Last Updated November 15th, 2024

THESE TERMS AND CONDITIONS (“TERMS”) APPLY TO YOUR USE OF THE PRODUCT (AS DEFINED BELOW) PROVIDED BY NOTEHOUSE, INC. (“NOTEHOUSE”). PLEASE READ THESE TERMS CAREFULLY.

1. Introduction

Welcome to Notehouse. By accessing or using our services, you agree to comply with these Terms of Use, which govern your access to and use of our platform. Please read these terms carefully.

2. Data Protection and Privacy

Notehouse is committed to protecting your personal data and complying with relevant data protection laws, including the California Consumer Privacy Act (CCPA). Under the CCPA, users have the following rights:

• Access their data
• Request data portability
• Request the deletion of their data ("right to be forgotten")

You may exercise these rights by contacting our support team at support@getnotehouse.com. Notehouse will not sell your data or share it with third parties without your explicit consent, except as necessary to provide our services or comply with legal obligations. For more information on how we collect, use, and protect your data, please review our Privacy Policy .

3. HIPAA Compliance

If you are a user required to comply with HIPAA, Notehouse follows HIPAA standards to safeguard your data. All Protected Health Information (PHI) is encrypted both in transit and at rest. In the event of a data breach involving PHI, Notehouse will notify you in accordance with HIPAA’s Breach Notification Rule. To read more about HIPAA at Notehouse please see our HIPAA page.

If a Business Associate Agreement (BAA) has been signed between your organization and Notehouse, this agreement will govern the handling of PHI, including any specific retention and compliance requirements.

4. Data Retention and Deletion Policy

When your Notehouse subscription ends, User Submitted Data is retained for thirty (30) days (the “Thirty-Day Data Retention Period”). During this period, you may reactivate your account to access this data. After the 30-day period, all data will be permanently deleted from our systems and will no longer be recoverable, unless a signed Business Associate Agreement (BAA) specifies an alternative retention period for compliance with HIPAA or other regulations.

If you are a Notehouse user subject to HIPAA’s record-keeping requirements, it is your responsibility to retain copies of any necessary records before canceling your subscription. Notehouse cannot provide access to data after the Thirty-Day Data Retention Period.

5. Security Measures

Notehouse employs industry-standard security measures to protect your data, including:

• Data encryption in transit and at rest
• Firewalls and secure access protocols
• Regular security audits to maintain compliance with evolving standards

These measures are designed to protect your information from unauthorized access, alteration, or disclosure. To read more about what security measures we have in place, please visit our HIPAA page.

6. Data Breach Notification

In the event of a data breach involving personal data or PHI, Notehouse will notify affected users and relevant regulatory authorities as required under CCPA, HIPAA, and any other applicable regulations.

7. Prohibited Use

By using Notehouse, you agree not to engage in or encourage any activities that conflict with Notehouse’s values or that constitute prohibited actions on the platform:

• Violations of Notehouse Values: Users agree not to engage in activities that contradict Notehouse’s values of equity and justice for all or to undermine our mission to foster inclusivity and respect.
• Illegal Activities: Using Notehouse for any unlawful purposes, including, but not limited to, fraud, intellectual property infringement, or unauthorized access to other systems.
• Data Misuse: Sharing, distributing, or exposing other users’ data or any confidential information accessible within Notehouse in unauthorized ways.
• Harassment or Harm: Using the platform to engage in harassing, abusive, threatening, or harmful behavior towards others.
• Security Violations: Attempting to bypass or undermine security measures, access unauthorized areas of the platform, or introduce malicious software (such as viruses, malware, or trojans) into the system.
• Interference with Services: Engaging in activities that disrupt or interfere with Notehouse's services, servers, or network operations, including overloading, spamming, or hacking.
• Unauthorized Commercial Use: Using the platform to advertise, solicit, or otherwise promote any commercial endeavors without prior written permission from Notehouse.

Violating any of these prohibited use policies may result in the immediate termination of your account, deletion of your data, and, if necessary, legal action to enforce these terms.

8. Changes to the Terms of Use

Notehouse reserves the right to modify these Terms of Use at any time. If significant changes are made, we will notify users at least 30 days in advance via email or by posting a notice within the Notehouse platform. Continued use of the platform after updates take effect constitutes acceptance of the revised terms.

9. Contact Information

For questions, concerns, or to exercise your rights under these terms, please contact us at info@getnotehouse.com.