We are pleased to announce that we now offer a HIPAA-compliant business associate agreement (BAA) for our HIPAA-secure Elasticsearch Service.
HIPAA (or the Health Insurance Portability and Accountability Act of 1996) is United States legislation that provides data privacy and security provisions for safeguarding medical information. The HIPAA rules apply to “covered entities” that handle data that is protected health information (PHI), such as insurance companies or doctors' offices, and extend to business associates like Elastic who process PHI on behalf of such covered entities.
This new milestone allows users who are subject to the HIPAA rules to leverage Elasticsearch Service and its rich feature sets to process, manage, and store PHI. To make Elasticsearch Service easier for users looking to bring rich search capabilities to PHI data, our recognition of HIPAA compliance and ability to enter BAAs extend across Azure, GCP, and AWS across all regions and subscription tiers.
New to the Elasticsearch Service? Get started with a 14-day trial today — all you need is an email address.
To learn more about our HIPAA-ready solution or our BAA, please contact your Elastic sales representative or reach out through our contact page.