HIPAA Compliant Cloud - Ep 80
In early Oct the long awaited guidance on HIPAA Compliant Cloud was released by HHS / OCR. There wasn't a lot of shocking information for us since it just restated, maybe more clearly, that cloud services providers (CSPs) must sign a BAA and meet certain obligations as a BA.
Hopefully, this will address all the cases where some CSPs would use 'slight of hand' with phrasing to claim they didn't have to be a HIPAA compliance cloud provider. The amount of 'all ya gotta do is' type of misinformation only makes things harder to get done. Let's look at what the guidance addressed.
For more details go to HelpMeWithHIPAA.com/80