Y
Hacker News
new
|
ask
|
show
|
jobs
by
moksly
2554 days ago
Is it even legal to hand over medical data to a company without SOC 2 compliance?
1 comments
reiderrider
2554 days ago
Yes. Typically there’s a business associate HIPAA agreement that outlines use. SOC 2’s start at $35,000 with a month of an engineering time and 99.9% of insurance agencies don’t have one. Getting it done is the long term plan.
link