Attachment A: Apple’s HIPAA Covered Services for healthcare organizations supporting Health app data Share with Provider
HIPAA Covered Services include:
Apple’s receipt of End-User Data on behalf of Customer in connection with Health app data Share with Provider, and the storage of such End-User Data in the Health Sharing Cloud on behalf of Customer
Apple’s receipt and processing of requests from Customer to the Health Sharing Cloud to enable Customer to view End-User Data stored in the Health Sharing Cloud
Apple’s transmission of End-User Data to Customer from the Health Sharing Cloud in response to Customer’s requests for End-User Data
Apple’s receipt and transmission of End-User Data from Customer through the Health app data Share with Provider dashboard, and Apple’s storage of such End-User Data in the Health Sharing Cloud in connection with logging bugs, reporting outages, and providing technical support to Customer
The HIPAA Covered Services don’t include any other services not listed in this attachment—including activities, services, and products that Apple provides directly to, and on behalf of, individuals—or where Apple isn’t acting as a business associate—including but not limited to clinical health records transmitted directly by an individual from their device to a healthcare provider’s third-party app.