HIPAA

Silo by Authentic8 is a HIPAA-compliant service that can be leveraged by covered entities (health plans, health care clearinghouses, and health care providers). This allows customers who have executed a business associate addendum (BAA) with Authentic8 to use Silo for the processing, storage, and transmission of protected health information (PHI).

The Health Insurance Portability and Accountability Act of 1996 (HIPAA) ensures that PHI is secured and maintained with appropriate privacy controls. In addition to HIPAA rules that apply to covered entities — organizations and individuals who directly interact with patient data — certain rules also apply to business associates that these entities use to perform their work (such as Silo). As a component of its HIPAA compliance, in conjunction with Authentic8’s existing information security program and as defined within the BAA, covered entities are assured:

1. Silo ensures the confidentiality, integrity, and availability of electronic PHI
2. Authentic8 identifies and protects against reasonably anticipated threats to the security or integrity of Silo information systems and the data it processes, transmits, or stores
3. Silo protects against reasonably anticipated, impermissible uses or disclosures
4. Authentic8 ensures compliance by its personnel, and Silo can be leveraged by customers to ensure the same

Authentic8 maintains a standard BAA that can be signed by customers who wish to use Silo as a HIPAA compliant service. This BAA defines how covered entities may use Silo and incorporates any applicable customer responsibilities. Customers can request a copy of Authentic8’s BAA by email to legal@authentic8.com.