activeUnited States
Health Insurance Portability and Accountability Act
HIPAA governs the privacy and security of Protected Health Information (PHI) in the United States. AI vendors operating in healthcare must meet HIPAA Security Rule requirements (access controls, audit logs, integrity, encryption) and sign BAAs with covered entities. HIPAA applies directly to many AI use cases in clinical decision support, diagnostics, and healthcare operations.
Jurisdiction
United States
Enforcement
See overview
Maximum penalty
Varies by violation
Vendors that support HIPAA
Sorted by coverage level. Full coverage shown first.
4 vendors
| Vendor | HQ | Founded | Size | Pricing | Coverage | Last verified |
|---|---|---|---|---|---|---|
| Scrut Automation | Palo Alto, US | 2021 | 51-200 | Contact for pricing | Comprehensive | Apr 24, 2026 |
| Braintrust | San Francisco, US | 2023 | 51-200 | Contact for pricing | Comprehensive | Apr 24, 2026 |
| Drata | San Francisco, US | 2020 | 501-1000 | Contact for pricing | Comprehensive | Apr 24, 2026 |
| Giskard | Paris, France | 2021 | 11-50 | Contact for pricing | Comprehensive | Apr 24, 2026 |
Compare across industries
See which vendors support HIPAA in your sector.
HIPAA in Defense & National SecurityHIPAA in EducationHIPAA in Employment & HRHIPAA in Energy & UtilitiesHIPAA in Financial ServicesHIPAA in Government & Public SectorHIPAA in HealthcareHIPAA in InsuranceHIPAA in Legal ServicesHIPAA in ManufacturingHIPAA in Media & EntertainmentHIPAA in Retail & E-commerceHIPAA in SaaS & TechnologyHIPAA in Telecommunications
Last verified April 24, 2026. Informational summary only — not legal advice. Consult qualified counsel for specific obligations.