Docira

What we collect

We collect: your account email and (optionally) name; the documents you submit to the API; the parsed output we return; usage metadata (page counts, timestamps, model selection) for billing and observability; and standard server logs (IP, user-agent, request path).

How we use it

To process your documents, return parsed results, bill usage, and operate the service. We do not sell your data and we do not use your documents to train models.

Where it lives

Documents and parsed outputs are cached in encrypted-at-rest storage (Neon Postgres on AWS us-east-2; S3 if enabled) for 30 days, then deleted. Vision-model providers process documents in transit per their own privacy policies; on Scale and Enterprise plans you may route through your own provider keys to keep data within your existing trust boundary.

HIPAA / PHI

The Free, Starter, Pro, and Scale plans should not be used to process Protected Health Information (PHI). The Enterprise plan includes a Business Associate Agreement (BAA) and the appropriate controls for HIPAA workloads — contact hello@docira.io to provision an Enterprise account.

Your rights

You can request export or deletion of your account data at any time by emailing hello@docira.io. We will respond within 30 days.

Contact