Is Keeper Security Inc. HIPAA Compliant or subject to a HIPAA Business Associate Agreement?
Keeper Security, Inc (KSI) is a zero-knowledge security platform and is also SOC2-certified, and thus is not defined as a 'Business Associate' pursuant to HIPAA. As a zero-knowledge security platform, KSI is not subject to a Business Associate Agreement. KSI is HIPAA compliant because we cannot view, decrypt or access any patient records or data that is encrypted and stored in the Keeper Cloud Security Vault. The highest form of privacy assurance that a health care provider can have is working with a vendor like KSI.