Like most cloud providers, ClearDATA operates under a shared responsibility model. While Azure takes responsibility for the security of its infrastructure, responsibility for maintaining compliance within your Azure environment is a collaborative effort between ClearDATA and our customers.
Listed below are Azure products and their associated reference guides for creating and maintaining compliance within Azure. Each guide provides recommendations and steps to rectify security vulnerabilities and compliance risks within your Azure environment. Responsibility assignment matrices per product are also provided which can help you better understand ClearDATA's role and responsibilities as well as your own.
If you are interested in enabling or configuring any of the Azure BAA Covered services listed below which are not covered by our automated safeguards, please create a support request through the portal detailing your request.
Additionally, if there is a particular Azure product reference guide that isn’t listed below, please get in touch with us and we will add it to the list.
Any Service not listed here as covered or non-covered can be considered unsupported and not eligible for use by our customers. Please contact ClearDATA Support to make a request that a service be Supported.
BAA COVERED = Eligible to transmit, process, and store PHI
BAA NON-COVERED = Not eligible to transmit, process, or store PHI
AUTOMATED SAFEGUARDS = Automatically remediates compliance controls described within the document
UNSUPPORTED =These services are not permitted to be used by our customers in any fashion.