This web page provides an overview of the Health Insurance Portability and Accountability Act (HIPAA) compliance requirements. It covers the relevant legislation, required procedures, and ways that your business can achieve compliance.

    The new HIPAA rules specifically defines cloud service providers (CSPs) as business associates.

    “...document storage companies maintaining protected health information on behalf of covered entities are considered business associates, regardless of whether they actually view the information they hold.”

    HIPAA Review Policy

    MSPs and VARs must have a clear strategy and plans for reducing potential liability.