HIPAA Guardian MCP Server

Implementation Reference

• server.ts:334-364 (handler)

  The handler function for the 'getPrivacyPolicyPoints' tool. It returns a structured text response containing a checklist of essential sections and topics to include in a privacy policy.
  async () => { return { content: [{ type: 'text', text: ` # Key Topics for a Privacy Policy This is a guide to help structure a privacy policy. You must consult with legal counsel to draft the final document. 1. **What Information We Collect:** * Explicitly list the types of data you collect (e.g., email address, name, IP address, usage data). * Distinguish between data the user provides directly and data you collect automatically. 2. **How We Use Your Information:** * Explain the purpose for collecting the data (e.g., to provide the service, for marketing, for analytics). 3. **How We Share Your Information:** * List the categories of third parties with whom you share data (e.g., cloud providers, analytics services, payment processors). * Explain the circumstances under which you might share data (e.g., with user consent, for legal reasons). 4. **Data Security:** * Briefly describe the measures you take to protect user data (e.g., encryption, access controls). 5. **Data Retention:** * Explain how long you keep user data and your policy for deleting it. 6. **Your Rights and Choices:** * Detail the rights users have regarding their data (e.g., right to access, right to delete, right to opt-out of marketing). 7. **Contact Information:** * Provide a clear way for users to contact you with privacy-related questions. 8. **Policy Updates:** * Explain how you will notify users of changes to the privacy policy. ` }] }; }
• server.ts:330-333 (schema)

  The schema definition for the 'getPrivacyPolicyPoints' tool, including description and an empty input schema (z.object({})) indicating no input parameters are required.
  { description: 'Provides a checklist of key sections and topics that should be included in a user-facing privacy policy. This is for guidance only and is not legal advice.', schema: z.object({}), },
• server.ts:328-365 (registration)

  The registration of the 'getPrivacyPolicyPoints' tool using server.tool(), including schema and inline handler implementation.
  server.tool( 'getPrivacyPolicyPoints', { description: 'Provides a checklist of key sections and topics that should be included in a user-facing privacy policy. This is for guidance only and is not legal advice.', schema: z.object({}), }, async () => { return { content: [{ type: 'text', text: ` # Key Topics for a Privacy Policy This is a guide to help structure a privacy policy. You must consult with legal counsel to draft the final document. 1. **What Information We Collect:** * Explicitly list the types of data you collect (e.g., email address, name, IP address, usage data). * Distinguish between data the user provides directly and data you collect automatically. 2. **How We Use Your Information:** * Explain the purpose for collecting the data (e.g., to provide the service, for marketing, for analytics). 3. **How We Share Your Information:** * List the categories of third parties with whom you share data (e.g., cloud providers, analytics services, payment processors). * Explain the circumstances under which you might share data (e.g., with user consent, for legal reasons). 4. **Data Security:** * Briefly describe the measures you take to protect user data (e.g., encryption, access controls). 5. **Data Retention:** * Explain how long you keep user data and your policy for deleting it. 6. **Your Rights and Choices:** * Detail the rights users have regarding their data (e.g., right to access, right to delete, right to opt-out of marketing). 7. **Contact Information:** * Provide a clear way for users to contact you with privacy-related questions. 8. **Policy Updates:** * Explain how you will notify users of changes to the privacy policy. ` }] }; } );