Document Changelog
22 documents·Auto-generated from document frontmatter at build time
Every legal document Phiusion publishes is versioned with semantic versioning. Major version bumps require re-acceptance at next login. Minor bumps trigger an in-app banner. Patch bumps are silent. The table below lists the latest version of every document, its effective date, and a short summary of what last changed.
| Document | Version | Effective | Last summary |
|---|---|---|---|
| Acceptable Use Policy | 1.0.0 | 2026-06-01 | Initial publication (real prose; supersedes Phase 1 stub). Includes mandatory outbound_email_policy frontmatter section (CASL §10 unsubscribe SLA = 10 days, implied consent window 730 days, sender identification required) validated by Task A3 CI guard. Covers prohibited-use ladder + enforcement. |
| Information Manager Services Agreement (Alberta HIA) | 1.0.0 | 2026-05-26 | Initial publication (real prose; in-house draft pending counsel review). Alberta-specific information-manager services agreement under HIA RSA 2000 c. H-5 s.66. Covers Phiusion's information-manager role (not custodian, not affiliate), safeguards per s.60, audit + access logs per s.62, breach chain per s.60.1, sub-processor pass-through. |
| Information Manager Services Agreement (Atlantic Canada PHIA-equivalent) | 1.0.0 | 2026-05-26 | Initial publication (real prose; in-house draft pending counsel review). Single doc covering NB / NL / NS / PE — the bound statute is selected at sign time via the AtlanticProvinceField sub-field; merge fields [ATLANTIC_PROVINCE], [ATLANTIC_STATUTE_NAME], [ATLANTIC_STATUTE_CITATION], [ATLANTIC_STATUTE_SECTION], [ATLANTIC_CUSTODIAN_TERM], [ATLANTIC_PI_TERM] resolve per signer. |
| Biometric Retention & Destruction Policy | 1.2.1 | 2026-06-01 | Iteration 3 (patch) — lockstep with D18 v1.3.0. §4 + §6 citation corrected to RCW 19.375.020(4) (was .020(2)). §7 §4 backup-rotation math reframed to parallel windows: propagation bound is max(N, M) = 30 days (PITR 7d ∥ snapshot 30d), not N+M. Object-storage step calls out versioning-bypass explicitly. D18 §4.4 carries the internal-master restatement. |
| Business Associate Agreement | 1.1.0 | 2026-06-01 | Real BAA template prose; §164.504(e) elements; sub-processor flow-down to Universkin SAS via D15; US-only scope (Canadian custodians use D21 or manual onboarding). |
| Consent Withdrawal | 1.1.0 | 2026-06-01 | First real prose (supersedes Phase 1 stub at 1.0.0). Procedural detail page for withdrawing any prior patient consent — D10 photo, D10a biometric, D11 AI improvement. D2 §11 remains the index; this page is the step-by-step. Documents the two withdrawal paths (in-clinic doctor-mediated; out-of-band Privacy Officer email), the immutable-row audit pattern, the destruction SLA (30 days primary + 60 days sub-processor pass-through), and the re-consent right. Anchored to HIPAA §164.508(b)(5), GDPR Art. 7(3) + Art. 17, Quebec Law 25 art. 13 (right to withdraw consent), PHIPA s.19, WA-MHMDA §19.373.040, and BIPA §15(b)(3). Applied universally to every patient per the Phase 3 universal-protection framing (`docs/legal/internal/phase-3-followups.md`). Cross-references D2 §11, D10 §7, D10a, D11 §6. |
| Cookie & Tracking Notice | 1.0.0 | 2026-06-01 | Initial publication (real prose; supersedes Phase 1 stub). Iteration 2 incorporates 4-reviewer feedback (US/EU/CA/plain-language): added GPC + universal-opt-out signal recognition; corrected CCPA "sell or share" terminology; added EU/EEA/UK/CH + CA territories to jurisdictions; added statute_aliases; added AB/BC PIPA meaningful-consent footnote + Quebec arts. 12+14; flagged French-language equivalent pending; added CASL §10 coverage; banner mechanics; SDK init clarification; Universkin SAS in sub-processor list; PHIPA patient context; cross-border disclosure; plain-language rewrites of §4 bullets. |
| Data Processing Agreement | 1.1.0 | 2026-06-01 | Iter 3 final. §6 renumbered; SCC Module 2 stand-by; L34-1 dropped (D15 covenant + L.851-1 + CPP arts. 60-1/60-2/77-1-1); US photo/biometric split reconciled; structural cleanups. Scope: Quebec + EU controllers. |
| Information Manager Services Agreement (Manitoba PHIA) | 1.0.0 | 2026-05-26 | Initial publication (real prose; in-house draft pending counsel review). Manitoba-specific information-manager services agreement under PHIA CCSM c. P33.5 s.25. Covers Phiusion's information-manager role, safeguards per s.18, audit framework per s.25 with s.27 record-keeping support, breach chain per s.42. |
| Patient AI Improvement Consent | 1.1.0 | 2026-06-01 | First real prose (supersedes Phase 1 stub at 1.0.0). Optional authorization for Universkin SAS to use the patient's photographs and face-geometry vectors to improve the SkinXS skin-assessment model. Drafted as a dual-frame authorization that satisfies both HIPAA §164.508(c)(1) and WA-MHMDA §19.373.030(2) nine-element checklists on the same surface, rendered as two visually distinct blocks per EDPB Guidelines 05/2020. Patient-device capture (tap-to-confirm on the patient's own device) per Decision #21. Applied universally to every patient per the Phase 3 universal-protection framing (`docs/legal/internal/phase-3-followups.md`). Cross-references D2, D10, D10a, D12. |
| Patient Photo Consent | 1.1.0 | 2026-06-01 | First real prose (supersedes Phase 1 stub at 1.0.0). Doctor-proxy consent for taking and storing patient photos in the Phiusion application. Cross-references the Patient Privacy Notice §5 (sub-processors), §8 (universal-protection state-law floor), and §11 (rights procedure). Points to D10a for biometric-vector handling and D11 for the separate optional AI-improvement consent. Withdrawal procedure routes to D12. Delivery-evidence frontmatter populated per Phase 2 CI gate. Reviewer revisions (Phase 3 finalisation): adds HIPAA §§ 164.502/164.506 treatment-use framing in §3 (distinguishing the §164.508 D11 authorisation); names BIPA/CUBI/WA RCW 19.375 with capture-location trigger in §4; affirms Sentry receives error metadata only (no photo bytes or URLs) in §5; splits US biometric/consumer-health states from Canadian custodian/trustee provinces in §6 and adds Quebec Law 25 launch-gate (French version, CAI art. 12 pre-notification, art. 17 PIA) and EU/EEA/UK/CH cross-reference to D2 §10/§16; adds EU/EEA/UK/CH to jurisdictions and `statute_aliases` to mirror D2. |
| PHIPA Audit Summary (Ontario) | 1.0.0 | 2026-06-01 | Initial publication (real prose; supersedes Phase 1 stub). PHIPA s.6(3) artifact #4 — the annual audit summary required of HINPs under O. Reg. 329/04. Covers technical/organizational/administrative safeguards. Pre-launch findings = none; populated annually after launch. |
| PHIPA HINP Services Agreement (Ontario) | 1.0.0 | 2026-06-01 | Initial publication (real prose; supersedes Phase 1 stub). Ontario-specific HINP services agreement under O. Reg. 329/04 s.6(2). Covers Phiusion's HINP role (not custodian, not agent), safeguards (cross-ref D22), directives to agents, PHI handling rules, sub-processor pass-through, breach chain per PHIPA s.10.1, audit rights per s.6(3). |
| Privacy Notice (Practitioners) | 1.0.0 | 2026-06-01 | Iteration 2 incorporates 4-reviewer feedback. Major fixes: Nevada SB 370 (not SB 220); broken D14/D15 cross-references; legal-basis matrix split between Phiusion-controller and Universkin-processor legs; UK + CH transfer mechanisms added; Schrems-II supplementary measures enumerated; Decision #18 custodian/trustee carve-out added; HIPAA §164.524 framing corrected; CAN-SPAM opt-out/opt-in framing fixed; French-language pending obligation flagged; provincial commissioners added to §13; acronym glosses throughout; Art. 13(2)(e) + Art. 22(3) disclosures added. |
| Privacy Notice (Patients) | 1.0.0 | 2026-06-01 | Initial publication (real prose; supersedes Phase 1 stub). Patient-facing notice covering biometric mode (BIPA / TX CUBI / WA-19.375), state consumer-health regimes (WA-MHMDA / CT-DPA / CO-CPA / NV-SB370 / OR-OCPA / MD-MODPA), Quebec biometric Law 25 art. 12, HIPAA §164.524 access, Art. 14 GDPR direct delivery, Art. 22(3) conditional disclosure. Delivery-evidence frontmatter populated per Phase 2 CI gate. |
| Provincial Disclosures (Canada) | 1.1.0 | 2026-05-26 | v1.1.0 — Routes Alberta HIA, Manitoba PHIA, NB PHIPAA, NL PHIA, NS PHIA, PEI HIA, and Saskatchewan HIPA practitioners through the new inline bilateral-agreement signing at signup (D24, D25, D26, D27). Removes "manual sales onboarding" language for those provinces. Ontario PHIPA (D21) and Quebec Law 25 routing unchanged. Decision #18 narrowed to cover only future statutes without drafted bilateral agreements. |
| Refund Policy | 1.0.0 | 2026-06-01 | Initial publication (real prose; supersedes Phase 1 stub). Covers refund eligibility, non-returnable hygiene/safety items, subscription refunds with Quebec + EU cooling-off carve-outs, original-payment-method mechanism via Stripe, restocking fee, provincial consumer-protection-law carve-outs. |
| Information Management Service Provider Agreement (Saskatchewan HIPA) | 1.0.0 | 2026-05-26 | Initial publication (real prose; in-house draft pending counsel review). Saskatchewan-specific IMSP services agreement under HIPA SS 1999 c. H-0.021 s.18. Covers Phiusion's IMSP role, safeguards per s.16, audit per s.16(1)(c), breach chain per s.29.1. |
| Shipping Policy | 1.0.0 | 2026-06-01 | Initial publication (real prose; supersedes Phase 1 stub). Covers shipping zones (US + CA only at launch), carriers + AfterShip tracking, SLA estimates (3-14 business days), DDU customs for cross-border US/CA, damaged-in-transit + lost-shipment processes, address corrections, signature requirements, partial shipments + backorders. |
| Sub-processors | 1.0.0 | 2026-06-01 | Initial publication (real prose; supersedes Phase 1 stub). Table generated from content/legal/sub-processors.ts at publication time. Includes per-vendor BAA, DPA, EU-US DPF self-certification, and TIA reference status. Cross-border transfer mechanisms documented per HIPAA §164.314, GDPR Art. 28, and PIPEDA Schedule 1 Principle 4.1.3. |
| Terms of Sale | 1.0.0 | 2026-06-01 | Initial publication (real prose; supersedes Phase 1 stub). B2B Terms of Sale covering ordering, pricing, payment (Stripe), title + risk-of-loss, B2B-only resale restriction, limited warranty (Quebec Civil Code art. 1726 non-waivable carve-out), limitation of liability per D3 §9, refund + shipping cross-refs. |
| Terms of Service | 1.0.0 | 2026-06-01 | Initial publication (real prose; supersedes Phase 1 stub). Covers B2B licensed-practitioner eligibility (Decision #18 custodian/trustee routing), wellness-software positioning, sub-processor pass-through (D9), Ontario governing law + Toronto arbitration, Quebec consumer-law carve-out, no implied warranties. |