What is HIPAA?

The Health Insurance Portability and Accountability Act (HIPAA) establishes national standards to protect individuals' medical records and other health information and applies to health plans, health care clearinghouses, and those health care providers that conduct certain health care transactions electronically. HIPAA requires appropriate safeguards to protect the privacy of health information, and sets limits and conditions on the uses and disclosures that may be made of such information without patient authorization. HIPAA also gives patients rights over their health information, including rights to examine and obtain a copy of their health records and to request corrections. HIPAA is only available to our enterprise customers, get in touch with us to discuss your usage volume.

What does it mean that Rev AI is HIPAA compliant?

HIPAA Compliance implies that Rev AI’s Automatic Speech Recognition (ASR) APIs have all of the appropriate safeguards in place to protect the security and confidentiality of Protected Health Information (PHI) data that may persist in audio, custom vocabulary, and transcript files sent by our customers.

As of April 2022, Rev AI will be HIPAA compliant with the following contingencies:

Note: submitting Human Transcription jobs will result in 500 errors until these features become available - stay tuned for updates!

Do I need to do anything to make sure my account is HIPAA compliant?

Yes!

In order for the Rev AI team to make sure your account and data sent to our ASR through your account is HIPAA-enabled (and thus protected), we will need you to sign our Business Associate Agreement (BAA) and an updated MSA. This BAA is an explicit agreement between Rev AI and our customers to make sure that both parties understand the responsibilities and contingencies associated with processing data which may contain PHI.

What does it mean for my account to be HIPAA-enabled?

Once you have reviewed and signed the BAA and updated MSA:

  • Create a new Rev AI account that you will use for HIPAA compliant orders

  • Send your new Rev AI account information to your sales contact

  • Rev AI Admins will update your account to enable HIPAA compliant processing. Rev AI will notify you when this is complete.

  • Confirm your account is properly HIPAA enabled by visiting https://rev.ai/account

Once the BAA has been executed and your account has been updated, your account will be ready to process PHI. Please note, we request that you do not send us any filenames or URLs that may contain PHI in the name, Rev AI is not liable for any PHI that may be exposed in that manner.

How can I access this BAA?

To access our BAA to review and sign, please get in touch with your sales, customer success, or account manager. If you do not have a sales representative at Rev AI with whom you can work, you can get in touch with us here.

Are there any changes to how I’d submit API jobs?

Once your account is HIPAA-enabled, there are no changes to how you’d submit API jobs as your compliance is at the account level (not job level). The only contingencies are listed above.

As a reminder, please note that Rev AI stores job data on your account(s) for only 30 days. You may change the settings to automatically delete job data before that time window at https://www.rev.ai/account :

Users may specify the auto-delete settings for their job data from the drop down menus.

You may also specify per API job submission how long after job completion you’d like the job deleted with the delete_after_seconds parameter; this can be tailored down to 0 seconds post job completion, additional details can be found here.

You may also manually delete the job (you must know the job id) by invoking the API as described here. Additional information about Rev AI data job accessibility can be found here.

Where can I find additional information about Rev AI’s information security compliance?

More information about Rev AI’s Information Security Compliance Program can be found HERE.

Are there any additional charges or changes to pricing for HIPAA compliance?

No, there are no additional charges for HIPAA on top of our regular ASR pricing.

Interested in getting started with HIPAA for your account? Get in touch with us here.

We’re working hard here at Rev AI to make sure that we understand language - and we’re always looking for input and great ideas to improve our speech recognition engine.

If you have any thoughts or requests, let us know by contacting us at: labs@rev.ai.

Check out our latest news here!

Did this answer your question?