HIPAA Compliance for startups

Show notes

In this sixth episode of Access Control, a podcast providing practical security advice for startups, Ben Arent chats with Dylan Stamat, CTO at VerticalChange. VerticalChange is a simple data system application for the Social Sector. Dylan is a seasoned technology and startup founder with 10 years of experience building and growing businesses. VerticalChange was an early adopter of running HIPAA-related workloads on AWS during the early days of AWS circa 2012.

Key Topics on Access Control Podcast: Episode 6 – HIPAA Compliance for Startups
  • VerticalChange was founded to create impact for the social sector and help its agencies digitize manual processes.
  • VerticalChange provides a solution that combines CRM, analytics, and dynamic form-building.
  • Regulations like HIPAA, HITRUST, and FERPA are very strict, and agencies have to put in place many controls in order to comply.
  • Startups in the healthcare space need to have someone who understands HIPAA and is willing to put the time in to write all the policies and procedures that need to be in place to meet security and privacy rules.
  • Using a combination of CloudTrail, Auth0 logs, and Teleport logs, VerticalChange is able to create a log flow and see what people are doing within the application.

New comment

Your name or nickname, will be shown publicly
At least 10 characters long
By submitting your comment you agree that the content of the field "Name or nickname" will be stored and shown publicly next to your comment. Using your real name is optional.