Nitpicking? Nah, the legal technicalities are important here

I received an e-mail this week about “a mobile technology platform that just announced its full HIPAA/HITECH compliancy.”

I’d like to know, how exactly can technology be HIPAA-compliant? Technology can’t be a covered entity or a business associate, and therefore isn’t subject to HIPAA, right?