If you’re in the vendor selection process for HIPAA compliant hosting services, one of the first items on your list should be evaluating the complexity and availability of each vendor’s Business Associate Agreement (BAA). Although any cloud service provider (CSP) worth its salt will be well aware of the legal obligation (in specific circumstances) to sign a BAA and will not be hesitant to discuss the process with any of its Covered Entity customers, it’s still best to be prepared.
Following is a brief BAA checklist to run down with any potential business associate or cloud hosting provider prior to signing the dotted line:
Still uncertain about the need for a BAA with your cloud computing resources? Contact HOSTING today to discuss your specific HIPAA compliance needs or any questions you might have during your quest for cloud compliance.