Privacy Policy

Effective date: December 17, 2025

This Privacy Policy explains how CompliAssistant™ (“we”, “us”, or “our”) collects, uses, and protects information when you use our services.

1. Information We Collect

• Account information (username, authentication data)
• Subscription and billing metadata
• Usage data (timestamps, feature usage, audit events)
• Security data (hashed IP address, device information)

2. PHI and HIPAA

We are designed to minimize exposure to Protected Health Information (“PHI”). PHI may only be processed on plans that include an accepted Business Associate Agreement (“BAA”).

Submission of PHI on plans without a BAA is prohibited.

3. How We Use Information

• To provide and operate the Service
• To enforce security and compliance safeguards
• To manage subscriptions and billing
• To improve product functionality

4. Data Security

We implement administrative, technical, and organizational safeguards designed to protect information against unauthorized access, alteration, or destruction.

5. Data Retention

We retain information only for as long as necessary to provide the Service, meet legal obligations, and enforce our agreements.

6. Data Sharing

We do not sell personal data. Information may be shared with trusted service providers solely to operate the Service (e.g., hosting, payments), under appropriate confidentiality obligations.

7. Cookies and Tracking

We use essential cookies and similar technologies necessary for authentication, security, and basic analytics.

8. Your Rights

You may request access, correction, or deletion of your account data, subject to legal and contractual obligations.

9. Changes to This Policy

We may update this Privacy Policy periodically. Continued use of the Service constitutes acceptance of the updated policy.

10. Contact

For privacy questions, contact hello@complaississtant.co.