As a Business Associate, Phase2 Knows HIPAA
As a Business Associate, Phase2 Knows HIPAA
Our commitment to data privacy is absolute.
- Phase2 is HIPAA compliant.
- We are a Business Associate to more than a dozen Covered Entities.
- We have a designated HIPAA Compliance Officer - Danny Groh, SVP, People.
- 100% of Phase2 employees take HIPAA awareness training with ongoing yearly refresher training.
- When working under a Business Associate Agreement (BAA), our project team members take additional HIPAA security training and sign confidentiality agreements.
- All HIPAA affected project teams limit PHI access to specific team members.
- Phase2's HIPAA knowledge includes specialized marketing expertise.

"Our compliance program was born out of necessity and has since matured into a mindset of “we get to do this” rather than "we have to do this." We get to treat data with respect; get to be trusted with personal data; get to be stewards of people’s rights to be forgotten." — Danny Groh, SVP, People and HIPAA Compliance Officer

Our Data Privacy Philosophy
At Phase2 we view personal information as people, not just data. We maintain comprehensive HIPAA privacy policies and procedures overseen by a designated HIPAA Compliance Officer. Protecting confidentiality, integrity, and availability of personal data is top priority. Phase2's people-centric approach is paramount to how we operate.
Phase2 is a designated Business Associate, and we regularly sign BAAs in our work with clients responsible for PHI. When we sign, we kickoff a rigorous data privacy program for anyone interacting with PHI. We are leaders for our clients, ensuring any partners who touch data are also compliant and knowledgeable.
With over 20 years of experience, working with some of the largest health systems in the U.S., you can trust Phase2 to protect the people that make up your data.
GA4 + HIPAA Expert Advice

Advancing Human Experience in Healthcare

Can Content AI Heal Healthcare?

Aligning Your Tech Stack with Your Organizational Goals
