Based on our research, Amazon EC2 Mac Instances is HIPAA compliant because it meets the requirements set by the U.S. Department of Health and Human Services (HHS) to safeguard protected health information (PHI).
What is Amazon EC2 Mac Instances?
Amazon EC2 Mac Instances are a specialized offering within Amazon Web Services (AWS) that allows users to run macOS environments in the cloud for development and testing purposes.
With Amazon EC2 Mac Instances, organizations can leverage scalable macOS compute power on-demand, reducing hardware costs and streamlining app development.
Will Amazon EC2 Mac Instances sign a business associate agreement (BAA)?
Yes, Amazon EC2 Mac Instances will sign a business associate agreement, which can be reviewed here.
What does the Amazon EC2 Mac Instances BAA cover?
The AWS BAA covers the use and disclosure of protected health information (PHI), stating:
"AWS maintains a standards-based risk management program to ensure that the HIPAA-eligible services specifically support HIPAA administrative, technical, and physical safeguards. Using these services to store, process, and transmit PHI helps our customers and AWS address the HIPAA requirements applicable to the AWS utility-based operating model."
Their BAA covers:
- Encryption of PHI at rest and in transit
- Access controls
- Auditing
- Incident response
- Data backup plan
- Disaster recovery
Is Amazon EC2 Mac Instances HIPAA compliant?
Amazon EC2 Mac Instances signs a BAA, and as a result, is HIPAA compliant when used in accordance with AWS’s HIPAA implementation guidelines.
The HIPAA compliant solution: Paubox
Paubox has developed a HIPAA compliant email and texting solution that makes it easier for providers to connect with their patients. It eliminates the need for third-party apps or logins, allowing patients to receive secure, encrypted texts and emails directly on their phones.
FAQS
What is HIPAA?
HIPAA sets national standards for protecting the privacy and security of certain health information.
HIPAA is designed to protect the privacy and security of individuals’ health information and to ensure that healthcare providers and insurers can securely exchange electronic health information. Violations of HIPAA can result in significant fines and penalties for covered entities.
Who does HIPAA apply to?
HIPAA applies to covered entities, which include healthcare providers, health plans, and healthcare clearinghouses. It also applies to business associates of these covered entities. These are entities that perform certain functions or activities on behalf of the covered entity.
What is a business associate agreement?
A BAA is a legally binding contract establishing a relationship between a covered entity under HIPAA and its business associates.
Kirsten Peremore
