Yes, Backblaze is HIPAA compliant and is willing to sign a business associate agreement (BAA) with covered entities.
Backblaze offers crucial security features for cloud backups, such as encryption for file transmission and data at rest. Customers can specify their own private encryption keys, adding another layer of security for data privacy.
In addition to proactive monitoring of all systems, Backblaze hires third parties to test the system’s security. Before accessing private data, the service requires account verification. Two-factor verification is available to prevent unauthorized access to the account.
These privacy features align with HIPAA requirements, but the company website doesn’t offer much information about HIPAA compliance. It appears that HIPAA compliance is available only for customers on the B2 Cloud Storage plan.
Backblaze will sign a business associate agreement (BAA) upon customer request. To access a signed BAA, customers must contact Backblaze support and provide information about the amount of data storage and the number of online backup licenses required.