Business Associate Agreement

KeepTrack acts as a Business Associate under HIPAA when processing Protected Health Information (PHI) on behalf of covered healthcare providers. A Business Associate Agreement (BAA) formalizes the responsibilities of both parties regarding the handling of PHI.

A Business Associate Agreement is a legally required contract under HIPAA between a covered entity (such as a dental practice) and a business associate (KeepTrack) that specifies each party's obligations for safeguarding PHI.

• Use or disclose PHI only as permitted or required under the BAA
• Implement appropriate safeguards to prevent unauthorized use or disclosure
• Report any security incidents or breaches involving PHI
• Ensure sub-processors maintain equivalent protections
• Return or destroy PHI upon termination of services

• Notify KeepTrack of any restrictions on PHI use that may affect services
• Obtain any required authorizations before providing PHI
• Not request KeepTrack to use or disclose PHI in a manner that violates HIPAA

Covered entities may request a signed copy of the KeepTrack Business Associate Agreement by contacting: