Caspio Signs BAA with OpenAI, Bringing HIPAA-Compliant AI to Healthcare

SUNNYVALE, California, June 3, 2026 – Caspio, the world’s leading low-code platform for building scalable, custom business applications without extensive coding, today announced it has signed a Business Associate Agreement (BAA) with OpenAI. The agreement extends HIPAA coverage to Caspio’s native AI capabilities, enabling healthcare organizations on Caspio’s HIPAA Edition to use AI directly on protected health information (PHI).

AI Use Cases in Healthcare

Healthcare teams using Caspio can now apply AI across a wide range of workflows. A few examples include:

• Clinical documentation: drafting visit notes, discharge summaries, and care plans from structured patient data
• Patient intake and triage: summarizing intake forms, classifying severity, surfacing key history for the next clinician
• Care coordination: turning multi-provider notes into briefings for handoffs
• Patient communications: generating personalized appointment reminders, follow-ups, and post-visit instructions
• Operational analytics: scoring no-show risk, identifying care gaps, flagging referrals that need escalation
• Compliance and audit: drafting policy documentation, reviewing records against internal protocols and payer rules

All of it on real patient data, under a single BAA, inside an environment already built for HIPAA.

What This Means for Healthcare AI Adoption

Healthcare organizations adopting AI typically face procurement and legal review for every new AI vendor that touches PHI. This signed BAA with OpenAI collapses that workstream for any team already running on Caspio. No separate AI vendor to onboard. No additional BAA to negotiate.

With unlimited users on every Caspio plan and no per-user fees, AI can be rolled out to every doctor, nurse, intake coordinator, care manager, and patient-facing portal user the organization needs to support.

Caspio’s Broader AI Strategy in Regulated Industries

Caspio has enabled organizations to build secure, compliant applications for over 25 years. This launch extends that footprint into AI, starting with its largest regulated customer base.

Caspio’s healthcare customers include Emory Healthcare, Healthcare2U, Healthcare Provider Solutions, and Paragon Global CRS. The platform serves hospitals and health systems, telehealth providers, clinics, payers, public health agencies, pharma, healthcare consultancies, and nursing schools running combined HIPAA and FERPA environments.

Beyond healthcare, Caspio’s compliance footprint covers SOC 2 Type II, GDPR, PCI DSS, ISO 27001, WCAG, FERPA, and FIPS 140-2 (GovCloud), supporting customers across government, financial services, education, and life sciences. The OpenAI BAA creates a pattern for bringing AI to regulated workloads more broadly.

“We hear the same thing from healthcare leaders: the slowest part of AI adoption isn’t picking a model. It’s the legal and procurement work to authorize one more vendor on patient data. With this BAA, that work is done for every Caspio HIPAA Edition customer. The AI is already in the platform. The compliance is already in place.”
Ioannis Kritikopoulos, VP, Engineering and Operations, Caspio

About Caspio

Caspio the world’s leading low-code platform for building scalable, custom business applications without extensive coding. Founded in 2000 and headquartered in Sunnyvale, California, Caspio is trusted by more than 15,000 customers in 150 countries to build secure, scalable web applications. The platform supports HIPAA, SOC 2 Type II, GDPR, PCI DSS, WCAG, ISO 27001, FERPA, and FIPS 140-2 (GovCloud), with signed Business Associate Agreements, dedicated environments for regulated workloads, AES-256 encryption, comprehensive audit logs, and unlimited users on every paid plan.

Learn more at caspio.com/healthcare-software.