Trigger.dev is now HIPAA ready

Trigger.dev Cloud now meets HIPAA Business Associate requirements. Sign a BAA and run workloads that process Protected Health Information on our managed infrastructure.

HIPAA (Health Insurance Portability and Accountability Act) governs how Protected Health Information (PHI) must be handled. Vendors that process PHI on behalf of covered entities (such as hospitals or insurers) act as Business Associates and must have a signed Business Associate Agreement (BAA) in place.

Signing a BAA

If your tasks process PHI, you'll need a signed BAA with Trigger.dev. Once the agreement is in place, you'll be migrated onto HIPAA infrastructure. This is a paid add-on — reach out via their contact form for HIPAA requests.

Security & Compliance

Trigger.dev maintains SOC 2 Type II certification and GDPR compliance. Full details are available on their security page and Security Portal.