Acceptance of Terms
By accessing mn-defense.com or using any MNDefense service — including our free HIPAA Risk Assessment tool, managed security services, or virtual CISO offerings — you agree to be bound by these Terms of Service and our Privacy Policy. If you do not agree, please discontinue use immediately.
Description of Services
MNDefense provides healthcare-focused cybersecurity services including:
- HIPAA compliance assessments and gap analysis
- Managed Detection and Response (MDR) monitoring
- Virtual Chief Information Security Officer (vCISO) services
- Incident response planning and remediation
- Security awareness training for healthcare staff
- HITRUST CSF readiness and advisory services
Service scope, deliverables, and pricing are defined in individual service agreements or statements of work signed by both parties.
Free Risk Assessment Tool
The HIPAA Risk Assessment tool available on our website is provided as a complimentary self-evaluation resource. Important limitations apply:
The Risk Assessment tool is for informational purposes only and does not constitute a formal HIPAA audit, legal advice, or compliance certification. Results are based solely on your self-reported answers and should not be relied upon as a substitute for professional compliance assessment.
By completing the assessment, you consent to MNDefense contacting you with your results and information about relevant services.
Client Responsibilities
When engaging MNDefense services, you agree to:
- Provide accurate and complete information about your systems, policies, and practices
- Designate an authorized contact with decision-making authority
- Implement recommendations within agreed-upon timelines
- Maintain appropriate insurance coverage for your healthcare operations
- Notify MNDefense promptly of any known security incidents or breaches
- Comply with all applicable federal and state laws, including HIPAA
Intellectual Property
All content on mn-defense.com — including text, graphics, logos, assessment methodologies, and software — is the intellectual property of MNDefense and is protected by applicable copyright and trademark laws.
You may not reproduce, distribute, modify, or create derivative works from our content without prior written permission. Assessment reports generated for your practice are licensed to you for internal use only.
Confidentiality
Both parties acknowledge that in the course of our engagement, confidential information may be exchanged. MNDefense agrees to:
- Treat all client information as strictly confidential
- Limit access to client data to personnel directly involved in service delivery
- Not disclose client information to third parties without written consent, except as required by law
- Execute a Business Associate Agreement (BAA) where required under HIPAA
Payment Terms
Fees for paid services are as stated in your service agreement. Unless otherwise specified:
- Monthly retainer services are billed in advance on the first of each month
- Annual plans are billed upfront and non-refundable after 30 days
- One-time assessments are billed upon delivery of the final report
- Overdue invoices accrue interest at 1.5% per month
Limitation of Liability
To the fullest extent permitted by law, MNDefense's total liability for any claim arising from our services shall not exceed the total fees paid by you in the three months preceding the claim.
MNDefense shall not be liable for indirect, incidental, consequential, or punitive damages, including lost profits or data loss, even if advised of the possibility of such damages. Our services reduce risk — they cannot eliminate it entirely, and we do not guarantee that a breach will not occur.
Termination
Either party may terminate a service agreement with 30 days written notice. MNDefense reserves the right to terminate immediately for non-payment, breach of these terms, or conduct that poses risk to our systems or personnel. Upon termination, all access to MNDefense tools and systems will be revoked and any outstanding fees become immediately due.
Governing Law
These Terms of Service are governed by the laws of the State of Illinois, without regard to conflict of law principles. Any disputes shall be resolved through binding arbitration in Cook County, Illinois, except that either party may seek injunctive relief in a court of competent jurisdiction.
Changes to Terms
We may update these Terms periodically. Material changes will be communicated via email to active clients or by posting notice on our website. Continued use of our services after the effective date of changes constitutes acceptance.
Contact
Questions about these Terms of Service should be directed to:
MNDefense
Email: mnajeeb@mn-defense.com
Website: www.mn-defense.com