HIPAA on Amazon Web Services
Understanding The Regulatory Roadmap For HIPAA on AWS
Andrew Hicks | HITRUST CSF Practice Director, Healthcare Practice Lead | MBA, CCM, CRISC
Many organizations have adopted, or are actively considering, cloud technologies to improve their business. The speed, scale, flexibility, and variety of cloud options drive greater adoption every year. For organizations handling healthcare information, decisions about cloud approaches present additional challenges. Specifically, gaining an understanding of privacy and security management practices is key, as security is a shared responsibility in the cloud. This paper presents the background of HIPAA regulation, key components related to cloud adoption, and the unique capabilities of Amazon Web Services (AWS) related to the Health Insurance Portability and Accountability Act (HIPAA).
HIPAA was initially enacted by the U.S. Congress in 1996. Title II of the law defines the policies, procedures, and guidelines for maintaining the privacy and security of an individual’s protected health information (PHI). HIPAA has since been amended several times.
This white paper requires registration. Please fill out the form to receive access.