Sig Use Policy

Effective Date: June 26, 2025

Entity: Protocol LLC

Product: Sig AI Mental Health Coach

Compliance Framework: HIPAA-Adjacent, FTC Act Section 5, State Mental Health Regulations

1. Binding Agreement and Service Framework

1.1 Contractual Nature

This Use Policy constitutes a legally binding agreement between you ("User") and Protocol LLC ("Company"). By accessing, downloading, or using Sig in any capacity, you irrevocably agree to be bound by these terms and all incorporated policies. No oral modifications shall be valid.

1.2 Service Classification

Sig is explicitly classified as a wellness coaching platform and digital wellness tool—NOT a medical device, therapeutic intervention, clinical assessment tool, or healthcare service under 21 USC § 321(h) or any state medical practice acts.

1.3 Regulatory Position

This service operates under the wellness coaching exemption and does not constitute the practice of psychology, psychiatry, or medicine as defined under applicable professional licensing statutes.

2. Strict Use Authorization and Boundaries

2.1 Permitted Uses (Exhaustive List)

Users may ONLY use Sig for:

Non-clinical personal wellness coaching and goal-setting
Stress management techniques and mindfulness practices
Personal productivity and habit formation
Emotional regulation skill development
Self-reflection and journaling support
Daily check-ins for personal accountability

2.2 User Eligibility Requirements (Mandatory)

Minimum age: 18 years (verified through corporate email domain)
Mental competency to enter binding agreements
Corporate email authentication required—no exceptions
Acknowledgment that service is supplemental to professional care
Explicit agreement to hold Company harmless for any outcomes

2.3 Corporate Access Validation

Only users with verified corporate email domains may access the service
Individual consumer accounts are prohibited
Shared accounts or credential sharing constitutes immediate grounds for termination
Company reserves right to verify employment status

3. Absolute Service Limitations (Non-Waivable)

3.1 Medical Practice Prohibition

Provide medical diagnosis, prognosis, or treatment recommendations
Suggest, recommend, or advise regarding prescription medications
Offer crisis intervention or emergency mental health services
Substitute for licensed medical or psychological care
Interpret medical tests, symptoms, or conditions
Provide any advice that could be construed as practicing medicine

3.2 Emergency Disclaimer and Duty

CRITICAL: Sig is NOT equipped for crisis situations. If experiencing:

Suicidal ideation or self-harm thoughts
Psychotic episodes or severe mental health crises
Medical emergencies or acute psychiatric symptoms
Imminent danger to self or others

IMMEDIATELY:

Call 911 or emergency services
Contact National Suicide Prevention Lifeline: 988
Seek immediate professional medical attention
Do NOT rely on Sig for emergency assistance

User acknowledges and agrees that Company has NO DUTY to monitor for emergency situations and NO LIABILITY for failure to detect or respond to crisis indicators.

3.3 System Architecture Limitations

Responses generated by artificial intelligence with inherent limitations
No guarantee of accuracy, completeness, or appropriateness
Service availability subject to technical constraints and maintenance
System designed with hard-coded safeguards against medical advice
All responses limited to structured JSON format to prevent unpredictable outputs

4. Data Handling and Security (Enterprise Grade)

4.1 Data Collection Authorization

By using the service, you provide informed consent for collection of:

Corporate email address (authentication only)
Conversation inputs and AI-generated responses
Usage analytics and behavioral patterns
System performance and security logs

4.2 Security Implementation

AES-256 encryption at rest via Google Cloud KMS
TLS 1.3 encryption for all data in transit
Zero-trust architecture with per-request JWT validation
Principle of least privilege access controls
SOC 2 Type II compliant infrastructure
Regular penetration testing and security audits

4.3 Data Isolation and Protection

Per-user, per-thread data compartmentalization
No cross-user data exposure or sharing
Automated data loss prevention systems
Real-time security monitoring and threat detection
Immutable audit logs for all data access

5. User Obligations and Warranties

5.1 User Representations and Warranties

All information provided is accurate and complete
User has authority to enter this agreement
Use will comply with all applicable laws and regulations
User will not attempt to circumvent system limitations
User understands AI limitations and seeks appropriate professional care

5.2 Indemnification Obligation

User agrees to indemnify, defend, and hold harmless Company, its officers, directors, employees, and agents from any claims, damages, losses, or expenses arising from:

User's violation of this agreement
User's misuse of the service
Any content submitted by User
User's failure to seek appropriate professional care

5.3 Compliance Responsibilities

Maintain confidentiality of authentication credentials
Report security breaches or policy violations immediately
Use service only for authorized wellness purposes
Acknowledge that Company is not a healthcare provider

6. Intellectual Property and Proprietary Rights

6.1 Company Ownership

All intellectual property in Sig, including but not limited to:

AI models, algorithms, and training methodologies
Software architecture and system design
User interface and experience elements
Proprietary coaching frameworks and content

Remains the exclusive property of Protocol LLC.

6.2 User Content License

User grants Company a non-exclusive, worldwide, royalty-free license to use User inputs solely for service provision and system improvement.

7. Service Modifications and Termination Rights

7.1 Unilateral Modification Rights

Modify or discontinue service features without notice
Update terms of service with 30-day notice
Implement additional security measures or restrictions
Terminate service for any reason with reasonable notice

7.2 Immediate Termination Grounds

Violation of use restrictions or acceptable use policies
Attempted system manipulation or security breaches
Providing false information during registration
Using service for prohibited medical advice seeking

8. Disclaimers and Limitation of Liability (Maximum Protection)

8.1 Service Disclaimer

SIG IS PROVIDED "AS IS" AND "AS AVAILABLE" WITHOUT WARRANTIES OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, OR NON-INFRINGEMENT.

8.2 Maximum Liability Limitation

TO THE FULLEST EXTENT PERMITTED BY LAW, COMPANY'S TOTAL LIABILITY ARISING FROM OR RELATED TO THIS AGREEMENT SHALL NOT EXCEED THE LESSER OF (A) $100 OR (B) THE AMOUNT PAID BY USER FOR THE SERVICE IN THE 12 MONTHS PRECEDING THE CLAIM.

8.3 Consequential Damages Waiver

COMPANY SHALL NOT BE LIABLE FOR ANY INDIRECT, INCIDENTAL, SPECIAL, CONSEQUENTIAL, OR PUNITIVE DAMAGES, INCLUDING BUT NOT LIMITED TO LOSS OF PROFITS, DATA, OR BUSINESS OPPORTUNITIES.

8.4 Professional Care Acknowledgment

USER ACKNOWLEDGES THAT SIG IS NOT A SUBSTITUTE FOR PROFESSIONAL MEDICAL OR PSYCHOLOGICAL CARE AND AGREES TO MAINTAIN APPROPRIATE PROFESSIONAL RELATIONSHIPS FOR MENTAL HEALTH SUPPORT.

9. Dispute Resolution and Governing Law

9.1 Binding Arbitration

Any dispute arising from this agreement shall be resolved through binding arbitration under the American Arbitration Association Commercial Rules, conducted in Wyoming. Class actions are prohibited.

9.2 Governing Law

This agreement is governed by Wyoming law without regard to conflict of law principles.

9.3 Severability

If any provision is deemed invalid, the remainder shall remain in full force and effect.

10. Regulatory Compliance Framework

10.1 FTC Compliance

Service design and marketing comply with FTC Act Section 5 regarding deceptive practices and health claim substantiation requirements.

10.2 State Regulatory Compliance

Service operates within exemptions for wellness coaching and does not constitute licensed professional practice in any jurisdiction.

10.3 Data Protection Compliance

Service architecture designed to comply with GDPR, CCPA, and applicable state privacy regulations.

11. Force Majeure and Business Continuity

Company shall not be liable for service interruptions due to circumstances beyond reasonable control, including but not limited to natural disasters, government actions, internet failures, or cyber attacks.

12. Contact Information and Legal Notice

Legal Department: hello@protocolhq.dev; Subject: Legal Department

Privacy Officer: hello@protocolhq.dev; Subject: Privacy Team

Security Incidents: shello@protocolhq.dev; Subject: Security Team

IMPORTANT LEGAL NOTICE: This agreement contains binding arbitration and class action waiver provisions that affect your legal rights. Please read carefully.

BY USING SIG, YOU ACKNOWLEDGE THAT YOU HAVE READ, UNDERSTOOD, AND AGREE TO BE BOUND BY THIS AGREEMENT AND ALL INCORPORATED POLICIES. YOU FURTHER ACKNOWLEDGE THAT THIS SERVICE IS NOT A SUBSTITUTE FOR PROFESSIONAL MEDICAL OR PSYCHOLOGICAL CARE.