business associate agreement

Hello, We are interested in using pidgin with the otr plugin for messaging between staff, as pidgin-otr has high ratings/reviews. We are a doctor's office and therefore governed by the rules of HIPAA. Would it be possible to get a business associate agreement between our company and pidgin

Re: business associate agreement

Do you need a similar agreement with Microsoft for your use of Windows? Word? Excel? Do you need a similar agreement with the vendor of your appointment scheduling vendor? Basically, I highly doubt that HIPPA requires that you sign a business associate agreement with every software vendor you

Re: business associate agreement

On 01/06/15 19:26, Catherine Galle wrote: We are interested in using pidgin with the otr plugin for messaging between staff, as pidgin-otr has high ratings/reviews. We are a doctor's office and therefore governed by the rules of HIPAA. Would it be possible to get a business associate agreement

Re: business associate agreement

On 01/06/15 21:35, Catherine Galle wrote: Yes we are required to have a 'BAA' with our appointment scheduling software. We do not have to have an agreement with Windows as nothing that is considered electronic protected health information is submitted to or through them. If you use Windows

Re: business associate agreement

governed by the rules of HIPAA. Would it be possible to get a business associate agreement between our company and pidgin? Sincerely, Catherine ___ Support@pidgin.im mailing list Want to unsubscribe? Use this link: https://pidgin.im/cgi

Re: business associate agreement

and therefore governed by the rules of HIPAA. Would it be possible to get a business associate agreement between our company and pidgin? Sincerely, Catherine ___ Support@pidgin.im mailing list Want to unsubscribe? Use

Re: business associate agreement

, as pidgin-otr has high ratings/reviews. We are a doctor's office and therefore governed by the rules of HIPAA. Would it be possible to get a business associate agreement between our company and pidgin? No single legal person owns Pidgin. Whilst I'm not familiar with the sort

Re: business associate agreement

/reviews. We are a doctor's office and therefore governed by the rules of HIPAA. Would it be possible to get a business associate agreement between our company and pidgin? No single legal person owns Pidgin. Whilst I'm not familiar with the sort of agreement you are talking about, I rather suspect

Re: business associate agreement

It's also worth noting, though, that OTR will disable logging and will delete messages along with their encryption key when the conversation ends. So, if nothing records the messages on either machine *during the conversation*, they cannot be retrieved. I'm assuming you already know this, Luke,

Re: business associate agreement

The server can, and must be assumed to, record. For most OTR conversations, it can be safely assumed that the time to brute force the messages, especially since with OTR you have to brute force them effectively individually, is prohibitive. But it should be evaluated if that risk is