Any AI vendor that creates, receives, maintains, or transmits your patient data on your behalf is a Business Associate under HIPAA. That means most AI tools for medical practices require a BAA. Podium, Zenoti, Klara, Weave, Luma, and Solutionreach all pull patient data into their own servers. Each one is a Business Associate. Each one requires a signed agreement. One architecture avoids this entirely: AI that runs inside your own infrastructure, not the vendor's. Your data never leaves. No BAA required.
Most practice owners find out about Business Associate Agreements at the wrong time. A vendor asks them to sign one, they forward it to their attorney, and two weeks later they're still waiting.
Understanding which AI vendors require a BAA before you start evaluating them saves time and changes how you think about the entire market.
What Makes a Vendor a Business Associate
Under HIPAA, a Business Associate is any organization that creates, receives, maintains, or transmits Protected Health Information (PHI) on behalf of a covered entity.
The covered entity is your practice. You are responsible for patient data under HIPAA. Any vendor you work with that handles that data inherits a portion of that responsibility. You formalize it with a Business Associate Agreement.
The BAA sets out what the vendor can do with your patient data, how they protect it, what happens if there's a breach, and what their liability is if something goes wrong.
This is not bureaucratic paperwork. It is the legal document that defines who is responsible for your patients' data when it leaves your building.
The Architecture Question
Whether a vendor is a Business Associate comes down to one question: where does the patient data live?
If a vendor pulls your patient data into their own servers to run their product, they are a Business Associate. Your data lives in their environment, on their infrastructure, under their control. A BAA is required.
If a vendor's product runs inside your own infrastructure, using your own systems, and your patient data never leaves your environment, the vendor is not receiving or maintaining PHI. A BAA is not required.
This is an architectural difference. It is not a privacy policy choice or a marketing claim. It is determined by how the product is built.
Which AI Vendors Require a BAA
Here is a breakdown of the major AI vendors in the independent practice and med spa market, organized by BAA requirement:
| Vendor | Category | Data Handling | BAA Required |
|---|---|---|---|
| Podium Avery | AI communication / reviews | Patient data processed on Podium servers | Yes |
| Zenoti AI | Practice management platform | Patient data stored in Zenoti cloud | Yes |
| Klara | Patient communication | Messages processed on Klara servers | Yes |
| Weave | Communication platform | Patient data on Weave infrastructure | Yes |
| Luma Health | Patient engagement | Patient data processed on Luma servers | Yes |
| Solutionreach | Patient engagement | Patient data on Solutionreach servers | Yes |
| NexHealth | Patient engagement | Patient data on NexHealth infrastructure | Yes |
| Mindbody | Booking platform | Patient data in Mindbody cloud | Yes |
| Vagaro | Booking / CRM | Patient data on Vagaro servers | Yes |
| ZxAI | AI staff | Runs inside practice's own infrastructure | No |
"BAA required" does not mean the vendor is irresponsible or insecure. Most of these vendors take data security seriously. The BAA requirement is a function of their architecture, not their intentions. Your practice is still taking on risk when you sign a BAA, because you are acknowledging that a third party has access to your patients' information.
What Signing a BAA Actually Means for Your Practice
When you sign a BAA, you are doing a few things at once.
First, you are acknowledging that the vendor has access to your patient data and is handling it on your behalf. If that vendor experiences a breach, your practice may have reporting obligations. Your patients may need to be notified.
Second, you are accepting that if the vendor violates the agreement and PHI is exposed, your practice may share in the liability, depending on how the breach is categorized and whether you exercised appropriate due diligence in selecting the vendor.
Third, you are agreeing to monitor the vendor's compliance, at least in principle. Most small practices never actually do this, which is itself a compliance gap.
None of this means you should avoid every vendor that requires a BAA. Most of the vendors in the table above have strong security practices, and a well-negotiated BAA can adequately protect your practice. What it does mean is that signing a BAA is not a formality. It carries real obligations on both sides.
Five Questions to Ask Before You Sign
If a vendor requires a BAA, these are the questions your attorney should be asking before you sign:
Where specifically does my patient data live?
What cloud provider, what region, what data center? This is a factual question with a specific answer. "Secure cloud infrastructure" is not an answer.
Who at your company has access to patient data?
Ask for a list of roles, not just a policy statement. Customer support, engineering, and third-party processors all matter.
What is your breach notification timeline?
HIPAA requires notification within 60 days of discovery. Ask what their internal timeline is and how they have handled past incidents.
What happens to my data if we stop working together?
Ask for specific data deletion timelines and a written confirmation process. Vague answers are a flag.
Have you had any reportable breaches in the past three years?
You can look this up on the HHS breach portal, but asking directly and watching the response tells you something.
The Alternative Architecture
One way to avoid BAA requirements entirely is to use AI that runs inside your own infrastructure, not a vendor's cloud.
This is how ZxAI is built. ZxAI's AI staff members are deployed inside the practice's own cloud environment, using the practice's own credentials. They authenticate against the practice's systems directly. Patient data never moves to ZxAI's servers because ZxAI does not have servers that receive it.
Under HIPAA's definition, ZxAI is not creating, receiving, maintaining, or transmitting PHI. The practice's systems are doing that. ZxAI is the logic running inside those systems.
This is not the right architecture for every practice. It requires that you already have, or are willing to set up, the infrastructure for the AI to run in. But for practices where data control and compliance posture matter, it eliminates the BAA conversation entirely.
What to Do With This Information
If you are evaluating AI vendors for your practice, start with the architecture question before you get into features or pricing.
Ask each vendor: does your product run on your servers, or mine?
If the answer is theirs, ask to see their BAA before your next conversation. Have your attorney review it. Understand what you are agreeing to before you agree to it.
If the answer is yours, verify it. Ask them to explain, in plain language, where your patient data lives during normal operations, during support interactions, and during billing.
The vendors who answer these questions directly are the ones worth talking to further. The vendors who cannot give a clear answer to where your data lives are the ones to watch closely.
What is a Business Associate Agreement (BAA) in healthcare?
A Business Associate Agreement is a contract between a healthcare practice and a vendor who handles Protected Health Information on the practice's behalf. It defines how the vendor can use that data, what security standards they must meet, and what happens if there is a breach. HIPAA requires a signed BAA with any vendor that qualifies as a Business Associate.
Does every AI vendor for medical practices require a BAA?
Most do. Any AI vendor whose product processes or stores patient data on their own servers is a Business Associate under HIPAA and requires a BAA. Vendors whose AI runs inside the practice's own infrastructure, using the practice's own systems, may not qualify as Business Associates and may not require a BAA.
What happens if I use an AI tool without a BAA when one is required?
Operating without a required BAA is a HIPAA violation. Penalties range from $100 to $50,000 per violation, depending on the level of negligence, with annual caps up to $1.9 million per violation category. Both the practice and the vendor may be subject to penalties.
Can I negotiate the terms of a BAA?
Yes. BAAs are negotiable. Key areas where practices often negotiate include breach notification timelines, data deletion procedures, subcontractor disclosures, and liability allocation. An attorney familiar with HIPAA should review any BAA before you sign.
How do I know if a vendor is actually a Business Associate?
Ask where your patient data lives during normal product operation. If the answer is their servers, their cloud, or their infrastructure, they are a Business Associate. If their product runs entirely within your own environment using your own infrastructure, they may not be.
Is ZxAI a Business Associate?
No. ZxAI's AI staff run inside the practice's own cloud infrastructure, using the practice's own credentials. Patient data does not move to ZxAI's servers. Under HIPAA's definition, For self-hosted deployments, ZxAI never touches PHI, so no BAA is needed. For cloud-assisted deployments (like voice agents), ZxAI provides a BAA with a fraction of the compliance exposure of traditional SaaS vendors.
Want to see how AI staff works without the BAA?
We'll walk you through how ZxAI deploys inside your existing systems, under your credentials, with no data leaving your environment. 15 minutes.
Book 15 minutes →