If you're looking for someone that provides the database component with the ability to upgrade to moving your entire stack to the cloud, Catalyze has both BaaS and PaaS offerings.
I think HIPAA-BaaS are great products to get storing PHI (Protected Health Information) immediately. I'm working with companies in health tech right now that are working with hospitals, but not storing patient data. BaaS, from startups like Catalyze/TrueVault/Medable, provide a quick and easy way to get started on that path and determine if it's a good long-term strategy for your company. But, once you're dealing with enough patient data crunching, the rest of your application stack will really need to be secure. That's where PaaS products like Catalyze/Aptible come in.
TrueVault is one piece of a HIPAA-compliant solution. We're providing complete end-to-end compliance. We're able to do this by:
1. Providing an end-to-end PaaS that supports all app services and databases that a customer needs to run.
2. Providing a compliance management dashboard, where customers can track their compliance status and maintain all the documentation they'd need to show to an auditor, or a customer concerned with their compliance status. Because we manage the entirety of a customer's technical operations, most of this documentation can be generated with minimal input from the customer.