Lantern
Effective: April 11, 2026  ·  Last updated: April 11, 2026

Data Processing Disclaimer

This Data Processing Disclaimer explains how Lantern (cliniclantern.com), operated by Clinic Lantern, handles clinic data that you upload to the Service.

How Your Data Is Processed

Lantern is built on a browser-first architecture. When you upload data files (CSV or Excel exports from Jane App or other practice management software), all processing happens entirely within your web browser using client-side JavaScript.

This means:

  • Your clinic data never leaves your device. It is not transmitted over the internet to Lantern's servers or any third-party service.
  • Your data is stored in your browser's local storage, not in any cloud database or server.
  • Lantern's servers have no access to your clinic data — we cannot view, retrieve, or recover it.

Automatic De-identification

When data is imported, Lantern automatically applies de-identification measures inside your browser, before any data is written to local storage:

  • Whitelist filtering. Lantern only retains columns from a known list of operational fields (e.g., appointment date, status, fee, clinician, treatment type). Columns that are not on the list — including custom fields — are dropped on import.
  • Explicit removal of direct identifiers. Client names, email addresses, phone numbers, dates of birth, mailing addresses, emergency contact details, and health card numbers are explicitly deleted during import, even when they appear in the source file.
  • Internal anonymized Client ID. Each client is assigned a generated identifier (e.g., "Client_0001") that is used only to group the client's appointments together for analytics. The original name and Jane App's patient identifier are not stored alongside it.
  • Free-text scrubbing. Free-text fields from inquiry and consult tracker uploads are scanned for personal information patterns (emails, phone numbers, postal codes, ZIP codes, dates of birth, health card numbers) and replaced with placeholder tokens before storage. The consult tracker's "client id" column is intentionally not stored at all.

This de-identification occurs within your browser before the data is stored in local storage. No automated de-identification system is perfect — you remain responsible for ensuring you are authorized to upload and process the source files.

What Lantern's Servers Handle

Lantern's servers are responsible only for:

  • User authentication — verifying your identity when you sign in (via Supabase).
  • Subscription management — processing payments and managing your billing (via Stripe).
  • Serving the application — delivering the Lantern web application code to your browser.

No clinic data, patient information, appointment records, or financial details from your uploaded files are ever processed by or transmitted to our servers.

Your Responsibilities

While Lantern is designed to protect the privacy of the data you upload, you remain responsible for:

  • Compliance with applicable privacy laws. You must ensure that your use of Lantern — including uploading data exports — complies with PIPEDA, PHIPA (Ontario), and any other applicable federal or provincial privacy legislation.
  • Authorization. You must have the right and authorization to use any data you upload.
  • Device security. Since your data is stored in your browser, you are responsible for securing the device(s) you use to access Lantern. This includes using strong passwords, keeping your operating system and browser up to date, and restricting physical access to your device.
  • Data backups. Lantern stores data in browser local storage, which can be cleared by browser updates, cache clearing, or device changes. Always retain your original data export files.

Data Deletion

You can delete all clinic data stored by Lantern at any time by:

  • Using the "Clear All Data" button within the application.
  • Clearing your browser's local storage or site data for cliniclantern.com.

Once deleted, clinic data cannot be recovered by you or by Lantern.

Limitations

  • Accuracy. Analytics and metrics generated by Lantern are based on the data you provide. Lantern does not independently verify the accuracy or completeness of uploaded data. You should not rely solely on Lantern's outputs for clinical, legal, financial, or regulatory decisions.
  • Not a regulated service. Lantern is an analytics tool. It is not a healthcare service, electronic health record, or clinical decision-support system. It does not store or manage patient health records.
  • Browser compatibility. Local storage capacity and behavior may vary between browsers and devices. We recommend using a modern, up-to-date browser (Chrome, Firefox, Safari, or Edge).

PHIPA and PIPEDA Considerations

Lantern's architecture is designed to support compliance with Canadian health privacy legislation:

  • No personal health information is transmitted to or stored on Lantern's servers.
  • Automatic de-identification reduces the risk of unauthorized disclosure.
  • Data remains under your control on your own device at all times.

However, as the custodian of the personal health information in your clinic, you are ultimately responsible for determining whether your use of Lantern is consistent with your obligations under PHIPA, PIPEDA, and any other applicable laws. If you are uncertain, we recommend consulting with a privacy professional.

Contact Us

If you have questions about how Lantern processes data, contact us at:

Clinic Lantern Email: support@cliniclantern.com Website: cliniclantern.com

Questions? Email support@cliniclantern.com.