📘

Review What is a BAA? to learn more about what should be added in this step.

👍

SKIP this step if... you do not have any signed BAAs to upload.

Steps

1. Add a BA Profile
2. Upload BAA to BA Profile

Retrieving BAAs from 3rd Party Software Vendors

• Microsoft
• AWS
• Google
• Other 3rd Party Software Vendors

1. Add a BA Profile

👍

If you have already added a BA Profile for the BAA for which you have a signed BAA that you'd like to upload, you can skip this step!

Follow the How to Add a BA documentation, then come back to this page for Step 2.

2. Upload BAA to BA Profile

❗️

Attaining signed BAAs from your BAs is an annual requirement under HIPAA.

You can upload historical BAAs to Accountable in order to keep your documentation in one place, however if the BAA you uploaded's Effective Date is more than 12 months ago, then you will also need to retrieve a new BAA to meet HIPAA compliance standards.

From your Dashboard, Navigate to the Third Parties tab > Select Manage All

Select 3rd Party Company Name for which you would like to upload a BAA

In the Profile tab, in the Documents section, Select Upload Document

Once uploaded, Select Save

Retrieving BAAs from 3rd Party Software Vendors

Microsoft

🚧

A BAA is typically only available for business and enterprise-level Microsoft subscriptions that are configured for HIPAA compliance. A personal Microsoft account will not have a BAA.

📘

In many cases, the BAA is automatically included with the subscription when you purchase it directly from Microsoft, and the step is to simply accept it in one of the portals mentioned above.

• Info page: https://learn.microsoft.com/en-us/compliance/regulatory/offering-hipaa-hitech
• Downloadable BAA: https://servicetrust.microsoft.com/DocumentPage/d60051b9-8b5a-4794-9844-033773faaeb0

AWS

• Instructions: https://aws.amazon.com/blogs/security/accept-a-baa-with-aws-for-all-accounts-in-your-organization/

Google

🚧

You must be a Google Workspace Administrator and accept the agreement through the Admin console.

• Instructions: https://support.google.com/a/answer/3407054?hl=en#zippy=

Other 3rd Party Software Vendors

📘

With other software vendors, you'll generally need to work through their support team to get access to a BAA.

🚧

With other software vendors, in certain cases BAAs are only available with certain plans. And/or you may have to request that your account be setup for HIPAA compliance.

Next Steps

• How to Setup your Company Signatory
• How to Setup your BAA Template
• How to Send a BAA