Briefly Legal Documentation

Version: 1.0 Last Updated: 21 February 2026 Effective Date: 21 February 2026

Table of Contents

1. Privacy Policy
   • Introduction & Contact
   • About Us
   • Information We Collect
   • How We Collect Information
   • How We Use Information
   • Legal Basis for Processing
   • Data Sharing & Third Parties
   • International Data Transfers
   • Data Security
   • Data Retention
   • Your Rights
   • Cookies & Tracking
   • Children's Privacy
   • Changes to Policy
   • Contact & Complaints
2. Terms of Service
   • Agreement to Terms
   • Service Description
   • Account Registration
   • Subscription & Payments
   • User Obligations
   • Intellectual Property
   • AI-Generated Content Disclaimer
   • Medical Disclaimer
   • Limitation of Liability
   • Indemnification
   • Termination
   • Dispute Resolution
   • Governing Law
   • General Provisions
3. AI & Medical Disclaimer
4. Acceptable Use Policy
5. Cookie Notice
6. Jurisdiction-Specific Information

Privacy Policy

1. Introduction & Contact

This Privacy Policy explains how Briefly collects, uses, stores, and protects your personal information when you use our services. We are committed to protecting your privacy and handling your data with transparency and care.

Data Controller: Cirakas Healthcare Limited Company Number: 3830960 | NZBN: 9429030663275 Suite 3, 586 Victoria Street, Hamilton Central, Hamilton 3204, New Zealand

Contact Details: Email: privacy@briefly.health Address: Suite 3, 586 Victoria Street, Hamilton Central, Hamilton 3204, New Zealand

Privacy Enquiries: Email: privacy@briefly.health

This policy applies to both Briefly for Specialists and Briefly for Patients. Where requirements differ between these services, we clearly indicate this throughout.

2. About Us

Briefly provides AI-powered clinical documentation and patient communication tools. Our services include:

• Briefly for Specialists: An AI-assisted clinical documentation platform that helps healthcare professionals create accurate, efficient clinical letters and notes from consultation recordings and uploaded documents.

• Briefly for Patients: A patient-facing application that helps patients record, understand, and remember their healthcare consultations through simplified summaries and action items.

We are headquartered in New Zealand and operate globally, with a commitment to maintaining the highest standards of data protection regardless of where our users are located.

3. Information We Collect

For Specialists (Briefly for Specialists)

For Patients (Briefly for Patients)

Information We Do NOT Collect

• We do not store any clinical data permanently. All recordings, transcripts, letters, and summaries are automatically deleted after 30 days.
• We do not sell your personal information to third parties.
• We do not use your health information for advertising purposes.
• We do not use identifiable health information for AI model training without explicit consent.

4. How We Collect Information

We collect information in the following ways:

Directly from you:

• When you create an account
• When you record consultations or upload documents
• When you enter patient information or clinical notes
• When you provide feedback or contact support
• When you update your preferences or settings

Automatically:

• Device and browser information when you access our services
• Usage patterns and interaction with features
• Error logs and diagnostic information
• Cookies and similar technologies (see Cookie Notice)

From third parties:

• Authentication information from our authentication provider
• Payment status from our payment processor
• Email delivery information from our email service provider

5. How We Use Information

Primary Purposes

Secondary Purposes (With Consent)

• Service improvement: Analysing anonymised, aggregated data to improve our AI models and user experience
• Research: Contributing to healthcare quality improvement (de-identified data only)
• Marketing: Sending information about new features or services (you can opt out at any time)

What We Do NOT Use Information For

• We do not use your health information for advertising or marketing of third-party products
• We do not share identifiable patient information with any third party for their marketing purposes
• We do not make automated decisions about your healthcare

6. Legal Basis for Processing

Our legal basis for processing your information depends on your jurisdiction:

New Zealand (Primary Jurisdiction)

Under the Privacy Act 2020 and Health Information Privacy Code 2020, we process your information based on:

• Consent: Where you have provided explicit consent
• Contract: Where processing is necessary to provide our services
• Legal obligation: Where required by law
• Legitimate interest: Where we have a legitimate business need that does not override your privacy rights

Australia

Under the Privacy Act 1988 and Australian Privacy Principles:

• We collect only information that is reasonably necessary for our functions
• We take reasonable steps to ensure accuracy and security
• We comply with all APP requirements for sensitive information (including health information)

European Economic Area & United Kingdom

Under UK GDPR and EU GDPR, our legal bases include:

• Consent (Article 6(1)(a)) for optional processing
• Contract (Article 6(1)(b)) for service delivery
• Legal obligation (Article 6(1)(c)) where required by law
• Legitimate interests (Article 6(1)(f)) where we have compelling business reasons

For health data (special category data), we rely on:

• Explicit consent (Article 9(2)(a))
• Healthcare purposes (Article 9(2)(h)) where applicable

Canada

Under PIPEDA (and applicable provincial laws like PHIPA):

• We obtain meaningful consent for collection, use, and disclosure
• We limit collection to what is necessary
• We use information only for purposes identified at collection

United States

We comply with:

• CCPA/CPRA (California): Providing required disclosures and honouring consumer rights
• State health privacy laws: Where applicable to consumer health data
• Note: Briefly is not a HIPAA covered entity, but implements equivalent security safeguards

7. Data Sharing & Third Parties

Service Providers (Data Processors)

We use carefully selected third-party service providers to deliver our services. All processors are bound by data processing agreements and must maintain appropriate security measures.

Your data is primarily stored in Australia, with some processing services operating globally. All processors are bound by data processing agreements.

When We Share Information

We may share your information:

• With your consent: When you explicitly authorise sharing
• For service delivery: With our data processors as described above
• For patient communication (Specialists): When you send clinical letters to patients or other providers
• For caregivers (Patients): When you share summaries with authorised family members
• For legal compliance: When required by law, court order, or regulatory authority
• For safety: To protect the rights, safety, or property of our users or the public
• Business transfers: In connection with a merger, acquisition, or sale of assets (with notice to you)

What We Do NOT Share

• We do not sell personal information
• We do not share identifiable health information for third-party marketing
• We do not share information with employers, insurers, or other entities without your explicit consent

8. International Data Transfers

Primary Data Storage

Your data is primarily stored and processed in Australia using secure cloud infrastructure.

Cross-Border Transfers

Some of our service providers operate globally. When your data is transferred outside your jurisdiction, we ensure appropriate safeguards are in place:

Data Localisation

For users in certain jurisdictions, we can provide data localisation options. Contact privacy@briefly.health for more information.

9. Data Security

We implement comprehensive security measures to protect your information:

Technical Safeguards

• Encryption at Rest: All patient data encrypted using industry-standard encryption
• Encryption in Transit: All data transmission is encrypted
• Secure Search: Patient searches use privacy-preserving techniques
• De-identification for AI: Patient identifiers removed before AI processing
• Access Controls: Role-based access with practice-level data isolation
• Audit Logging: All access to health information is logged
• Secure Authentication: Multi-factor authentication available

Operational Safeguards

• Regular security assessments and penetration testing
• Employee training on data protection and privacy
• Incident response procedures
• Vendor security assessments

Certifications & Compliance

We maintain compliance with:

• New Zealand Privacy Act 2020 and Health Information Privacy Code 2020
• Australian Privacy Principles
• UK GDPR and Data Protection Act 2018
• ISO 27001 principles (formal certification in progress)

Audio Handling

Important: All audio recordings and clinical data are automatically deleted after 30 days. The process is:

1. Audio is uploaded securely to our servers
2. Processed for transcription
3. Automatically deleted after 30 days (regardless of approval or export status)

Both audio and transcripts follow the same 30-day retention policy. Exporting creates your backup copy but does NOT prevent deletion from Briefly.

10. Data Retention

Important: Briefly is a clinical documentation and health understanding tool, NOT a permanent medical records system. All clinical data is automatically deleted after 30 days. This is by design to protect your privacy.

Retention Periods

Export Does NOT Prevent Deletion

Important: Exporting your data creates YOUR backup copy. It does NOT prevent automatic deletion from Briefly after 30 days. You must export or archive important documents to your own systems (EMR, cloud storage, etc.) before the 30-day retention period expires.

Deletion Reminders

We send reminders before automatic deletion:

Account Deletion

You can request account deletion at any time. Upon request:

• We initiate a 30-day grace period (in case of accidental deletion)
• After 30 days, all personal data is permanently deleted
• Some data may be retained where legally required (e.g., audit logs, financial records)

Data Export

Before deletion, you can export your data. See Your Rights for details.

11. Your Rights

Depending on your location, you have various rights regarding your personal information:

Rights for All Users

Additional Rights (EU/UK GDPR)

• Restriction: Request restriction of processing
• Portability: Receive your data in a structured, machine-readable format
• Object: Object to processing based on legitimate interests
• Automated Decisions: Not be subject to solely automated decisions with legal effects

Additional Rights (California CCPA/CPRA)

• Know: Know what personal information is collected and how it's used
• Delete: Request deletion of personal information
• Opt-Out: Opt out of sale or sharing (note: we do not sell personal information)
• Non-Discrimination: Not be discriminated against for exercising rights

Additional Rights (Canada)

• Access: Access your personal information held by us
• Challenge Compliance: Challenge our compliance with privacy principles
• Withdraw Consent: Subject to legal or contractual restrictions

How to Exercise Your Rights

1. Self-service: Many rights can be exercised through your account settings
2. Email: Contact privacy@briefly.health with your request
3. Response time: We respond to requests within 30 days (or as required by local law)
4. Verification: We may need to verify your identity before processing requests

Data Export

You can export your data at any time:

• Specialists: Export clinical letters, patient records, and transcripts via account settings
• Patients: Export consultation summaries and action items via account settings

Exports are available in commonly used formats.

12. Cookies & Tracking

We use cookies and similar technologies. See our full Cookie Notice for details.

Summary:

• Essential cookies: Required for service functionality (always active)
• Analytics cookies: Help us understand how you use our services (opt-in/opt-out available)
• We do not use advertising or tracking cookies for third-party marketing

13. Children's Privacy

Briefly for Specialists is intended for licensed healthcare professionals only. We do not knowingly collect information from anyone under 18 years of age.

Briefly for Patients is intended for adults. Users must be 18 or older to create an account. A parent or guardian may use the service on behalf of a minor patient with appropriate consent.

If we learn that we have collected personal information from a child without verification of parental consent, we will delete that information promptly.

14. Changes to Policy

We may update this Privacy Policy from time to time. When we make changes:

• Material changes: We will notify you by email and/or prominent notice in our services at least 30 days before the changes take effect
• Minor changes: We will update the "Last Updated" date at the top of this policy

Your continued use of our services after changes take effect constitutes acceptance of the updated policy.

15. Contact & Complaints

Contact Us

For any privacy-related questions or concerns:

Email: privacy@briefly.health Address: Suite 3, 586 Victoria Street, Hamilton Central, Hamilton 3204, New Zealand

We aim to respond to all enquiries within 5 business days.

Complaints

If you are not satisfied with our response, you have the right to lodge a complaint with the relevant supervisory authority:

Terms of Service

1. Agreement to Terms

By accessing or using Briefly ("Service"), you agree to be bound by these Terms of Service ("Terms"). If you do not agree to these Terms, you may not use the Service.

These Terms constitute a legally binding agreement between you and Cirakas Healthcare Limited ("Briefly", "we", "us", "our").

Please read these Terms carefully, including the Medical Disclaimer, Limitation of Liability, and Dispute Resolution sections.

2. Service Description

Briefly for Specialists

Briefly for Specialists is a clinical documentation platform that provides:

• Audio transcription: Recording and transcribing clinical consultations using AI technology
• Document processing: Extracting information from uploaded clinical documents (referral letters, test results, imaging reports)
• AI-assisted letter generation: Creating draft clinical letters and notes based on transcripts and documents
• Practice management: Managing patient records, colleagues, and practice settings
• Literature integration: Optional access to clinical references during letter drafting
• Export capabilities: Exporting letters to practice management systems, cloud storage, or email

Briefly for Patients

Briefly for Patients is a health literacy and consultation management platform that provides:

• Consultation recording: Recording healthcare appointments with clinician consent
• AI-generated summaries: Creating simplified summaries of consultations at appropriate reading levels
• Action item tracking: Identifying and tracking follow-up tasks from consultations
• Secure sharing: Sharing summaries with caregivers or family members
• Appointment preparation: Tools to prepare questions for upcoming appointments

Service Availability

We strive to maintain high availability but do not guarantee uninterrupted service. Scheduled maintenance will be communicated in advance where possible.

3. Account Registration

Eligibility

Briefly for Specialists:

• You must be a registered healthcare professional with appropriate credentials in your jurisdiction
• You must be at least 18 years of age
• You must have the legal authority to enter into these Terms

Briefly for Patients:

• You must be at least 18 years of age
• If using the service for a minor or dependent, you must have appropriate legal authority

Account Responsibilities

You are responsible for:

• Providing accurate and complete registration information
• Maintaining the confidentiality of your login credentials
• All activities that occur under your account
• Notifying us immediately of any unauthorised access

You may not:

• Share your account credentials with others
• Use another person's account without permission
• Create multiple accounts for the same person
• Register with false or misleading information

Account Verification

We may require verification of:

• Your email address
• Your phone number
• Your professional credentials (for Specialists)

Failure to complete verification may limit your access to certain features or result in account suspension.

4. Subscription & Payments (Specialists)

Subscription Plans

Briefly offers various subscription tiers for both Specialists and Patients, including free and paid options. Current plans and pricing are available on our website.

Payment Terms

• Subscriptions are billed in advance on a monthly or annual basis
• Payment is processed securely using industry-standard methods
• Prices are displayed in your local currency where available
• All prices are exclusive of applicable taxes unless stated otherwise

Cancellation & Refunds

• You may cancel your subscription at any time through account settings
• Cancellation takes effect at the end of the current billing period
• We do not provide refunds for partial billing periods
• You retain access until the end of your paid period

Price Changes

We may change subscription prices with at least 30 days' notice. Price changes will not affect your current billing period.

5. User Obligations

All Users

You agree to:

• Use the Service lawfully and in accordance with these Terms
• Respect the intellectual property rights of Briefly and others
• Not attempt to circumvent security measures or access restrictions
• Not interfere with the proper functioning of the Service
• Not use the Service to transmit malware or malicious code
• Comply with all applicable laws and regulations

Specialist Obligations

As a healthcare professional using Briefly for Specialists, you additionally agree to:

Professional Standards:

• Maintain current and valid professional registration in your jurisdiction
• Use the Service in accordance with your professional codes of conduct and ethics
• Comply with all applicable healthcare regulations and standards

Patient Consent:

• Obtain appropriate patient consent before recording consultations
• Document consent as required by your jurisdiction and professional standards
• Inform patients about how their information will be used
• Respect patient decisions to decline recording

Clinical Responsibility:

• Review and verify all AI-generated content before use
• Accept full responsibility for the accuracy and completeness of final clinical documentation
• Not rely solely on AI outputs for clinical decision-making
• Ensure clinical letters accurately reflect your professional assessment

Data Protection:

• Handle patient information in accordance with applicable privacy laws
• Use appropriate security measures when accessing the Service
• Report any suspected data breaches promptly

Appropriate Use:

• Use the Service only for legitimate clinical documentation purposes
• Not use the Service to generate false or misleading clinical records
• Not attempt to manipulate AI outputs to produce inappropriate content

Patient Obligations

As a user of Briefly for Patients, you agree to:

Consent & Recording:

• Obtain your healthcare provider's consent before recording consultations
• Comply with applicable laws regarding audio recording
• Use recordings only for your personal health management

Understanding:

• Recognise that AI-generated summaries are aids to understanding, not medical advice
• Discuss any concerns or questions with your healthcare provider
• Not use the Service as a substitute for professional medical advice

Emergency Situations:

• Not use the Service for medical emergencies
• Call emergency services (111 in NZ, 000 in AU, 999 in UK, 911 in US/Canada) for emergencies

6. Intellectual Property

Our Intellectual Property

The Service, including its software, design, features, and content (excluding user content), is owned by Cirakas Healthcare Limited and protected by intellectual property laws. You may not:

• Copy, modify, or distribute our software or content
• Reverse engineer, decompile, or disassemble any part of the Service
• Use our trademarks without written permission
• Create derivative works based on our Service

Your Content

You retain ownership of content you create or upload ("Your Content"), including:

• Clinical letters and notes
• Patient records you create
• Recordings and transcripts
• Documents you upload

By using the Service, you grant us a limited licence to process Your Content as necessary to provide the Service.

AI-Generated Content

Content generated by our AI systems based on Your Content is:

• Your responsibility to review, edit, and approve
• Subject to your ownership once finalized
• Not guaranteed to be accurate or complete

7. AI-Generated Content Disclaimer

IMPORTANT: PLEASE READ CAREFULLY

The AI features in Briefly, including transcription and letter generation, are tools to assist you. They are not substitutes for professional judgment.

Limitations of AI

• AI-generated content may contain errors, omissions, or inaccuracies
• AI cannot understand clinical context the way a trained professional can
• AI may misinterpret audio, especially with accents, technical terms, or poor audio quality
• AI cannot verify the accuracy of information provided to it

Your Responsibility

For Specialists:

• You MUST review and verify all AI-generated content before use
• You MUST make corrections as necessary
• You bear full responsibility for any clinical documentation you sign or send
• AI outputs are suggestions, not final documents

For Patients:

• AI summaries are aids to help you understand and remember consultations
• Summaries may not capture everything discussed
• Always clarify any uncertainties with your healthcare provider
• Do not make medical decisions based solely on AI summaries

No Reliance

Do not rely on AI-generated content without independent verification. Briefly is not responsible for any consequences arising from unverified use of AI outputs.

8. Medical Disclaimer

CRITICAL: THIS SECTION CONTAINS IMPORTANT LIMITATIONS

Not Medical Advice

Briefly does NOT provide medical advice, diagnosis, or treatment recommendations.

The Service is a documentation and communication tool. It does not:

• Diagnose medical conditions
• Recommend treatments
• Provide clinical decision support
• Replace the judgment of qualified healthcare professionals

Specialist Users

For healthcare professionals:

• Briefly assists with administrative tasks, not clinical decisions
• All clinical judgments must be made by you, the licensed professional
• AI outputs are drafts for your review, not finished medical records
• You remain fully responsible for patient care decisions

Patient Users

For patients:

• Briefly helps you understand and remember consultations
• Summaries are simplified explanations, not comprehensive medical records
• Always discuss health concerns with your healthcare provider
• Do not delay seeking medical care based on anything in the Service

Emergency Warning

Briefly is NOT for medical emergencies.

If you are experiencing a medical emergency:

• In New Zealand: Call 111
• In Australia: Call 000
• In United Kingdom: Call 999
• In United States/Canada: Call 911

No Practitioner-Patient Relationship

Use of Briefly does not create a practitioner-patient relationship between you and Briefly or its staff.

9. Limitation of Liability

Disclaimer of Warranties

THE SERVICE IS PROVIDED "AS IS" AND "AS AVAILABLE" WITHOUT WARRANTIES OF ANY KIND, WHETHER EXPRESS, IMPLIED, OR STATUTORY, INCLUDING BUT NOT LIMITED TO WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, AND NON-INFRINGEMENT.

We do not warrant that:

• The Service will be uninterrupted or error-free
• AI outputs will be accurate or complete
• The Service will meet your specific requirements
• Defects will be corrected

Limitation of Liability

TO THE MAXIMUM EXTENT PERMITTED BY LAW:

Cirakas Healthcare Limited SHALL NOT BE LIABLE FOR:

• Any indirect, incidental, special, consequential, or punitive damages
• Loss of profits, data, use, or goodwill
• Any damages arising from clinical decisions or patient care
• Any damages arising from reliance on AI-generated content
• Any damages exceeding the amounts paid by you in the 12 months preceding the claim

THIS LIMITATION APPLIES TO:

• Breach of contract
• Negligence
• Strict liability
• Any other legal theory

Exceptions

Some jurisdictions do not allow limitation of liability for certain damages. In such jurisdictions, our liability is limited to the maximum extent permitted by law.

New Zealand Consumer Guarantees

If you are a consumer under the Consumer Guarantees Act 1993 (NZ), nothing in these Terms limits your rights under that Act.

Australian Consumer Law

If you are a consumer under the Australian Consumer Law, nothing in these Terms limits your rights that cannot be excluded under that law.

10. Indemnification

You agree to indemnify, defend, and hold harmless Cirakas Healthcare Limited, its officers, directors, employees, and agents from and against any claims, liabilities, damages, losses, and expenses (including reasonable legal fees) arising out of or related to:

• Your use of the Service
• Your violation of these Terms
• Your violation of any applicable law or regulation
• Your violation of any third party's rights
• Clinical decisions you make based on or related to the Service
• Patient care you provide
• Your content or data you submit to the Service

This indemnification obligation survives termination of these Terms.

11. Termination

Termination by You

You may terminate your account at any time by:

• Using the account deletion feature in settings
• Contacting support@briefly.health

Termination by Us

We may suspend or terminate your access:

• For violation of these Terms
• For conduct that we reasonably believe is harmful to other users or the Service
• For extended periods of inactivity
• If required by law
• If we discontinue the Service

Effect of Termination

Upon termination:

• Your right to access the Service ends immediately
• Your data will be handled according to our Privacy Policy and Data Retention policies
• Provisions that should survive termination will remain in effect (including liability limitations, indemnification, and dispute resolution)

12. Dispute Resolution

Informal Resolution

Before initiating formal proceedings, you agree to contact us at legal@briefly.health and attempt to resolve any dispute informally for at least 30 days.

Governing Law

These Terms are governed by the laws of New Zealand, without regard to conflict of laws principles.

Jurisdiction

Subject to the informal resolution requirement above, any disputes shall be resolved exclusively in the courts of New Zealand.

Class Action Waiver

To the extent permitted by law, you agree that any disputes will be resolved on an individual basis and not as part of a class, consolidated, or representative action.

13. Governing Law

These Terms are governed by and construed in accordance with the laws of New Zealand.

Jurisdiction-Specific Provisions

If you are located in:

• Australia: These Terms do not exclude, restrict, or modify any consumer rights under the Australian Consumer Law.
• European Union/UK: Nothing in these Terms affects your statutory rights as a consumer.
• United States: To the extent any provision conflicts with applicable state law, that state law shall apply to that provision only.
• Canada: These Terms comply with applicable federal and provincial privacy laws.

14. General Provisions

Entire Agreement

These Terms, together with our Privacy Policy and any other policies referenced herein, constitute the entire agreement between you and Cirakas Healthcare Limited regarding the Service.

Severability

If any provision of these Terms is found unenforceable, that provision shall be modified to the minimum extent necessary, and the remaining provisions shall continue in full force and effect.

Waiver

Our failure to enforce any provision of these Terms shall not constitute a waiver of that provision or any other provision.

Assignment

You may not assign or transfer these Terms without our written consent. We may assign our rights and obligations without restriction.

Force Majeure

We shall not be liable for any failure to perform due to causes beyond our reasonable control, including natural disasters, war, terrorism, pandemics, or infrastructure failures.

Notices

We may provide notices to you via email, in-app notification, or posting on our website. You may provide notices to us at legal@briefly.health.

Relationship

These Terms do not create any partnership, joint venture, employment, or agency relationship between you and Cirakas Healthcare Limited.

AI & Medical Disclaimer

Last Updated: 21 February 2026

Nature of AI Assistance

Briefly uses artificial intelligence (AI) technology to:

• Transcribe audio recordings of consultations
• Extract information from clinical documents
• Generate draft clinical letters and notes
• Create simplified patient summaries

This AI technology, while advanced, has inherent limitations.

Important Limitations

AI Is Not Perfect

• AI-generated transcriptions may contain errors, especially with:

  • Accents and dialects
  • Medical terminology
  • Multiple speakers
  • Background noise
  • Low-quality audio

• AI-generated letters and summaries may:

  • Omit relevant information
  • Misinterpret clinical context
  • Include inaccurate statements
  • Fail to capture nuance

AI Is Not a Medical Professional

AI cannot:

• Diagnose conditions
• Recommend treatments
• Understand clinical context like a trained professional
• Replace medical judgment
• Provide medical advice

Not Medical Advice

BRIEFLY DOES NOT PROVIDE MEDICAL ADVICE.

All content generated by Briefly, including:

• Transcriptions
• Clinical letter drafts
• Patient summaries
• Action items

...is for informational and administrative purposes only. It is NOT medical advice.

Clinician Responsibility (Specialists)

If you are a healthcare professional using Briefly for Specialists:

1. YOU MUST REVIEW all AI-generated content before use
2. YOU MUST VERIFY accuracy and completeness
3. YOU MUST EDIT any errors or omissions
4. YOU BEAR RESPONSIBILITY for all final clinical documentation
5. YOU MAKE all clinical decisions—not the AI

The AI is your assistant. You are the professional.

Patient Understanding (Patients)

If you are using Briefly for Patients:

1. SUMMARIES ARE AIDS to help you understand and remember
2. SUMMARIES MAY MISS important details
3. ALWAYS ASK your healthcare provider to clarify anything unclear
4. DO NOT MAKE medical decisions based solely on AI summaries
5. SEEK PROFESSIONAL ADVICE for any health concerns

Accuracy Limitations

We strive for accuracy, but we cannot guarantee that AI outputs will be:

• 100% accurate
• Complete
• Free from errors
• Appropriate for your specific situation

Review Requirements

For Specialists

Before signing, sending, or using any AI-generated clinical content:

• Read the entire document carefully
• Verify all patient details are correct
• Confirm clinical information is accurate
• Check that the content reflects your professional assessment
• Make all necessary corrections
• Only then approve the document

For Patients

Before relying on any AI-generated summary:

• Read the summary carefully
• Note any areas of confusion or concern
• Compare with your own memory of the consultation
• Ask your healthcare provider to clarify anything unclear
• Do not act on medical information without professional confirmation

Reporting Issues

If you notice any issues with AI outputs, please report them:

Email: feedback@briefly.health

Please include:

• Description of the issue
• What you expected vs. what you received
• Any relevant context (without sharing identifiable patient information)

Your feedback helps us improve.

No Liability for AI Errors

Briefly is not liable for any consequences arising from:

• Errors in AI-generated content
• Reliance on AI outputs without proper verification
• Clinical decisions influenced by AI content
• Any use of AI outputs that was not properly reviewed

Acceptable Use Policy

Last Updated: 21 February 2026

Purpose

This Acceptable Use Policy ("AUP") sets out the rules for using Briefly. By using our Service, you agree to comply with this AUP.

Permitted Uses

Briefly may be used for:

Specialists

• Recording and transcribing clinical consultations with patient consent
• Generating draft clinical letters and notes
• Managing patient records within your practice
• Communicating clinical information to patients and other providers
• Professional development and quality improvement

Patients

• Recording healthcare consultations with clinician consent
• Understanding and remembering consultation content
• Tracking health-related action items
• Sharing summaries with authorised caregivers
• Preparing for healthcare appointments

Prohibited Conduct

You must NOT:

General Prohibitions

• Illegal Activity: Use the Service for any illegal purpose or in violation of any laws
• Harm to Others: Use the Service to harm, harass, threaten, or defraud others
• Unauthorised Access: Attempt to gain unauthorised access to any systems or data
• Security Interference: Interfere with or disrupt the security or integrity of the Service
• Malware: Transmit viruses, malware, or other malicious code
• Spam: Send unsolicited bulk communications
• False Identity: Misrepresent your identity or credentials
• Intellectual Property: Infringe on any intellectual property rights

AI-Specific Prohibitions

• AI Manipulation: Attempt to manipulate AI outputs to generate diagnoses, treatment recommendations, or other clinical advice
• Prompt Injection: Attempt to override AI instructions or extract training data
• Misleading Outputs: Use AI to generate false, misleading, or fraudulent content
• Fake Records: Create fictitious clinical records or consultations
• Testing with Real PHI: Use real patient information for testing or demonstration without appropriate consent

Healthcare-Specific Prohibitions

• Unconsented Recording: Record consultations without appropriate consent
• Credential Misrepresentation: Use the Service while misrepresenting your professional qualifications
• Inappropriate Clinical Use: Use AI outputs for clinical purposes without proper review
• Privacy Violations: Access, use, or disclose patient information improperly
• Regulatory Violations: Use the Service in violation of healthcare regulations

Content Standards

All content you create, upload, or generate must:

• Be accurate and not misleading
• Respect patient privacy and confidentiality
• Comply with professional standards and codes of conduct
• Not contain offensive, discriminatory, or inappropriate material
• Be lawfully obtained and used

AI Use Guidelines

When using AI features:

1. Provide Accurate Input: Ensure recordings and documents are genuine and accurate
2. Review All Outputs: Never use AI-generated content without review
3. Make Corrections: Edit any errors before using AI outputs
4. Maintain Professional Judgment: AI assists—you decide
5. Document Review: Keep records of your review and approval of AI content

Enforcement

We may take action if you violate this AUP, including:

• Warning you about the violation
• Temporarily suspending your access
• Permanently terminating your account
• Reporting illegal activity to authorities
• Taking legal action

We investigate reported violations and act at our discretion. We are not obligated to monitor all use but may do so.

Reporting Violations

To report a violation of this AUP:

Email: abuse@briefly.health

Please provide:

• Description of the violation
• Any evidence you have
• Your contact information

Cookie Notice

Last Updated: 21 February 2026

What Are Cookies?

Cookies are small text files stored on your device when you visit a website. They help the website remember your preferences and understand how you use the site.

Cookies We Use

Essential Cookies (Always Active)

These cookies are necessary for the Service to function and cannot be disabled.

Analytics Cookies (Optional)

These cookies help us understand how you use the Service so we can improve it.

Third-Party Cookies

Managing Cookies

Browser Settings

You can control cookies through your browser settings:

• Chrome: Settings > Privacy and Security > Cookies
• Firefox: Options > Privacy & Security > Cookies
• Safari: Preferences > Privacy > Cookies
• Edge: Settings > Privacy & Services > Cookies

Our Cookie Preferences

You can manage your cookie preferences:

• Through the cookie banner when you first visit
• Through account settings at any time

Impact of Disabling Cookies

• Essential cookies: Disabling these will prevent you from using the Service
• Analytics cookies: Disabling these will not affect functionality but limits our ability to improve the Service

Do Not Track

We respect Do Not Track (DNT) signals. If your browser sends a DNT signal, we will not load optional analytics cookies.

Contact

For questions about our use of cookies:

Email: privacy@briefly.health

Jurisdiction-Specific Information

New Zealand

Primary Jurisdiction

These Terms are governed by the laws of New Zealand. Users in New Zealand have rights under:

• Privacy Act 2020
• Health Information Privacy Code 2020
• Consumer Guarantees Act 1993
• Fair Trading Act 1986

Privacy Commissioner: privacy.org.nz

Australia

Users in Australia have rights under:

• Privacy Act 1988 and Australian Privacy Principles
• Australian Consumer Law

Nothing in these Terms excludes or limits consumer guarantees under Australian Consumer Law.

Privacy Regulator: oaic.gov.au

United Kingdom

Users in the UK have rights under:

• UK GDPR
• Data Protection Act 2018

Privacy Regulator: ico.org.uk

European Union

Users in the EEA have rights under GDPR. New Zealand has EU adequacy status, meaning personal data can flow freely from the EU to New Zealand.

Contact your local Data Protection Authority for complaints.

Canada

Users in Canada have rights under:

• PIPEDA (federal)
• Applicable provincial laws (e.g., PHIPA in Ontario, PIPA in BC/Alberta)

Privacy Regulator: priv.gc.ca

United States

Users in the US have rights under applicable state laws, including:

• CCPA/CPRA (California)
• State health data privacy laws

Briefly is not a HIPAA covered entity but implements equivalent security measures.

California Privacy Rights:

• Right to know what personal information is collected
• Right to delete personal information
• Right to opt out of "sale" (note: we do not sell personal information)
• Right to non-discrimination

Document History

Cirakas Healthcare Limited Suite 3, 586 Victoria Street, Hamilton Central, Hamilton 3204, New Zealand Company Number: 3830960 | NZBN: 9429030663275

For questions about these documents, contact: legal@briefly.health