Public summary of our BAA obligations. The executed in‑app BAA governs.
Effective date: September 5, 2025
Oaken Cloud Technologies, LLC d/b/a PsyFi Technologies (Business Associate) and your organization (Covered Entity).
Provide the Services; manage and administer the Services; comply with law; and disclose PHI as permitted with reasonable assurances of confidentiality.
Administrative, physical, and technical safeguards commensurate with risk, including encryption, access controls, logging, monitoring, and workforce training.
Report breaches of unsecured PHI to Covered Entity without unreasonable delay and no later than 30 days after discovery, with details to support required notifications.
Bind subcontractors to written obligations substantially similar to this BAA before sharing PHI.