Dash HIPAA Compliant Cloud

Build healthcare applications and manage HIPAA compliant hosting

Your HIPAA Compliant Cloud


Custom Compliance Policies

Use Dash to build your team’s security program and HIPAA administrative policies. Dash enables your team to generate custom compliance policies based around your organization’s needs, structure, and technologies.

Your HIPAA Compliant Cloud



Technical Security Controls

Dash establishes a set of HIPAA technical controls based around your organization’s established policies. Controls are built around cloud services, best security practices, and HIPAA/HITECH standards.

Your HIPAA Compliant Cloud



Continuous Compliance Monitoring

Dash monitors your AWS account for HIPAA configuration and security issues. Dash alerts your team when about compliance concerns before they become full-blown violations.

Your HIPAA Compliant Cloud

Start Building HIPAA Compliant Applications

Fulfill HIPAA Requirements With Dash


Dash enables teams to plan and implement compliance safeguards and security controls including the following

Compliance Roles

Designate Security and Privacy Officer roles and define HIPAA compliance responsibilities within the organization.

Employee Training & Policies

Create policies for managing HIPAA requirements related to employee training and system access. Dictate access to PHI and sensitive data.

Audit Logging

Configure an audit logging solution and determine how logs are collected, reviewed, and accessed to meet HIPAA requirements.

Intrusion Detection

Implement and perform intrusion detection. Find malicious behavior and compliance issues before they become violations.

Risk Assessment & Review

Address HIPAA risk assessment and risk analysis requirements. Set review periods for gathering compliance information, reviewing safeguards, and handling reports.

Incident Response & Breach Notification

Create a standard operating procedure for responding to security incidents. Set policies for notifying customers and vendors of potential HIPAA security breaches.

Disaster Recovery

Setup a Disaster Recovery team and set Recovery Time Objectives (RTOs) for responding to application and service availability issues within your organization.

Data Encryption & Decryption

Set standard policies and technical controls for encrypting PHI data in-transit and at-rest on AWS.

Download Our Guide To Managing HIPAA In AWS

Trusted By Healthcare Innovators


From healthcare providers to software services and medical devices. You’re in good company.

imageimageimageimage

Address HIPAA Requirements


Dash compliance controls are built around cloud computing and HIPAA safeguards such as

164.312(a)(2)(iv) Encryption and Decryption

Ensure that all cloud data volumes, cloud databases, and transmitted data is encrypted.

164.308(a)(7)(i) Protection from Malicious Software

Ensure that cloud network and security groups do not expose ports or access that may compromise PHI.

164.308(a)(4)(i) Information Access Management

Ensure that your company uses proper user roles and policies in AWS. Avoid HIPAA violations stemmed from access issues.

164.312(b) Audit Controls

Ensure that your organization’s logs are properly collected, aggregated, and analyzed.

164.308(a)(1)(ii)(A) Risk Analysis

Set procedures for conducting risk assessments. Receive alerts and notifications for remediating compliance issues.

164.310(a)(1) Facility Access Controls

Address physical security requirements utilizing Amazon Web Services safeguards provided under BAA.

Build and manage healthcare solutions with
the Dash HIPAA Compliant Cloud

Cloud-Driven Compliance

Dash enables organizations to build a robust HIPAA security plan and security controls for Amazon Web Services and the public cloud.


AMI Deployed

Dash is deployed into your AWS Cloud account and allows teams to manage cloud services.

Utilize 100+ Cloud Services

Dash can be used alongside the hundreds of AWS cloud services to rapidly build, manage and get-to-market.

Cloud-Driven Compliance

Unlock The Cloud For Healthcare

Address HIPAA compliant hosting requirements