Business Associate Addendum

Aduvera hat das Google Cloud HIPAA Business Associate Addendum aktiv. Für geeignete U.S.-Covered Entities und Business Associates, die vertragliche HIPAA-Abdeckung benötigen, stellt Aduvera eine separate Kunden-BAA bereit.

Die Kunden-BAA wird auf Organisationsebene gehandhabt und ist vom Standard-Clickwrap für Website und Produkt getrennt.

Aduvera's BAA is intended for eligible covered entities, business associates, and similar healthcare organizations that require HIPAA contractual coverage for permitted use of the service.

• Permitted and required uses and disclosures of PHI.
• Administrative, technical, and physical safeguards.
• Subcontractor flow-down obligations.
• Breach and security-incident notification cooperation.
• Return or destruction of PHI when the relationship ends, subject to law.
• Reasonable support for access, amendment, and accounting obligations where applicable.

A cloud-provider BAA does not, by itself, make every customer workflow HIPAA-compliant. Customers remain responsible for their own policies, workforce training, patient notices, role-based access, minimum-necessary use, and whether a separate customer BAA is legally required for the relationship.

BAA- und HIPAA-Readiness-Anfragen können an die unten angegebene Kontaktadresse gesendet werden.

legal [at] aduvera.ai