Health Insurance Portability and Accountability Act (HIPAA)
As a global leader in conversational AI and healthcare technology, clients trust Nuance to deliver solutions that handle patient data responsibly. We remain firmly committed to helping our clients comply with HIPAA.
HIPAA requires that covered entities and their business associates apply administrative, technical, and physical safeguards to maintain the confidentiality, integrity, and availability of electronic-protected health information (ePHI).
To support HIPAA compliance efforts, Nuance evaluates our products and product environments for:
Beyond the customer‑facing side of our healthcare solutions, Nuance embraces a holistic approach to securing patient data within our custody. We maintain and regularly review policies and procedures for the consistent application of appropriate and necessary controls.
Our patient data security approach includes:
For any cloud‑based and on‑premise solution, responsibility with respect to data privacy—including access and controls—is shared. Our clients are responsible for configuring Nuance solutions to support HIPAA compliance efforts and for enforcing applicable policies in their organizations in accordance with HIPAA requirements.