HIPAA (the Health Insurance Portability and Accountability Act of 1996) is U.S. legislation created to improve healthcare standards.
We know the HIPAA industry is vast and that it is important to work well and communicate with patients while remaining HIPAA compliant.
SEE ALSO: HIPAA compliant email
Today, we will determine if Adobe Experience Platform is HIPAA compliant or not.
About Adobe Experience Platform
The Adobe Experience Platform is an open system that transforms data into customer profiles on an easy-to-use dashboard. It is one of several Adobe products created to make doing business simpler.
With this and similar products, organizations can centralize and standardize customer information to improve and enrich encounters.
In a sense, a storyboard is created that visualizes a customer’s interaction with an organization.
Adobe Experience Platform updates in real-time and uses AI-driven learning models to gain insights to develop the right experience.
Adobe Experience Platform and the business associate agreement
A major part of HIPAA compliance is ensuring a business associate will sign a business associate agreement (BAA). A business associate is a person or entity that performs certain functions or activities that involves the use or disclosure of PHI.
According to Adobe’s compliance web page, certain service offerings can be HIPAA compliant such as Adobe Document Cloud and Adobe Managed Services. Adobe Experience Cloud is currently not listed as HIPAA-ready.
The only available information on Adobe signing a BAA is directed at Adobe Sign customers.
Adobe Experience Platform and cybersecurity
Adobe Experience Platform features several cybersecurity elements to secure data:
- API-first sandboxes
- Access controls and user permissions
- Labels to classify data
- Policy framework and enforcement
At the same time, Adobe’s compliance page states that “the customer [rather than the company] is responsible for ensuring compliance.” This is reiterated within the Privacy Service.
In other words, it is up to organizations to know what they can share and how as Adobe cannot guarantee the complete security of data.
Is Adobe Experience Platform HIPAA compliant?
The BAA is a key component of HIPAA compliance and Adobe does not appear to sign a BAA for Adobe Experience Cloud or Platform. Furthermore, Adobe states that these products are not HIPAA-ready and that the company cannot ensure compliance with the federal regulation.
Adobe Experience Platform is not HIPAA compliant.