A Business Associate Agreement without the haggle.
DDSText signs a BAA with every paid customer at no extra cost. Our standard agreement is below — request a signed copy in 60 seconds.
What the BAA covers
Every message, attachment, and patient record stored on DDSText
AI auto-reply traffic (DDSAi inference layer)
Webhook payloads sent to your integrated systems
Backups, replicas, and historical archives
Sub-processors covered under our BAA
Cloud infrastructure — HIPAA-eligible regions only · BAA on file
Denta Storage — patient media with signed URLs · 24h TTL · audit logging on
SMS/MMS/RCS carrier — verified sender · BAA on file
DDSAi engine — zero data retention configured · PHI redacted pre-prompt
Vercel — edge runtime · BAA available on enterprise tier
Your obligations
Use unique logins per team member (we enforce this — no shared accounts)
Report suspected PHI exposure within 72 hours of discovery
Maintain reasonable safeguards on your devices accessing DDSText
Notify us if your practice ownership changes (the BAA carries to successors)
Request your signed BAA
Email compliance@ddstext.com with your practice name and tax ID. We return a signed copy within one business hour during business hours — 24 hours otherwise.