AI notes and provides transparency.

Compliance, Trust, and Security Standards Behind Safe Clinical Notes

Security is validated by independent standards and legal agreements, not just promises.

  • HIPAA-Compliant Foundation: Our HIPAA compliant AI notes solution is built to handle Protected Health Information.
  • The Business Associate Agreement: We sign a legally binding BAA with every customer. This contract formally outlines our responsibilities for safeguarding your patients' PHI, creating shared liability and trust.
  • Beyond HIPAA: We will undergo a SOC 2 Type II audit. Unlike a point-in-time check, this third-party examination verifies that our security controls operate effectively over a sustained period (usually 6-12 months)

How Twofold Keeps Notes Safe by Design, Not by Retention

Twofold is built on the principle that the most secure data is the data you never store. This is why our system's core function is to delete audio immediately after processing. This Privacy by Design is not just a feature; it is our foundation.

By deleting the audio repository, the chances of potential breaches are dramatically lower. Clinicians and patients can engage more comfortably and openly, knowing that the conversation leaves no permanent digital record, allowing the focus to remain on care.

Conclusion

Secure clinical notes are not achieved by a single feature, but through a unified system built on a foundational principle: the greatest threat to data is the data you keep. Twofold thus keeps clinical notes safe through a layered security system with a no audio retention policy, end‑to‑end encryption, and administrative controls, which come together through a commitment to privacy by design. This system does more than meet compliance standards; it promotes the trust essential for effective care.

References

Alder, S. (2026). What is Considered PHI under HIPAA? Updated for 2026. The HIPAA Journal.

Alder, S. (2026, January 2). Largest Healthcare Data Breaches of 2025. The HIPAA Journal.

Stanger, K. (2023, October 19). Business Associate Agreements: Requirements and Suggestions. Holland & Hart LLP.

FAQ

Frequently asked questions

  • Why is storing audio considered a security risk in clinical documentation?

    An audio file contains far more sensitive, unfiltered information than a final clinical note, making it a high‑value target. Retaining it violates the "minimum necessary" HIPAA data principle and introduces significant breach risk.

    • Risk Magnitude: A single audio file is a dense, complete record that can include irrelevant but highly personal disclosures, emotional cues, and tangential stories.
    • Consent: Requiring consent for audio recording can alter the therapeutic dynamic, potentially inhibiting patient openness.
    • Compliance Burden: Securing an audio archive necessitates complex, perpetual data management policies for encryption, access, and disposal.

  • How does not saving audio reduce long-term data exposure and liability?

    It eliminates an entire category of sensitive data that you are responsible for protecting in perpetuity, following the security principle of data minimization.

    • Minimizes Breach Risk: Hackers cannot breach or steal data that does not exist.
    • Simplifies Compliance: Reduces the scope of data requiring encryption, access logging, and audits.
    • Removes Future Liability: Ensures there is no audio archive to be accidentally exposed or mishandled years later.
  • What safeguards matter most for keeping clinical notes safe after a session ends?

    Security is most effective when layered. After audio deletion, these safeguards protect the structured note:

    • Encryption at Rest: AES-256 encryption renders stored notes unreadable without proper keys.
    • Strict Access Controls & Audit Logs: Role-Based Access Control (RBAC) limits who can see notes, and immutable logs track all access.
    • Secure Infrastructure & Legal Frameworks: HIPAA-compliant hosting and a signed Business Associate Agreement (BAA) provide the foundation.

    See this real-world HIPAA checklist for reference on clinical note security.


  • Does Twofold ever retain raw audio or voice recordings at any stage?

    No. Twofold is architecturally designed to never save audio data. The system operates on a "process to text, then delete" principle:

    • Audio is processed in real-time.
    • The raw audio is permanently deleted immediately after the text draft is generated.
    • No audio is written to disk, stored in a database, or kept in backups.
  • How does Twofold’s no-audio-storage approach affect clinical accuracy and trust?

    It creates a more secure foundation for both. The AI is tuned to extract and structure clinically relevant information, producing a consistent, compliant draft for clinician review.

    • Clinical Utility: The output is a professional note, not a verbatim transcript, filtering irrelevant detail while capturing essential elements.
    • Building Trust: This design allows for more open dialogue, as patients and clinicians know the raw conversation is not permanently recorded/stored. Trust is built into the tool's architecture.
    • Best Practice: Accuracy is highest when clinicians use the AI-generated note as a reviewed and edited first draft, maintaining their role as the final clinical authority.

More

Continue reading