← Back to Blog List

BirthBridge HIPAA Business Associate Agreement (BAA) Program Overview

Business Associate Agreement (BAA)

Introduction

This page outlines how BirthBridge approaches the handling of Protected Health Information (PHI) and the availability of a Business Associate Agreement (BAA) for eligible users.

BirthBridge provides communication and coordination tools that may be used by healthcare and birth professionals in connection with services that involve sensitive personal information. Because of this, certain use cases may fall under the scope of the Health Insurance Portability and Accountability Act of 1996 (HIPAA).

BirthBridge’s Role

BirthBridge operates as a technology platform that connects families with birth professionals and provides tools such as video calling, messaging, and scheduling.

Depending on how the platform is used, BirthBridge may act as a Business Associate when it facilitates the transmission of PHI on behalf of a Covered Entity or healthcare provider.

BirthBridge does not provide medical care and does not control how providers deliver services. Its role is limited to providing the infrastructure that supports communication and coordination.

Handling of Protected Health Information (PHI)

BirthBridge is designed to minimize the storage of sensitive information.

  • Video calls are not recorded or stored by BirthBridge

  • Messaging is not intended for long term storage or archival use

  • Any PHI exchanged occurs primarily during active, real time interactions

While PHI may be transmitted through the platform during use, BirthBridge limits persistent storage wherever possible and focuses on facilitating secure, real time communication.

Security Measures

BirthBridge implements reasonable administrative, technical, and physical safeguards designed to protect information handled through the platform.

These measures include:

  • Encryption of data in transit

  • Access controls to limit unauthorized use

  • Audit logging to track platform activity

  • Ongoing efforts to improve system security and reliability

Security practices are continuously evaluated and updated as the platform evolves.

Business Associate Agreement (BAA) Availability

BirthBridge offers a Business Associate Agreement for users and organizations that require one in connection with their use of the platform.

If you are a healthcare provider or organization that requires a BAA, you may request one by contacting us directly.

User Responsibilities

Healthcare providers and organizations using BirthBridge are responsible for ensuring their own compliance with applicable laws and regulations, including HIPAA.

This includes:

  • Determining whether the platform is appropriate for their specific use case

  • Using the platform in a manner consistent with their compliance obligations

  • Implementing their own policies and safeguards as required

BirthBridge does not replace the need for independent compliance review by each user.

Limitations and Disclaimers

BirthBridge is designed to support secure communication, but no system can guarantee absolute security.

Use of the platform does not, by itself, ensure compliance with HIPAA or other regulations. Users are responsible for evaluating how the platform fits within their overall compliance framework.

BirthBridge makes no representations that it is a substitute for professional legal or compliance advice.

Pinned Article

We use cookies to understand how families find support on BirthBridge. Nothing is sold or shared. Privacy policy