![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(108.80000000000001, 97%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ES%3C/text%3E%3C/svg%3E)
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,559 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(278.4, 57.00000000000001%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESS%3C/text%3E%3C/svg%3E)
@Steve_Y As far as I know you are correct . Yes , You do not require to sign a document separately however for auditing purposes you can download the copy of most recent BAA available on our Trust portal . If the auditors mean effective date as a date when we achieved HIPPA compliance , it was sometime in july 2012 as per this article. I was unable to find exact date.
Generally to be HIPPA complaint customers may sometime need to sign agreements with vendors which are referred to as BAAs or business associate agreements . However Microsoft does not require customers to sign BAAs as mentioned in the Office 365 HIPPA compliance doc and makes a HIPAA BAA available automatically to all customers with an online service contract in the Online Services Terms. You can download the copy of the latest BAA template from Service Trust Portal . As compliance guidelines keep changing , we also keep our services updated and publish the updated BAAs . In order to download the documents , you may require to sign in with your Office 365 ID .
The Service Trust Portal provides independently audited compliance reports for all Microsoft Online services. Azure customers can also retrieve Azure certificates and audit reports in the Azure portal through the audit reports blade in Microsoft Defender for Cloud . You can share more details with your auditors from the website as needed. The FAQ section in the compliance document should clarify most of the questions that auditors generally ask and I would suggest you to go through them.
Hope this helps. If the information provided is helpful , please do accept the post as answer to improve the relevancy of the thread. I have included many links and I would suggest you to go through them which will help you in your engagement with your auditors. In case you still have any further query , please feel free to let us know and we will be happy tp help further.
Thank you.
----------------------------------------------------------------------------------------------------------------------------------------------------------
- Please don't forget to click on
whenever the information provided helps you. Original posters help the community find answers faster by identifying the correct answer. Here is how - Want a reminder to come back and check responses? Here is how to subscribe to a notification
- If you are interested in joining the VM program and help shape the future of Q&A: Here is how you can be part of Q&A Volunteer Moderators