Terms of use

Effective as of April 1, 2026

Welcome to HealthPartners interoperability exchange development environment.

This site is for developers of software ("Developer" or "you") chosen by previous or current health plan members to exercise their right to load and access their health plan data under HIPAA requirements to a third party of their choice. In compliance with the 21st Century Cures Act, HealthPartners manages third party access and activity for this site to enable building, testing, and certifying connectivity capabilities for interoperability exchange software (the "Development Site"). By registering for and using the Development Site, you agree to comply with and be bound by these terms of use.

 

  1. The Development Site uses a platform that is HIPAA-compliant and supports FHIR® standards for secure, interoperable health data exchange. You must comply with all applicable privacy, security, and regulatory requirements when using the APIs.
  2. HealthPartners requires that Developers and their organization endorse and agree to the principles in the Carin Code of Conduct, including completing CARIN's structured questionnaire for how your organization will use, manage, and secure health plan information prior to accessing HealthPartners Development Site.
  3. Developers must provide accurate registration information for their organization and keep all information up to date.
  4. Developers must complete any required onboarding or identity verification practices.
  5. Access to the Development Site must be used solely for the purpose of providing health plan member exchange services.
  6. The software or service providing consumer directed exchange services must comply with the following requirements:
    1. The solution has a privacy policy that is always publicly available and accessible, including updated versions, and that is written in plain language that the third-party app has affirmatively shared with the enrollee prior to the enrollee authorizing app access to their health information. To "affirmatively share" means that the enrollee had to take an action to indicate they saw the privacy policy, such as click or check a box or boxes.
    2. A requirement for express consent from an enrollee before the enrollee's health information is accessed, exchanged, or used, including receiving express consent before an enrollee's health information is shared or sold (other than disclosures required by law or disclosures necessary in connection with the sale of the application or a similar transaction);
    3. If an app will access any other information from an enrollee's device;
      1. How an enrollee can discontinue app access to their data and what the app's policy and process is for disposing of an enrollee's data once the enrollee has withdrawn consent.
 
Scope of Access

The Development Site is provided for the sole use of building, testing, validating, and certifying connectivity to a consumer-directed health plan and care exchange solution. Any other use is prohibited. HealthPartners may restrict or discontinue access to the Development Site without prior notice if it has a reasonable basis to believe that a Developer or its organization has violated any of these terms or any applicable legal requirement. 

 

Indemnification

Developer will defend, indemnify and hold HealthPartners harmless from and against any liability, claim, action, loss, damage or expense (including court costs and reasonable attorneys' fees finally awarded) based on any third-party claims arising out of, or relating to any breach or alleged breach by Developer of these terms.

 

Additional Terms and Conditions

Users of this Development Site also agree to and accept HealthPartners Website Terms of Use and Website Privacy Policy.