HIPAA Inheritance

Wildfire Labs partners with Datica for HIPAA compliant and HITRUST CSF certified hosting. Datica's Platform-as-a-Service ("PaaS") allows customers such as Wildfire Labs to inherit certain administrative, physical, technical, organizational, and policy controls as required by HIPAA and HITECH. This section outlines HIPAA and HITECH requirements that Wildfire Labs inherits from Datica (all Datica policies can be found here):

Administrative Controls

HIPAA Rule

Datica Policy Link

Wildfire Labs Inheritance

Security Management Process - 164.308(a)(1)(i)

Yes

Assigned Security Responsibility - 164.308(a)(2)

Partially

Workforce Security - 164.308(a)(3)(i)

Partially

Information Access Management - 164.308(a)(4)(i)

Yes

Security Awareness and Training - 164.308(a)(5)(i)

No

Security Incident Procedures - 164.308(a)(6)(i)

Yes

Contingency Plan - 164.308(a)(7)(i)

Yes

Evaluation - 164.308(a)(8)

Yes

Technical Safeguards

HIPPA Rule

Datica Policy Link(s)

Wildfire Labs Inheritance

Access Control - 164.312(a)(1)

Partially

Audit Controls - 164.312(b)

Yes

Integrity - 164.312('c’)(1)

Yes

Person or Entity Authentication - 164.312(d)

Yes

Transmission Security - 164.312(e)(1)

Yes

Organizational Requirements

HIPAA Rule

Datica Policy Link(s)

Wildfire Labs Inheritance

Business Associate Contracts or Other Arrangements - 164.314(a)(1)(i)

Partially

Policies and Procedures and Documentation Requirements

HIPAA Rule

Datica Policy Link(s)

Wildfire Labs Inheritance

Policies and Procedures - 164.316(a)

Partially

Documentation - 164.316(b)(1)(i)

Partially

HITECH Act - Security Provisions

HIPAA Rule

Datica Policy Link(s)

Wildfire Labs Inheritance

Notification in the Case of Breach - 13402(a) and (b)

Breach Policy

Partially

Timelines of Notification - 13402(d)(1)

Breach Policy

Partially

Content of Notification - 13402(f)(1)

Breach Policy

Partially

Last updated