The BAA is a document that establishes a legally-binding relationship between the client (you) and FHG to ensure complete protection of the personal health information of the client’s (your) patients. FHG uses its standard BAA template or works with the client’s. A BAA is required to be executed before FHG can access any personal health information (PHI).
Your Health System reviews the adequacy of your vendor’s security and privacy safeguards and data protection measures. The review covers our policies and procedures, and infrastructure. FHG’s SOC 2 Type II compliance ensures that clients get assurance on the safety and security of their data. Our approach ensures significantly fast value — delivery once data is acquired.
Health Systems usually review/audit the adequacy of security and privacy safeguards for anyone that receives a patient’s personal health information. This is done to ensure that the recipient (in this case FHG) has comprehensive data protection measures in place. The review covers policies, procedures, and infrastructure. FHG’s SOC 2 Type II compliance ensures that clients get assurance on the safety and security of their data.
