delgotzQ: Is Amical suitable for HIPAA-sensitive use, and do you offer a Business Associate Agreement (BAA)?
Since Amical is open source and supports local on-device transcription, I'd like to understand its fit for handling sensitive health information (PHI). Specifically: (1) When using local Whisper models, is any audio or transcript data ever sent to your servers or third parties? (2) Do you offer a Business Associate Agreement (BAA) for HIPAA-covered use cases, or is compliance intended to be achieved through local-only deployment? (3) Is there any security or privacy documentation we can review?
Naomi_Amical
Jun 7, 2026A: Hi! Yes local on device transcription is entirely private and may be used for the use cases you mentioned.
Regarding your questions:
1. No audio or transcription is sent to us or anyone over the network when using the local models
2. We do not offer BAA for HIPAA for cloud just yet, we are in the process of setting this up. In the meantime local models provide the privacy you may need.
3. Yes we have the policies on our website amical.ai and also provide the link to our code to audit since we are open source.