Pipedream supports HIPAA compliance

Pipedream is a platform designed for running serverless workflows with a strong emphasis on security, including annual SOC 2 Type 2 reports and third-party penetration tests. The platform supports HIPAA workloads for Enterprise customers, allowing the processing of protected health information (PHI) in workflows and other services, with a Business Associate Agreement (BAA) required for compliance. Pipedream offers advanced security controls such as access restrictions for connected accounts, the ability to run workflows in dedicated VPCs, and options to limit or disable logging for sensitive data processing. Most Pipedream services are HIPAA-eligible, with detailed eligibility and security practices outlined in their documentation. For those seeking more information on HIPAA support or requiring a BAA, Pipedream provides guidance through their Help Center and sales team, alongside undergoing third-party audits to ensure compliance with HIPAA controls.