Skip to main contentPipecat Cloud provides HIPAA-compliant infrastructure for healthcare applications that need to process Protected Health Information (PHI).
Infrastructure Compliance
Pipecat Cloud’s infrastructure meets HIPAA controls for:
- Data processing
- Data transmission
- Secure handling of PHI
Data Logging with HIPAA Controls
When HIPAA controls are enabled for your account:
No application data is logged - This includes conversation history and any PHI that may be contained in your application logs.
Rationale: Pipecat follows the HIPAA “minimum necessary” rule by logging only what’s essential to run the service, rather than storing your PHI data.
Alternative logging: Configure an independent logging solution to route your application logs to your own secure log storage system.
Business Associate Agreement (BAA)
Daily can sign a Business Associate Agreement covering:
- Pipecat Cloud
- Daily WebRTC infrastructure
- Daily transcription services
A single BAA covers all these services.
Getting Started
Contact us at help@daily.co to:
- Enable HIPAA controls for your account
- Sign a Business Associate Agreement
- Learn more about HIPAA compliance features