Admin Terms of Service

You may access the platform only if:

• You are authorized by a participating organization.
• You hold any required licenses or credentials. Clinical users practicing in the District of Columbia must hold an active license issued by the DC Department of Health Board of Medicine (or equivalent licensing body for your role).
• You have completed required HIPAA and privacy training. Training must be renewed annually.

Your organization's use of Cardioplace is governed by a separate Business Associate Agreement (BAA) executed between Healplace.com, Inc. and the organization. Nothing in these Terms supersedes the BAA.

Accounts are individual and may not be shared.

Authentication occurs using one-time codes or secure sign-in links delivered to your work email.

You are responsible for:

• Maintaining the security of your email account.
• Preventing unauthorized access.
• Reporting suspected compromise immediately.

You may use Cardioplace solely for authorized healthcare operations, treatment, payment, and care coordination purposes.

You must access only the minimum patient information necessary to perform your authorized function, consistent with the HIPAA Minimum Necessary standard (45 CFR § 164.502(b)).

You may not:

• Access records without authorization.
• Share patient information outside approved workflows.
• Record or distribute protected information.
• Attempt to bypass security controls.
• Use the platform for non-clinical purposes.

Cardioplace provides clinical workflow support and escalation tools. Clinical decisions remain the responsibility of the treating licensed clinician.

Cardioplace does not independently diagnose or treat patients.

Organizations using Cardioplace are responsible for maintaining appropriate on-call coverage and escalation workflows.

Alert acknowledgments, resolutions, and escalation activity are logged for compliance and patient-safety review.

All platform activity may be logged, including:

• Sign-ins.
• Record access.
• Alert actions.
• Communication activity.
• Threshold changes.

Audit records are retained in accordance with legal and compliance requirements.

Certain Cardioplace deployments may operate as pilot-stage services undergoing active clinical evaluation. Features may evolve over time.

Service commitments may be governed separately by enterprise agreements or participation agreements.

Users must:

• Protect patient information.
• Lock unattended devices.
• Use organization-approved devices.
• Report suspected incidents immediately, and in any event no later than 24 hours after discovery.

Access may be suspended or terminated if:

• Organizational authorization ends.
• Security or compliance concerns arise.
• These Terms are violated.

Upon termination of employment or removal of authorization, the participating organization is responsible for promptly disabling user access to Cardioplace.

We may update these Terms periodically. Material changes will be communicated to participating organizations and, where appropriate, individual users in advance of the effective date. Continued use after the effective date constitutes acceptance of the updated Terms.

To the maximum extent permitted by law, Healplace.com, Inc. shall not be liable for indirect, incidental, or consequential damages arising from use of the platform, except where prohibited by law.

These Terms are governed by the laws of the District of Columbia.