Turn-key HIPAA compliant hosting on AWS

Hi there–

I just discovered your blog post about HIPAA compliant hosting for Open EMR. I’m very excited by this because I’m working on an open source application for small community transportation providers, many of whom also provide medical transportation.

I’m in the process of reviewing your devops repo, but before I come back with any questions on the nuts and bolts of your approach, I wanted to say hello as a kindred spirit in an adjacent and complementary field. If you have any additional resources you can point me to as I explore HIPAA compliant hosting, please don’t hesitate to share them.

Thanks,
Kevin Chambers

Hi Kevin, welcome to the community! As far as HIPAA compliant hosting goes, it is really up to each hosting provider to lay the foundations for HIPAA eligibility. For instance, AWS offers various required approaches in their infrastructure such as built-in encryption (as an example). Perhaps @jesdynf may know a bit more, he helped architect our AWS packages.

Cheers,
Robert