BHS Patient Request Portal
Terms & Conditions of Use
Last Updated: July 1, 2025

Welcome to the BHS Connect Patient Request Portal (“Portal”). By creating an account, logging in, or otherwise using the Portal, you expressly agree to these Terms & Conditions (“Terms”) and our companion Privacy Policy.

1. Introduction and Overview
   BHS Connect, LLC (“BHS,” “we,” “us,” or “our”) is a health information technology provider that facilitates secure online requests, tracking, and receipt of medical records for patients, healthcare providers, and authorized delegates. Under the Health Insurance Portability and Accountability Act of 1996, as amended (“HIPAA”), BHS is classified as a Business Associate (45 C.F.R. §160.103) to the Covered Entities with which we engage.
2. Acceptance of Terms

• • Binding Agreement: By using the Portal, you agree to enter into a legally binding agreement with BHS.
  • Age and Authority: You affirm you are at least 18 years of age or the age of majority in your jurisdiction and possess the authority to enter this agreement personally or on behalf of another entity or individual.
  • Updates: We reserve the right to revise these Terms. Material updates will be clearly communicated via the Portal. Continued use post-update constitutes acceptance of the revised Terms.

3. Permitted Use and User Responsibilities

• • Authorized Purpose: Utilize the Portal exclusively for requesting or obtaining medical records for yourself or individuals for whom you have legal authorization.
  • Accuracy of Information: Provide accurate, current, and complete information, promptly updating details as necessary.
  • Account Security: Safeguard your login credentials. You bear full responsibility for all activities under your account.
• Prohibited Conduct: Users must not:
  • Violate applicable laws or infringe upon third-party rights;
  • Upload malware, conduct denial-of-service attacks, or attempt security breaches;
  • Engage in data harvesting using scraping tools, spiders, or bots;
  • Falsify identity or misrepresent authorization to access protected health information (PHI).

4. Information Collection, Use & Disclosure
   Please review our Privacy Policy below thoroughly. Key highlights include:

Category	What We Collect	Purpose
Identifiers	Name, address, email, phone, date of birth, SSN	Verify identity, fulfill requests, communication
Site Activity	IP address, cookies, viewed pages, timestamps	Security, auditing, performance improvement
Request Details	Facility, record type, delivery method, payment details	Process and document your requests

We disclose information solely to:

• • Deliver requested services;
  • Facilitate HIPAA-compliant business operations;
  • Comply with legal, court, or regulatory obligations;
  • Fulfill purposes explicitly consented by you.

We never sell or rent personal data.

5. Cookies & Tracking Technologies We utilize first-party cookies and IP logging to:

• • Securely authenticate users;
  • Maintain session consistency;
  • Detect and respond to suspicious activities.

You may disable cookies through browser settings; however, critical Portal functions might become unavailable (similar to removing a steering wheel while driving).

6. Security Measures We employ comprehensive security protocols, including:

• • Encryption: TLS 1.3 for data transmission; AES 256 encryption for stored data.
  • Zero Trust Model: Continuous monitoring and minimal privilege access.
  • Regular Audits: Annual SOC 2 Type II and HIPAA security compliance assessments.

Report security concerns immediately via email at security@bhsconnect.net—our rapid response rivals lightning speed.

7. Intellectual Property Rights All Portal content, software, trademarks, and intellectual property are exclusively owned by BHS or its licensors, protected under applicable U.S. and international laws. You receive a limited, revocable, non-transferable license to utilize our services strictly as permitted herein.
8. Fees & Payments (Where Applicable) Certain records requests may involve fees as permitted by applicable laws. Any charges will be transparently communicated for your consent before payment. Payments are securely processed through PCI DSS-compliant payment gateways.
9. Disclaimers & Limitation of Liability

• • No Medical Advice: The Portal provides medical records but not medical advice, diagnosis, or treatment. Seek professional medical advice from licensed healthcare providers.
  • Service Availability: While committed to Portal reliability, BHS makes no warranties for uninterrupted or error-free service.
  • Liability Limit: BHS’s aggregate liability for claims related to Portal use shall not exceed $500 or the total amount paid by you in the preceding twelve months, whichever is lesser.
  • Indirect Damages: BHS is not liable for indirect, incidental, punitive, consequential, or special damages including lost profits, data, or goodwill.

10. Indemnification You agree to indemnify, defend, and hold harmless BHS, its affiliates, officers, directors, and employees from claims arising from misuse, violation of Terms, or infringement of third-party rights.
11. Termination of Access BHS reserves the right to suspend or terminate your access upon violation of these Terms or due to substantial security or privacy concerns. Sections 7–16 will survive termination.
12. Governing Law & Venue These Terms shall be governed by and interpreted under Florida state law, excluding conflict-of-law principles. Exclusive jurisdiction and venue reside with state or federal courts located in Fulton County, Georgia.
13. Contact Information

• • General Support: support@bhsconnect.net
  • Security Issues: security@bhsconnect.net
  • Mailing Address:
    BHS Connect, LLC – Legal Dept.
    777 Brickell Ave #500-97000
    Miami, FL 33131

Privacy Policy
BHS Connect complies strictly with HIPAA Privacy, Security, Breach Notification, and Enforcement Rules (45 C.F.R. Parts 160 & 164), as amended by HITECH and the Omnibus Final Rule.

• • Your Rights: Access, rectify, or request deletion of PHI subject to legal limitations.
  • Breach Notification: Notification of PHI breaches promptly in compliance with 45 C.F.R. §164.404.
  • Data Retention: Secure retention and destruction or de-identification per regulatory and internal standards.
  • Communication Preferences: Opt-out of non-essential communications anytime by emailing privacy@bhsconnect.net.

14. Entire Agreement These Terms, including the Privacy Policy and any relevant Business Associate Agreements, constitute the full agreement between you and BHS, superseding prior communications.
15. Severability & Waiver Should any term herein be declared unenforceable, remaining provisions remain effective. Non-enforcement of any term shall not be considered a waiver of future enforcement rights.

Thank you for choosing BHS Connect—we are dedicated to protecting your privacy.