AllCharts is built on a simple principle: your medical records should be readable by you and you alone. Not even we can decrypt them.
Your records are encrypted on your iPhone before they ever leave your device. Here's exactly how we protect your privacy.
When you add a record, AllCharts encrypts it on your iPhone using a unique encryption key that only you possess. The key never leaves your device.
Our servers receive and store only the encrypted ciphertext—mathematically unreadable scrambled data. Without your key, it's impossible to decrypt.
When you open AllCharts, your device downloads the encrypted data and decrypts it locally using your key. Your records never exist unencrypted on our servers.
When you share records, they're re-encrypted specifically for the recipient. Shares are bound to their email—forwarded links are useless to anyone else.
Your encryption key never reaches our servers. Without it, your records are mathematically impossible to decrypt—even for us.
We only see encrypted ciphertext. There's no readable data to sell, share with advertisers, or monetize. Your privacy is our business model.
Even in the unlikely event of a server breach, attackers would only get encrypted data they cannot decrypt. Your records remain secure.
Law enforcement or legal demands cannot compel us to hand over readable records because we don't have access to them. Zero-knowledge means zero access.
Delete your account at any time. All encrypted data is permanently removed from our servers within 30 days. No backups, no retention.
We don't use third-party analytics or tracking. Your usage patterns, browsing behavior, and health patterns stay private.
Beyond encryption, AllCharts includes multiple security features to protect your records.
Require biometric authentication to open the app. Your records stay locked even if someone has your phone.
A one-time recovery code (shown at signup) lets you regain access if you lose your device. Store it somewhere safe.
See all devices with access to your account. Sign out remotely or revoke access from lost devices.
Sign in with Apple, Google, or a strong passphrase. No SMS-based authentication—resistant to SIM-swap attacks.
Shared records are cryptographically bound to the recipient's email. Forwarded or leaked links are useless to others.
The app locks automatically after a period of inactivity. Customize the timeout in settings or disable it entirely.
For the security-minded: here's what's under the hood.
Medical records, document files, user notes, sharing permissions—all encrypted with your key before storage.
Your email address, account creation date, device identifiers (for multi-device sync), and encrypted-data metadata (file sizes, timestamps).
Unencrypted medical content, your encryption key, biometric data (Face ID is local), or usage analytics.
AllCharts relies on a minimal set of trusted infrastructure providers:
We believe in radical transparency about privacy. If you have questions about how we protect your data, we're here to answer.
Contact Privacy TeamJoin thousands who trust AllCharts to keep their medical records truly private.
Download AllCharts