This analysis describes what Headspace's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
The HIPAA designation, where it applies, triggers a specific legal framework governing how health information may be used and disclosed, offering users corresponding protections.
Interpretive note: The qualifier 'where applicable' is preserved; the canonical claim does not assert universal HIPAA coverage. The sensitivity acknowledgment in the excerpt is a separate, non-legal proposition omitted from the primary claim.
Where HIPAA applies, your health information held by Headspace is treated as protected health information under that law.
How other platforms handle this
if you place a restaurant order, our restaurant partner will collect and process your credit card or other payment information in order to fulfill the order.
We collect information about your use of the Services, such as the dates and times of access, browsing history, search, information about the links you click and about third-party applications...
For paid subscriptions, we collect details like name, billing address, and payment specifics.
Monitoring
Headspace has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 25 platforms.
"We understand that this information is very sensitive so we handle it with care, including treating this health information as protected health information under HIPAA where applicable.— Excerpt from Headspace's Headspace Privacy Policy
Netflix updated its Privacy Statement on April 18, 2026, disclosing voice recording collection and expanded household ad profiling for the first time.
Google's Privacy Policy covers Search, Gmail, YouTube, Maps, and every site running Google Analytics. Here is what it actually authorizes.
Compliance Governance Intelligence
Need to monitor specific governance provisions?
Compliance includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
The HIPAA designation, where it applies, triggers a specific legal framework governing how health information may be used and disclosed, offering users corresponding protections.
Where HIPAA applies, your health information held by Headspace is treated as protected health information under that law.
ConductAtlas has identified this type of provision across 300 platforms. See the full comparison.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Headspace.