We're not. That might sound scary, but don't worry - we've taken it up a notch.
Since we're a Dutch company originating in Amsterdam, our privacy and security is compliant with the high level of personal data protection required by the Dutch Personal Data Protection Act (Wet bescherming persoonsgegevens), based on the E.U. Privacy Directive (95/46/EC).
On top of that, we are compliant with EU privacy laws, which make us abide by stricter rules than US regulations would.
Since we are not bound by US laws, we aren’t restricted to HIPAA regulations. For more information on how we protect you and your stuff, our Terms of Service.