New to administering Atlassian cloud products? Learn about Atlassian organizations and what it means to be an organization admin.
Managing products from an organization? Learn what's available to organization admins.
Need to control change in cloud? Test and manage product changes for Jira and Confluence Cloud.
Need to integrate your Atlassian products? Use application tunnels to connect your organization to the products in your network.
Are users signing up for products you don’t know about? Learn how to control the cost and security of your product footprint.
Adding or reorganizing teams? Move projects, spaces, users, and other data from one instance of a product to another
Understand more about our artificial intelligence features and determine if AI is right for your organization
Enable HIPAA compliance for eligible Atlassian products and protect your sensitive data.
Enterprise-grade scale, security, and governance controls for Jira Software, Confluence, and Jira Service Management
Stay on top of users and data across your organization with all the reports and tracking options we offer.
A Business Associate Agreement (BAA) is a written contract between a business associate and a covered entity or another business associate. The BAA outlines the terms and conditions to ensure Protected Health Information (PHI) is appropriately safeguarded. Under HIPAA, Atlassian is considered a business associate. You must have a BAA in place before PHI can be uploaded to our products.
We can sign BAAs for Standard, Premium, and Enterprise plans for Jira Software, Jira Service Management, and Confluence. Free and trial plans are not eligible to sign BAAs.
Standard and Premium plans
To sign a BAA, go to admin.atlassian.com and select Settings > Compliance.
Then, select the Health Insurance Portability and Accountability Act (HIPAA).
Select Sign a BAA.
Provide the following information in the form:
Your legal name
Your email address
Name of signatory
A signatory is any individual who possesses legal authority to bind your organization into legally enforceable contracts
Email address of the signatory
Your organization's physical address
After the request is processed, you will receive an email acknowledging your request to sign a BAA. The signatory will receive an email containing a copy of the Business Associate Agreement to be signed.
After you’ve signed a BAA, you must tag your product and follow the HIPAA Implementation Guide before you upload any PHI into the products. Learn how to tag your products
For Enterprise plans, contact your Atlassian representative to sign a Business Associate Agreement (BAA).
It’s important to remember that HIPAA compliance is a shared responsibility between Atlassian and you. Completing these steps won't automatically guarantee your compliance with HIPAA, you must also ensure that you follow HIPAA best practices.
Was this helpful?