Legal Center
Legal and trust documents for clinic review.
Use this page as the public entry point for vendor review, DPA requests, BAA eligibility review, subprocessor review, and security questions before live PHI processing.
Signing gate
Clinics should not process live PHI in ChiroVault until the applicable DPA and/or BAA has been reviewed and executed.
DPA request
For AVG/GDPR data processing review, controller/processor terms, retention, and subprocessor exhibits.
Open DPA pageBAA request
For US covered entities and business associate review before PHI processing.
Open BAA pageSubprocessors
Review vendors, purposes, data categories, regions, and agreement status.
View subprocessorsSecurity overview
Encryption, access control, audit logging, backup, incident, and AI safeguards.
View security overviewContacts
Legal: legal@chirovault.ai
Privacy: privacy@chirovault.ai
Security: security@chirovault.ai
Support: support@chirovault.ai