HIPAA Inheritance
Wildfire Labs partners with Datica for HIPAA compliant and HITRUST CSF certified hosting. Datica's Platform-as-a-Service ("PaaS") allows customers such as Wildfire Labs to inherit certain administrative, physical, technical, organizational, and policy controls as required by HIPAA and HITECH. This section outlines HIPAA and HITECH requirements that Wildfire Labs inherits from Datica (all Datica policies can be found here):
Administrative Controls
HIPAA Rule
Datica Policy Link
Wildfire Labs Inheritance
Security Management Process - 164.308(a)(1)(i)
Yes
Assigned Security Responsibility - 164.308(a)(2)
Partially
Workforce Security - 164.308(a)(3)(i)
Partially
Information Access Management - 164.308(a)(4)(i)
Yes
Security Awareness and Training - 164.308(a)(5)(i)
No
Security Incident Procedures - 164.308(a)(6)(i)
Yes
Contingency Plan - 164.308(a)(7)(i)
Yes
Evaluation - 164.308(a)(8)
Yes
Technical Safeguards
HIPPA Rule
Datica Policy Link(s)
Wildfire Labs Inheritance
Access Control - 164.312(a)(1)
Partially
Audit Controls - 164.312(b)
Yes
Integrity - 164.312('c’)(1)
Yes
Person or Entity Authentication - 164.312(d)
Yes
Transmission Security - 164.312(e)(1)
Yes
Organizational Requirements
HIPAA Rule
Datica Policy Link(s)
Wildfire Labs Inheritance
Business Associate Contracts or Other Arrangements - 164.314(a)(1)(i)
Partially
Policies and Procedures and Documentation Requirements
HIPAA Rule
Datica Policy Link(s)
Wildfire Labs Inheritance
Policies and Procedures - 164.316(a)
Partially
Documentation - 164.316(b)(1)(i)
Partially
HITECH Act - Security Provisions
HIPAA Rule
Datica Policy Link(s)
Wildfire Labs Inheritance
Notification in the Case of Breach - 13402(a) and (b)
Breach Policy
Partially
Timelines of Notification - 13402(d)(1)
Breach Policy
Partially
Content of Notification - 13402(f)(1)
Breach Policy
Partially
Last updated