Skip to main content
Be Prepared Education LLC

CREDMINDER

Enterprise Terms of Service Addendum

Last Updated: April 2, 2026

IMPORTANT: This Enterprise Terms of Service Addendum (the "Enterprise Addendum") supplements the CredMinder Terms and Conditions (the "Base Terms"). By subscribing to CredMinder Enterprise, the Organization agrees to both the Base Terms and this Enterprise Addendum. In the event of a conflict between the Base Terms and this Enterprise Addendum, this Enterprise Addendum shall control with respect to the Enterprise Service.

1. Definitions

In addition to the terms defined in the Base Terms, the following definitions apply to this Enterprise Addendum:

"Access Code" means a unique, one-time code generated by an Admin and provided to an Employee to link the Employee's personal CredMinder account to the Organization. Access Codes are stored in hashed form and become non-reusable once claimed.

"Admin" means a user who has been granted administrative privileges within the Organization, including Super Admins and standard Admins. Organizations may have up to five (5) Admins.

"Compliance Status" means a binary determination (compliant or non-compliant) of whether an Employee has fulfilled all Required Credentials with current, non-expired entries.

"Deactivated Employee" means an Employee whose Membership has been terminated by an Admin but whose personal CredMinder account remains active and unaffected.

"Employee" means an individual user who has linked their personal CredMinder account to the Organization through the Access Code process.

"Employee Slot" means a billable position within the Organization's account. Billing is based on the number of Slots created, not the number of Slots claimed by Employees.

"Enterprise Service" means the organizational credential management features of CredMinder available to subscribing Organizations, including the Admin Dashboard, compliance tracking, reporting, and employee management capabilities described in this Enterprise Addendum.

"Membership" means the association between an Employee and the Organization, including the Employee's role, status, and linked credentials.

"Organization" means the legal entity (company, agency, department, or other organization) that subscribes to the Enterprise Service.

"Required Credential" means a credential type that the Organization has designated as mandatory for its Employees, such as a specific license, certification, or identification.

"Shared Credential" means a credential for which the Employee has enabled the employer visibility toggle, allowing the Organization's Admins to view the credential's metadata (title, expiration date, ID number, and compliance status).

"Super Admin" means the Admin who initially created the Organization account and holds the highest level of administrative privilege, including billing management and the ability to delete the Organization.

2. Enterprise Service Description

2.1 Overview

CredMinder Enterprise provides Organizations with tools to track and manage the credential compliance of their workforce. The Enterprise Service consists of:

Admin Dashboard: A web-based administrative interface accessible at enterprise.bepreparededu.com, providing organization management, employee management, compliance tracking, reporting, and notification tools.

Employee App Features: Enterprise-specific features within the existing CredMinder mobile application, including the ability to link to an Organization, share selected credentials with the Organization, and view Required Credentials.

2.2 Eligibility

CredMinder Enterprise is available to organizations based in the United States. By subscribing to the Enterprise Service, the Organization represents and warrants that it is a legal entity organized and existing under the laws of a state of the United States, with a principal place of business in the United States.

2.3 What the Enterprise Service Is

The Enterprise Service is a credential tracking and organizational compliance tool. It enables Organizations to maintain awareness of which Employees hold required credentials and when those credentials expire.

2.4 What the Enterprise Service Is Not

IMPORTANT DISCLAIMER REGARDING HIPAA AND PROTECTED HEALTH INFORMATION

The Enterprise Service is not designed, intended, or authorized for use with Protected Health Information ("PHI") as defined under the Health Insurance Portability and Accountability Act of 1996 ("HIPAA"), as amended, and its implementing regulations. The Company does not operate as a Business Associate under HIPAA and will not enter into a Business Associate Agreement ("BAA").

The Enterprise Service is intended solely for tracking professional credentials, licenses, certifications, and similar workforce compliance documents. It is not intended for and must not be used to store, transmit, or process patient records, medical diagnoses, treatment information, health plan information, or any other information that constitutes PHI.

The Organization acknowledges and agrees that any use of the Enterprise Service to store, transmit, or process PHI is a violation of this Enterprise Addendum and is undertaken entirely at the Organization's own risk. The Company shall bear no responsibility or liability for any breach of HIPAA or related regulations resulting from such unauthorized use.

Additionally, the Enterprise Service:

  • Does not verify, validate, or authenticate the legitimacy of any credential, license, certification, or identification document. The Organization is responsible for verifying credential authenticity through its own processes.
  • Does not constitute legal, regulatory, or compliance advice. The Organization is solely responsible for determining which credentials are required by applicable law, regulation, or policy.
  • Does not guarantee compliance with any federal, state, or local regulatory requirements. Compliance status within the Service reflects only whether credential entries exist and have not expired, not whether the credentials themselves are valid or sufficient.
  • Does not serve as the system of record for any regulatory body. The Organization should maintain its own authoritative compliance records independent of the Service.

2.5 Service Level

The Company will use commercially reasonable efforts to maintain the availability of the Enterprise Service. The Enterprise Service is provided on an "as available" basis consistent with the "AS IS" disclaimer in Section 18 of the Base Terms.

Scheduled maintenance will be communicated to the Organization's Super Admin via email when practicable. Emergency maintenance may occur without advance notice.

The Company does not guarantee any specific uptime percentage. The Enterprise Service is not designed for use as a life-safety system, and is not the sole authoritative record of credential validity. The Organization should maintain independent compliance records and processes.

3. Organization Account and Administration

3.1 Account Creation

The individual who creates the Organization account becomes the initial Super Admin. The Super Admin is responsible for the Organization's use of the Enterprise Service and is the primary point of contact for billing and account management.

3.2 Admin Roles

Organizations may designate up to five (5) Admins. Admin roles are:

Super Admin: Full access to all Enterprise Service features, including organization settings, billing, employee management, compliance reporting, and the ability to transfer the Super Admin role or delete the Organization.

Admin: Access to employee management, compliance reporting, and notification tools. Admins do not have access to billing or organization deletion capabilities.

The Organization is responsible for ensuring that Admin access is granted only to authorized individuals and for promptly revoking access when an Admin's authorization is terminated.

3.3 Super Admin Transfer

The Super Admin role may be transferred to another Admin within the Organization. Transfer requires explicit confirmation from the current Super Admin. Once transferred, the former Super Admin's role is automatically downgraded to Admin.

4. Employee Participation and Credential Sharing

4.1 Linking Process

Employees link their personal CredMinder accounts to the Organization by entering the Organization ID, their Employee ID, and a one-time Access Code provided by an Admin. Linking is voluntary and requires affirmative action by the Employee.

4.2 Employee Data Ownership

Employees retain full ownership and control of their personal CredMinder accounts and all credential data therein. The Organization does not gain ownership of, or unrestricted access to, Employee credential data by virtue of the Employee's Membership in the Organization.

4.3 Credential Sharing

Employees control which personal credentials are visible to the Organization through a per-credential employer visibility toggle. When an Employee enables visibility for a credential:

  • The Organization's Admins can view the credential's title, expiration date, ID number, and compliance status.
  • Credential images and photographs are shared only if the Employee has enabled image sharing for that credential.
  • The Employee may revoke visibility at any time by disabling the toggle, at which point the Organization's access to that credential's data ceases immediately.

Exception for Required Credentials: Employer visibility is automatically enabled and cannot be disabled for Required Credentials while the Employee is linked to the Organization. Required Credentials are shared as a condition of enterprise participation. The Employee's recourse if they do not wish to share a Required Credential is to unlink from the Organization (see Section 4.6).

4.4 Required Credentials

Organizations may designate Required Credentials. When a Required Credential is added, it is automatically added to each active Employee's credential list as a placeholder entry with employer visibility forced on. Employees are responsible for completing the required fields (expiration date, ID number, etc.). The Organization can view the compliance status of Required Credentials through the Admin Dashboard.

Required Credentials do not count toward an Employee's personal credential storage limit. If a Required Credential is later removed by the Organization, it becomes a personal credential subject to the Employee's plan limits.

4.5 Pro Plan Equivalence

Employees linked to an Organization through an active Enterprise subscription receive access equivalent to the CredMinder Pro plan (up to ten personal credential slots) at no additional personal cost for the duration of their active Membership. Features beyond the Pro plan (such as unlimited personal credential storage) require a separate personal subscription.

4.6 Voluntary Unlinking

Employees may voluntarily unlink from the Organization at any time. Upon unlinking:

  • The Employee's Membership is terminated.
  • All credential visibility to the Organization ceases immediately.
  • The Employee's personal CredMinder account and all personal credential data remain intact and unaffected.
  • The Organization is notified of the unlinking.
  • Required Credentials that were auto-added become personal credentials subject to the Employee's plan limits.

5. Organization Responsibilities

The Organization acknowledges and agrees that:

  • It is solely responsible for determining which credentials are required for its workforce and for verifying the authenticity and sufficiency of those credentials through its own processes.
  • It will use the Enterprise Service and any Employee credential data accessed through the Service only for legitimate workforce compliance management purposes.
  • It will not use the Enterprise Service to discriminate against, harass, or retaliate against any Employee.
  • It will not require Employees to share credentials beyond what is reasonably necessary for legitimate compliance purposes.
  • It will ensure that all Admins are trained on the proper use of the Enterprise Service and the confidential nature of Employee credential data.
  • It will not use the Enterprise Service to store, transmit, or process Protected Health Information (PHI), patient records, or any data subject to HIPAA regulations.
  • It will comply with all applicable laws and regulations regarding the collection, use, and storage of Employee credential information.

6. Enterprise Billing and Payment

6.1 Billing Method

Enterprise subscriptions are billed through Stripe, separate from the consumer App Store or Google Play billing. The Organization agrees to provide and maintain a valid payment method with Stripe.

6.2 Billing Basis

The Organization is billed based on the number of Employee Slots created, not the number of Slots claimed by Employees. Deactivated Employees do not count toward the billing total. The Organization may choose monthly or annual billing. Annual billing includes a discount as described in the current pricing schedule.

6.3 Pricing

Pricing is based on a scaled tier structure. The current pricing schedule is available at bepreparededu.com/credminder/enterprise/pricing and is incorporated by reference. The Company reserves the right to modify pricing with thirty (30) days' written notice to the Organization. Price changes take effect at the start of the next billing cycle following the notice period.

6.4 Taxes

All fees are exclusive of applicable taxes. The Organization is responsible for all taxes, duties, and levies arising from its subscription, excluding taxes based on the Company's net income.

7. Data Retention and Employee Deactivation

7.1 Active Employees

Credential data shared by active Employees is available to the Organization in real time through the Admin Dashboard for the duration of the Employee's active Membership.

7.2 Deactivated Employees

When an Employee is deactivated (by an Admin or through voluntary unlinking):

  • Access to the Employee's shared credential data ceases immediately.
  • The Organization's record of the deactivated Employee (name, Employee ID, compliance status at time of deactivation) is retained for the Organization's configured retention period (default: 90 days).
  • Credential images are not retained after deactivation.
  • After the retention period expires, the deactivated Employee's organizational records are permanently deleted.
  • The Employee's personal CredMinder account and credential data are not affected by deactivation.

7.3 Configurable Retention

The Super Admin may configure the data retention period for deactivated Employee records from the Organization Settings. The default retention period is ninety (90) days. This setting applies to all future deactivations; it does not retroactively extend or shorten the retention period for previously deactivated Employees.

8. Organization Cancellation and Deletion

8.1 Subscription Cancellation

The Super Admin may cancel the Enterprise subscription at any time through the Admin Dashboard billing settings. Upon cancellation:

  • The Organization retains access to the Enterprise Service through the end of the current billing period.
  • The Organization may export organizational data (employee rosters, compliance reports, audit logs) through the Admin Dashboard during the remaining billing period.
  • The Admin Dashboard switches to read-only mode after the billing period ends.
  • All Employees are automatically deactivated.
  • Organizational data is retained per the configured retention policy, starting from the cancellation date.
  • Individual Employees retain their personal CredMinder accounts and all personal credential data.

8.2 Organization Deletion

The Super Admin may permanently delete the Organization from the Danger Zone in Organization Settings. Deletion is immediate and irreversible. Upon deletion:

  • All organizational data is permanently deleted, including the organization profile, all Membership records, compliance history, and audit trail entries.
  • All Employees are immediately deactivated.
  • The Stripe subscription is cancelled immediately. No refund is issued for the remainder of the billing period.
  • Individual Employees retain their personal CredMinder accounts.

9. Confidentiality

The Organization acknowledges that Employee credential data accessed through the Enterprise Service is confidential. The Organization agrees to:

  • Limit access to Employee credential data to authorized Admins with a legitimate need.
  • Not disclose Employee credential data to third parties except as required by law or with the Employee's written consent.
  • Implement reasonable administrative and technical safeguards to protect Employee credential data from unauthorized access.
  • Promptly notify the Company if the Organization becomes aware of any unauthorized access to or disclosure of Employee credential data.

10. Prohibited Uses

In addition to the content restrictions in the Base Terms, the Organization shall not:

  • Use the Enterprise Service to store, transmit, or process Protected Health Information (PHI), patient records, or any data subject to HIPAA regulations.
  • Use the Enterprise Service as a medical records system, electronic health record (EHR), or patient management tool.
  • Require Employees to upload documents containing patient information, medical diagnoses, treatment plans, or other health-related information that constitutes PHI.
  • Attempt to access, scrape, or export Employee credential data in bulk for purposes other than legitimate workforce compliance management.
  • Use Employee credential data for marketing, solicitation, or any purpose unrelated to workforce compliance.
  • Circumvent or attempt to circumvent the credential visibility controls that Employees use to manage what data is shared with the Organization.
  • Share Admin credentials or allow unauthorized individuals to access the Admin Dashboard.

11. Enterprise Limitation of Liability

In addition to the limitations set forth in the Base Terms, the Company's total aggregate liability arising from or related to the Enterprise Service shall not exceed the total fees paid by the Organization in the twelve (12) months immediately preceding the event giving rise to the claim.

Without limiting the foregoing, the Company shall not be liable for:

  • Any regulatory fines, penalties, or enforcement actions arising from the Organization's failure to maintain credential compliance through its own processes.
  • Any consequences arising from expired, inaccurate, or incomplete credential data entered by Employees.
  • Any HIPAA violations or breaches resulting from the Organization's unauthorized use of the Service to store or process PHI.
  • The failure of any Employee to link to the Organization, share credentials, or maintain current credential information.
  • Business interruption or operational disruption resulting from Service unavailability.

12. Indemnification

The Organization shall indemnify, defend, and hold harmless the Company and its officers, directors, employees, and agents from and against any claims, damages, losses, liabilities, and expenses (including reasonable attorneys' fees) arising from:

  • The Organization's breach of this Enterprise Addendum.
  • The Organization's misuse of Employee credential data.
  • Any use of the Enterprise Service to store, transmit, or process Protected Health Information in violation of Section 2.4 and Section 10 of this Enterprise Addendum.
  • The Organization's violation of applicable laws or regulations in connection with its use of the Enterprise Service.

13. Term and Termination

13.1 Term

This Enterprise Addendum is effective as of the date the Organization first subscribes to the Enterprise Service and continues for as long as the Organization maintains an active Enterprise subscription.

13.2 Termination by the Organization

The Organization may terminate this Enterprise Addendum at any time by cancelling the Enterprise subscription as described in Section 8.1.

13.3 Termination by the Company

The Company may terminate this Enterprise Addendum immediately upon written notice if the Organization:

  • Breaches any material provision of this Enterprise Addendum or the Base Terms.
  • Uses the Enterprise Service to store, transmit, or process PHI or other data in violation of Section 2.4 or Section 10.
  • Fails to pay fees when due and does not cure such failure within fifteen (15) days of written notice.
  • Uses the Enterprise Service in a manner that poses a security risk to the Service or other users.

13.4 Effect of Termination

Upon termination of this Enterprise Addendum, the provisions of Section 8.1 (Subscription Cancellation) apply. Sections that by their nature should survive termination shall survive, including Sections 9 (Confidentiality), 11 (Enterprise Limitation of Liability), 12 (Indemnification), and this Section 13.4.

14. General Provisions

14.1 Governing Law

This Enterprise Addendum is governed by the laws of the Commonwealth of Virginia, United States, without regard to conflict of law provisions, consistent with Section 19 of the Base Terms.

14.2 Entire Agreement

This Enterprise Addendum, together with the Base Terms, the Privacy Policy, and the Privacy Policy Enterprise Addendum, constitutes the entire agreement between the Organization and the Company regarding the Enterprise Service.

14.3 Amendments

The Company may amend this Enterprise Addendum with thirty (30) days' written notice to the Organization's Super Admin. Continued use of the Enterprise Service after the effective date of the amendment constitutes acceptance of the amended terms.

14.4 Notices

All notices under this Enterprise Addendum shall be sent to the email address associated with the Organization's Super Admin account, or for notices to the Company, to support@bepreparededu.com.

14.5 Assignment

The Organization may not assign this Enterprise Addendum without the Company's prior written consent. The Company may assign this Enterprise Addendum in connection with a merger, acquisition, or sale of all or substantially all of its assets.

Contact Us

If the Organization has any questions about this Enterprise Addendum:

By email: support@bepreparededu.com

Online: www.bepreparededu.com/contact

This Enterprise Terms of Service Addendum is effective as of April 2, 2026 and applies to all Organizations subscribing to the CredMinder Enterprise Service.