1. Overview
These Terms & Conditions govern use of HIPAAList, a software service designed to help healthcare organizations organize HIPAA readiness work, staff training, documents, vendors, evidence, reminders, and related operational records.
By using HIPAAList, you agree to these terms for yourself as a user. If your organization has a separate written agreement with HIPAAList, that agreement controls where it conflicts with these online terms.
2. Not Legal, Regulatory, or Cybersecurity Advice
HIPAAList provides operational software, templates, source-backed references, reminders, and readiness guidance. HIPAAList does not provide legal advice, regulatory advice, cybersecurity consulting, audit services, certification, or professional services.
You are responsible for deciding whether any HIPAAList output, template, recommendation, or workflow is appropriate for your organization. Consult qualified legal, privacy, security, or other professional advisors when needed.
3. No Compliance or Security Guarantee
HIPAAList is intended to support organization and follow-through. Use of HIPAAList does not guarantee HIPAA compliance, regulatory compliance, successful audit results, breach prevention, security, or any particular legal outcome.
Readiness scores, status labels, suggested actions, and exports are internal progress tools. They are not legal determinations and should not be presented as proof that an organization is compliant or secure.
4. No PHI
HIPAAList is not intended to receive, store, process, or transmit Protected Health Information (PHI). Do not enter, upload, paste, or submit patient names, medical record numbers, dates of birth, clinical notes, screenshots containing patient details, or other PHI into HIPAAList.
If you believe PHI has been submitted to HIPAAList, stop using that content and contact HIPAAList support promptly so the issue can be reviewed.
5. Customer Content and Responsibilities
You retain responsibility for the information, records, documents, uploads, staff details, vendor details, and other content entered into HIPAAList. You are responsible for ensuring that content is accurate, appropriate, lawful, and does not include PHI.
You are also responsible for managing user access, choosing who may act in your workspace, reviewing generated materials before use, retaining records required by your organization, and making final operational decisions.
6. AI, Templates, and Suggested Content
HIPAAList may provide AI-assisted suggestions, document starters, recommended actions, source references, and other generated or template-based content. These materials are drafting and organization aids only.
Generated and template content may be incomplete, outdated, or not suited to your specific circumstances. Review and edit these materials before relying on them, approving them, sending them, or using them in your organization.
7. Acceptable Use
- Do not submit PHI or other data you are not authorized to provide.
- Do not use HIPAAList for unlawful, harmful, deceptive, abusive, or security-testing activity without written permission.
- Do not attempt to bypass authentication, authorization, billing, rate limits, audit controls, attachment restrictions, or other security controls.
- Do not upload malicious files, active content, or files that violate HIPAAList upload rules.
- Do not resell, copy, or commercially redistribute HIPAAList content except as part of your organization's normal internal readiness work.
8. Accounts, Organizations, and Access
HIPAAList uses organization workspaces. You are responsible for keeping account credentials secure and for promptly removing users who should no longer have access.
HIPAAList may rely on third-party authentication, billing, email, hosting, AI, analytics, storage, and infrastructure providers to operate the service.
9. Subscriptions and Payment
Paid access is billed according to the plan selected during checkout or any separate written agreement. Unless stated otherwise during checkout, subscription fees are charged in advance and may renew automatically.
Plan limits, prices, renewal terms, cancellation options, taxes, and payment processing may be handled through HIPAAList's billing provider. Access may be limited, suspended, or ended if payment fails or a subscription is cancelled.
10. Service Changes and Availability
HIPAAList may update, improve, add, remove, suspend, or discontinue features. HIPAAList will try to avoid unnecessary disruption, but the service may be unavailable at times for maintenance, outages, provider issues, security work, or other operational reasons.
11. Confidentiality and Security
HIPAAList uses reasonable administrative, technical, and organizational measures designed to protect workspace data. No online service can guarantee perfect security.
Because HIPAAList is not intended to receive PHI, you should not use HIPAAList as a system of record for patient information or as a replacement for systems designed and contracted to handle PHI.
12. Suspension and Termination
HIPAAList may suspend or terminate access if required by law, if payment is not made, if the service is misused, if these terms are violated, or if continued access creates a security, legal, or operational risk.
You may stop using HIPAAList at any time. Export features, where available, are intended to support portability of organization records.
13. Disclaimers
HIPAAList is provided on an "as is" and "as available" basis. To the fullest extent permitted by law, HIPAAList disclaims implied warranties, including warranties of merchantability, fitness for a particular purpose, title, non-infringement, and any warranties arising from course of dealing or usage of trade.
14. Limitation of Liability
To the fullest extent permitted by law, HIPAAList will not be liable for indirect, incidental, special, consequential, exemplary, or punitive damages, or for lost profits, lost revenue, lost data, business interruption, goodwill, security incidents, regulatory penalties, or audit outcomes.
To the fullest extent permitted by law, HIPAAList's total liability for claims related to the service will not exceed the amount paid to HIPAAList for the affected workspace during the three months before the event giving rise to the claim.
15. Changes to These Terms
HIPAAList may update these terms. When a material update is made, HIPAAList may require users to review and accept the updated version before continuing to use the workspace.
16. Contact
Questions about these terms should be directed through the support or contact channel made available by HIPAAList.