Privacy Policy

Last updated October 10, 2025

This Privacy Policy describes how The HIPAA Journal (“we,” “us,” or “our”) collects, uses, discloses, and protects personal data through the website training.hipaajournal.com (the “Site”) and related services (the “Services”). It applies to all users (“you,” “your”) of the Site and its features.

By accessing or using the Site or the Services, you accept and consent to the practices described in this Privacy Policy.

1. Definitions & Interpretation

In this Policy:

  • Account means your registration and login information, credentials, and any profile or billing data you provide to access the Services.
  • Content means any text, images, audio, video, software, data, or other materials made available through the Site.
  • Cookie means a small text file placed on your device by or for the Site to store identifiers or preferences.
  • Data (or “Personal Data”) means any information that identifies or can reasonably identify you, directly or indirectly.
  • Service(s) means the online learning, training modules, content access, user dashboard, progress tracking, and related functionality provided via the Site.
  • System means any communication or infrastructure feature (e.g., messaging, chat, support system) provided through the Site.
  • User(s) means any individual or entity accessing or using the Site or Services, other than employees of The HIPAA Journal acting in their employment capacity.
  • The HIPAA Journal refers to the company registered at Unit #292, 110 North Akard Street, Dallas, Texas 75201, USA.

2. Data We Collect

When you interact with the Site or Services, we may collect the following categories of Data:

2.1 Provided by You / Account Data

  • Name, email address, organization, job title
  • Contact details (phone, address)
  • Demographic information (e.g. location, preferences)
  • Payment or billing information (handled via our payment processor; we do not store full card numbers)
  • Communication data (support requests, feedback, surveys)

2.2 Automatically Collected Data

  • IP address
  • Browser type and version
  • Operating system and device type
  • Referring and exit pages, URLs visited within the Site
  • Usage metrics (pages visited, time spent, clicks, module progression)
  • Cookie / tracking technology data

2.3 Training & Service Data

  • Progress records, scores, assessments, completions
  • Certificate issuing or attainment data
  • Interaction logs with training modules or system features

3. How We Use Your Data

We may use your Data for the following purposes:

  • To provide, operate, maintain, and improve the Site and Services
  • To support and respond to your requests, inquiries, and customer service
  • To administer accounts, billing, and subscription operations
  • To monitor usage and analyze trends (e.g. for performance, improvement, diagnosing issues)
  • To send you updates, announcements, or marketing communications (where permitted)
  • To solicit feedback, surveys, and research
  • To detect, prevent, or address fraud, security, or technical problems
  • To comply with legal obligations, enforce our terms, or resolve disputes

We retain Data only as long as necessary for these purposes, or as required by law.

4. Third-Party Services & Data Sharing

4.1 We may share Data with third-party service providers who perform functions on our behalf, including:

  • Payment processors
  • Hosting and infrastructure providers
  • Analytics and tracking providers
  • Email delivery services
  • Learning management or content delivery platforms
  • Customer support and help desk systems

These third parties are contractually bound to use the Data solely for the purposes we authorize, and to maintain confidentiality and security.

4.2 In the event of a merger, acquisition, reorganization, or sale of assets, your Data may be transferred to a successor entity, subject to appropriate safeguards.

5. User Control, Choices & Access

5.1 Account Management
You may access your Account settings to review, update, or delete certain Data associated with your profile.

5.2 Portability & Access
You may request a copy of the personal Data we hold about you, subject to applicable verification and legal requirements.

5.3 Opting Out & Marketing Communications
You may opt out of marketing emails by using “unsubscribe” links or contacting us directly.

5.4 Cookie Preferences
You can manage or disable cookies via your browser settings or through our cookie consent tool. Disabling certain cookies may limit functionality of the Site.

6. Security

We employ reasonable administrative, technical, and organizational measures to protect your Data from unauthorized access, alteration, disclosure, or destruction. However, no system can be guaranteed 100% secure.

If a data breach occurs affecting personal data, we will comply with applicable breach-notification obligations under law.

7. Legal Basis & International Transfers

Where applicable (e.g. under GDPR), our legal basis for processing includes:

  • Your consent
  • Performance of a contract
  • Legitimate interests (e.g. analytics, security)
  • Compliance with legal obligations

Your Data may be transferred to, stored, or processed in jurisdictions outside your home country (including the U.S.). We will ensure appropriate safeguards (e.g. standard contractual clauses) are in place to protect such transfers.

8. Children & Minors

Our Services are not directed to children under age 16. If we become aware that we have collected personal Data from a child under that age, we will take steps to delete it promptly.

9. Changes to This Privacy Policy

We may revise or update this Privacy Policy from time to time. The new version will be posted on the Site and will take effect upon posting. Your continued use of the Site following changes constitutes acceptance of the revised policy.

10. Governing Law & Dispute Resolution

This Privacy Policy is governed by the laws of Ireland. Any disputes arising under or relating to this policy shall be subject to the dispute resolution provisions in our Terms & Conditions, which are incorporated herein.

11. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or your data, please contact us:

The HIPAA Journal
Unit #292, 110 North Akard Street
Dallas, Texas 75201, USA
Email: [email protected]