Affise is a performance marketing and affiliate tracking platform that helps advertisers, networks, and agencies run, track, and optimize partner marketing campaigns
Is Affise HIPAA compliant? No, based on our research, Affise is not HIPAA compliant.
No, Affise will not sign a BAA and therefore is not HIPAA compliant.
Affise’s e-privacy white paper describes its commitments to data protection and lists technical and organizational measures. It focuses on compliance with privacy laws such as GDPR and ePrivacy and explains controls such as access management, encryption at rest and in transit, logging, and incident response procedures. Key coverage items described in the white paper include:
Affise does not sign a business associate agreement and is therefore not HIPAA compliant for handling PHI in typical covered-entity scenarios. Covered entities should not send PHI to Affise unless an executed BAA is in place.
Learn more: HIPAA Compliant Email: The Definitive Guide
A BAA is a legally binding contract establishing a relationship between a covered entity and its business associates. The purpose of this agreement is to ensure the proper protection of PHI as required by HIPAA regulations.
HIPAA sets national standards for protecting the privacy and security of certain health information. HIPAA is designed to protect the privacy and security of individuals’ health information and to ensure that healthcare providers and insurers can securely exchange electronic health information.
HIPAA applies to covered entities, healthcare providers, health plans, and healthcare clearinghouses, and to business associates that perform services for covered entities and have access to PHI.