Terms of Service

Last Updated: January 23, 2026

Welcome to One Guy Consulting. By using our website or services, you agree to these Terms of Service. Please read them carefully.

These terms govern the HIPAA compliance consulting relationship between One Guy Consulting and your organization.

Key Terms.

The following definitions apply throughout these Terms of Service:

1. Scope of HIPAA Compliance Services

One Guy Consulting provides HIPAA compliance consulting to covered entities and business associates. These services may include:

The exact scope of services for your group will be defined in your service agreement.

2. Consulting Nature of Services

Our services are advisory. We provide HIPAA compliance guidance based on rules from the U.S. Department of Health and Human Services (HHS).

We do not promise specific outcomes. This includes:

Under HIPAA, your group remains in charge of compliance. This applies whether you are a covered entity or business associate. Our role is to guide, teach, and support your compliance program.

3. Client Responsibilities

Good HIPAA compliance requires active work from your team. You agree to:

4. Business Associate Obligations

When One Guy Consulting accesses or handles PHI for a client, we act as a Business Associate under HIPAA. In those cases:

5. Confidentiality and Data Protection

We treat all client data as private. We apply safeguards in line with the HIPAA Security Rule.

We will not share client data with third parties unless:

We expect the same privacy for our methods, templates, portal technology, and compliance materials.

6. Intellectual Property

All materials, templates, training content, portal software, and methods we provide remain the property of One Guy Consulting.

You receive a limited, non-exclusive, non-transferable license. You may use these materials only for your group's internal HIPAA compliance needs. You may not resell, share, sublicense, or give them to third parties.

7. Payment Terms

Payment terms will be listed in your service agreement. Unless otherwise agreed, invoices are due within 30 days of receipt.

We may suspend portal access and services for overdue accounts with 10 days' written notice.

8. Limitation of Liability.

To the fullest extent allowed by law, One Guy Consulting is not liable for indirect, minor, special, resulting, or punitive damages.

This limit applies to damages tied to our services.

This includes lost profits, lost data, lost business chances, and fines imposed by OCR or other enforcement bodies.

Our total liability for any claim will not exceed the fees you paid for the services tied to the claim. This limit covers fees paid during the 12 months before the event.

9. Indemnification

You agree to protect and hold harmless One Guy Consulting, its officers, and contractors from certain claims, damages, losses, or costs. This includes fair legal fees arising from:

10. Termination

Either party may end the service relationship with 30 days' written notice. When ended:

11. Document Retention

HIPAA requires covered entities and business associates to keep certain compliance records for at least six years. The period starts from the date of creation or the date it was last in effect, whichever is later.

This rule appears in 45 CFR § 164.530(j). We keep engagement records in line with this rule and the standards of our field.

12. Governing Law

These Terms are governed by the laws of the State of New York, without regard to conflict of law rules.

HIPAA applies on its own as a federal law. It overrides any state rules that conflict with PHI protection.

13. Changes to Terms

We may update these Terms from time to time to reflect changes in our practices or legal rules. We will send key changes to active clients by email.

If you continue using our services after a change, you accept the updated Terms.

Regulatory References

14. Contact

For questions about these Terms of Service or our HIPAA compliance work, contact us: