HIPAA Notice & Business Associate Terms
1. Website Not Intended for PHI
The public Zentara One website and contact form are not intended for the transmission of Protected Health Information (PHI) under HIPAA. Please do not submit patient records, medical images, claims data, or other PHI through unsecured channels.
2. When a Business Associate Agreement (BAA) Applies
Zentara One will sign a Business Associate Agreement when we are engaged by a HIPAA Covered Entity or Business Associate and will create, receive, maintain, or transmit PHI on your behalf. Until a BAA is fully executed, you must not send PHI to Zentara One.
3. Safeguards Under a Signed BAA
Where a BAA is in place, Zentara One will implement administrative, physical, and technical safeguards consistent with HIPAA Security Rule requirements and the responsibilities defined in the executed BAA and service agreement.
4. Minimum Necessary & Data Scoping
We encourage tokenization, de-identification, or use of test data whenever possible. Production PHI access should be limited to the minimum necessary to perform contracted services.
5. Breach Notification
If Zentara One becomes aware of an incident involving PHI under a signed BAA, we will notify the Covered Entity without unreasonable delay and cooperate per the BAA terms.
6. Request a BAA
If you require HIPAA-aligned services, contact us. We’ll scope your project and provide a BAA for execution.
Zentara One LLC1209 Mountain Road Pl NE Ste N
Albuquerque, NM 87110 USA
Email: [email protected]