From 3be4811288e394aa98214dfac9abdcefd5866bf0 Mon Sep 17 00:00:00 2001 From: Leticia Webb <110556185+leticiawebb@users.noreply.github.com> Date: Fri, 27 Sep 2024 22:14:15 -0700 Subject: [PATCH] Update compliance-overview.md --- docs/en/cloud/security/compliance-overview.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/en/cloud/security/compliance-overview.md b/docs/en/cloud/security/compliance-overview.md index 18137f04f76..49f6f3e2d0d 100644 --- a/docs/en/cloud/security/compliance-overview.md +++ b/docs/en/cloud/security/compliance-overview.md @@ -25,7 +25,7 @@ The U.S. Data Privacy Framework was developed to provide U.S. organizations with HIPAA ready services are in private beta in GCP, only available with Dedicated services. A Business Associate Agreement (BAA) is required for onboarding. Please contact sales for more information. ::: -The Health Insurance Portability and Accountability Act (HIPAA) of 1996 is a United States based privacy law focused on management of protected health information (PHI). HIPAA has several requirements, including the [Security Rule](https://www.hhs.gov/hipaa/for-professionals/security/index.html), which is focused on protecting electronic personal health informatino (ePHI). ClickHouse has implemented administrative, physical and technical safeguards to ensure the confidentiality, integrity and security of ePHI stored in designated services. We plan to add HIPAA to our SOC 2 in early 2025 to add external assurance of our compliance program. +The Health Insurance Portability and Accountability Act (HIPAA) of 1996 is a United States based privacy law focused on management of protected health information (PHI). HIPAA has several requirements, including the [Security Rule](https://www.hhs.gov/hipaa/for-professionals/security/index.html), which is focused on protecting electronic personal health informatino (ePHI). ClickHouse has implemented administrative, physical and technical safeguards to ensure the confidentiality, integrity and security of ePHI stored in designated services. We plan to add HIPAA to our SOC 2 in early 2025 to provide external assurance of our compliance program. Customers wishing to load ePHI to services should review our [shared responsibility model](/docs/en/cloud/security/shared-responsibility/model) to review, select and implement appropriate controls for their use case.