Private Clinical Notes for Therapists & Medical Professionals

How therapists and medical professionals can write clinical summaries and session transcripts locally on Mac without violating HIPAA or patient privacy.

Published on 2026-06-02

Writing clinical notes, SOAP notes, and patient summaries is one of the most time-consuming aspects of healthcare and psychotherapy. While AI transcription can save hours of work, standard cloud-based AI tools (which store audio and text records on their servers) present severe patient privacy and HIPAA compliance risks.

justREC provides a local-first macOS solution that allows therapists, psychologists, and medical professionals to transcribe and summarize sessions securely.

The Privacy Challenge in Clinical Notes

Most AI meeting assistants and transcribers operate on a cloud-first model:

  1. Your patient's voice recording is uploaded to their cloud servers.
  2. The transcript and summary are stored in their central database.
  3. The vendor may use this data to train their models unless you opt out.

Under regulations like HIPAA (in the US) and GDPR (in Europe), uploading protected health information (PHI) to non-compliant cloud databases without a Business Associate Agreement (BAA) is a serious violation.

How justREC Protects Patient Privacy

justREC is designed from the ground up for absolute data sovereignty, making it an ideal companion for clinical environments:

1. Local-First Storage (No justREC Cloud)

justREC does not have a cloud backend. When you record a session, the raw audio, transcript, and summaries are saved in a folder you choose on your Mac. No data is stored or cached on justREC's servers. You can keep these folders on an encrypted local drive.

2. Direct API Integration (BYOK)

justREC uses your own API keys to communicate directly with OpenAI or Anthropic.

  • Both OpenAI and Anthropic state in their API terms that data sent via the API is never used to train their models.
  • They offer BAAs (Business Associate Agreements) and zero-data-retention options for developer accounts handling PHI.
  • By cutting out the middleman, your patient data goes directly from your Mac to the API provider, encrypted in transit, and is deleted from their servers according to your API settings.

3. File-Based Organization for Patient Files

Organize your sessions by patient ID or project code using justREC's local folders. Exports can be saved directly in standard Markdown, PDF, or DOCX formats, making it easy to copy clinical summaries into your existing Electronic Health Record (EHR) system.

Creating Clinical SOAP Notes with Custom Templates

The Lifetime version of justREC supports custom summary templates. You can define exact prompts for the AI, such as:

You are a clinical transcription assistant. Analyze the transcript and generate a standard SOAP Note:
- S (Subjective): Patient's report of symptoms, feelings, and progress.
- O (Objective): Clinical observations during the session.
- A (Assessment): Your clinical analysis of the patient's status.
- P (Plan): Future treatment steps and homework assignments.
Do not use names or identifiable details; refer to the client as "The Patient".

Compliance and Secure Setup Checklist

If you are using justREC in a clinical or medical environment, we recommend the following setup:

  1. Enable FileVault: Ensure your Mac's hard drive is encrypted using macOS FileVault.
  2. Use a BAA-Supported API Account: Set up a developer account with OpenAI or Anthropic under their healthcare terms, and request a BAA.
  3. Use Patient Codes: Avoid naming local folders after patients; use secure IDs or codes to organize files on your drive.