HIPAA, the Health Insurance Portability and Accountability Act, is a U.S. law that governs how Protected Health Information (PHI) is handled. Any vendor that processes PHI on behalf of a covered entity, like a hospital or insurer, is a Business Associate, and the relationship has to be backed by a signed Business Associate Agreement (BAA).
Signing a BAA
To run tasks that process PHI on Trigger.dev Cloud, you'll need a signed BAA with us. Once that's in place we'll migrate you to our HIPAA infrastructure.
HIPAA is available as a paid add-on. To get started, you can request a BAA via our contact form.
Security and compliance at Trigger.dev
You can learn more about our security posture and compliance stack on our dedicated security page.
All HIPAA Business Associate controls, alongside our SOC 2 Type II and GDPR compliance details, are available on our Security Portal, which is managed and constantly monitored by a third-party security company.