The Health Insurance Portability and Accountability Act and associated regulations are U.S laws establishing requirements regarding the use, disclosure, and safeguarding of individually identifiable health information. Where a covered entity or a business associate (as defined under HIPAA) instructs CyberArk to process such health information, CyberArk could itself become a business associate depending on the nature of the services provided and information processed. We have listed below the CyberArk covered services.
CyberArk HIPAA covered services:
CyberArk’s Business Associate Agreement: