Guides

PHI and HIPAA software guides healthcare teams actually search for

Direct answers on whether a tool is usable for PHI workflows, what contract tier matters, and where operational risk still remains after a vendor signs a BAA.

RingCentral Is RingCentral HIPAA Compliant for Medical Clinics? Is RingCentral HIPAA compliant? BAA available for paying covered entities. Learn covered services and configuration steps.
Typeform Is Typeform HIPAA Compliant for Small Clinics? Is Typeform HIPAA compliant? Typeform now publishes a BAA setup path for medical forms. Learn what clinics must verify first.
Zapier Is Zapier HIPAA Compliant for Medical Clinics? Is Zapier HIPAA compliant? No. Zapier says it does not sign a BAA, so clinics should not route PHI through Zaps.
Zapier Zapier PHI Workflow Risk for Healthcare Teams Audit Zapier PHI workflow risk: map triggers, payloads, destination apps, BAAs, and automation-chain gaps before patient data moves.
Anthropic Is Anthropic HIPAA Compliant as a Healthcare Vendor? Is Anthropic HIPAA compliant? Enterprise API customers can obtain a BAA. Learn what it covers, what your organization remains responsible for, and how to.
athenahealth Is athenahealth HIPAA Compliant? A Covered Entity Guide Is athenahealth HIPAA compliant? athenahealth signs BAAs and supports HIPAA requirements, but covered entities remain responsible for user provisioning and.
Claude / Anthropic Is Claude HIPAA Compliant for Medical Clinics? Is Claude HIPAA compliant? Learn which Anthropic plans include a BAA, what enterprise data terms cover, and what clinics must do before using Claude with PHI.
Cursor Is Cursor HIPAA Compliant for Healthcare Developers? Is Cursor HIPAA compliant? No BAA is publicly available for Cursor as of early 2026. Learn what Privacy Mode covers, the PHI risks, and what alternatives exist.
DeepSeek Is DeepSeek HIPAA Compliant for Healthcare Organizations? Is DeepSeek HIPAA compliant? No BAA, Chinese data residency, and regulatory concerns make DeepSeek unsuitable for any PHI use. Learn the full analysis.
Epic Systems Is Epic EHR HIPAA Compliant? What Clinics Must Know Is Epic EHR HIPAA compliant? Epic signs BAAs and is ONC-certified, but covered entities remain responsible for access controls, audit monitoring, and.
GitHub Copilot Is GitHub Copilot HIPAA Compliant for Healthcare Developers? Is GitHub Copilot HIPAA compliant? Enterprise agreements with a Microsoft BAA can cover Copilot. Learn the plan requirements, PHI risks, and configuration.
Kareo (Tebra) Is Kareo HIPAA Compliant for Medical Clinics? Kareo (now Tebra) offers a BAA for healthcare customers. Confirm contracting entity and module scope post-merger before storing PHI.
Oracle Health / Cerner Is Oracle Health (Cerner) HIPAA Compliant? Is Oracle Health (formerly Cerner) HIPAA compliant? BAAs are available, but covered entities must verify agreements were updated post-merger and review.
Perplexity AI Is Perplexity AI HIPAA Compliant for Healthcare? Is Perplexity AI HIPAA compliant? No BAA is available for Perplexity Pro or consumer plans. Learn why AI search tools are PHI risks and what to do instead.
Practice Fusion Is Practice Fusion HIPAA Compliant? What Small Clinics Must Know Is Practice Fusion HIPAA compliant? Practice Fusion signs BAAs and is ONC-certified. Learn covered entity obligations and key due diligence context for.
TherapyNotes Is TherapyNotes HIPAA Compliant for Medical Clinics? TherapyNotes is HIPAA-appropriate with its included BAA. Configure user roles, use the portal, and avoid mixing in non-BAA communication tools.
WebPT Is WebPT HIPAA Compliant for Medical Clinics? Is WebPT HIPAA compliant? Yes — BAA details published on the pricing page for customers, with HIPAA-aware EHR workflows for therapy practices.
Amazon Web Services (AWS) Is AWS HIPAA Compliant for Healthcare Workloads? Is AWS HIPAA compliant? AWS offers a BAA covering 150+ HIPAA-eligible services. Learn how to sign the AWS BAA and which services are covered before building...
Microsoft Azure Is Microsoft Azure HIPAA Compliant? Is Microsoft Azure HIPAA compliant? Learn about Azure's BAA, covered services, required configuration, and what clinics must do before building PHI...
BambooHR Is BambooHR HIPAA Compliant for Medical Clinics? Is BambooHR HIPAA compliant? BambooHR has no HIPAA BAA. But HIPAA governs patient PHI, not employee records. Learn when clinic HR data actually triggers...
Canva Is Canva HIPAA Compliant for Medical Clinics? Is Canva HIPAA compliant? Canva offers no HIPAA BAA. Clinics can use Canva for general marketing design, but must never upload patient photos or documents...
Constant Contact Is Constant Contact HIPAA Compliant for Healthcare Email? Is Constant Contact HIPAA compliant? Constant Contact does not offer a HIPAA BAA. Learn what clinics can and cannot do with Constant Contact for healthcare...
Confluence (Atlassian) Is Confluence HIPAA Compliant? Is Confluence HIPAA compliant? Atlassian's BAA is only available on Cloud Enterprise. Learn what plans qualify, what's at risk, and what clinics must do.
Doxy.me Is Doxy.me HIPAA Compliant? Is Doxy.me HIPAA compliant? Free tier has no BAA. Paid plans include a BAA, but clinics must sign it. Learn what your clinic must do before using Doxy.me...
Formstack Is Formstack HIPAA Compliant for Patient Data Collection? Is Formstack HIPAA compliant? Yes — on the Workspace plan with a signed BAA. Learn how clinics can use Formstack for patient intake and consent forms legally.
Google Cloud Is Google Cloud HIPAA Compliant for Healthcare Workloads? Is Google Cloud HIPAA compliant? Learn about the Google Cloud BAA, covered services, Healthcare API, and what clinics must configure before using Google...
Grammarly Is Grammarly HIPAA Compliant for Clinical Documentation? Is Grammarly HIPAA compliant? Grammarly does not offer a HIPAA BAA. Clinical notes, patient letters, and any PHI must not be pasted into Grammarly. Learn...
Linear Is Linear HIPAA Compliant for Healthcare Teams? Is Linear HIPAA compliant? Linear does not offer a HIPAA BAA. Learn what this means for clinical operations teams and hybrid tech-clinical workflows with...
Mailchimp Is Mailchimp HIPAA Compliant for Healthcare Email Marketing? Is Mailchimp HIPAA compliant? Mailchimp has no HIPAA BAA. Healthcare email marketing is permitted if zero PHI enters Mailchimp. Learn the rules for safe...
Microsoft 365 Is Microsoft 365 HIPAA Compliant? Is Microsoft 365 HIPAA compliant? It can be, but not out of the box. Learn how to execute the M365 BAA and which compliance features clinics must configure...
Miro Is Miro HIPAA Compliant for Healthcare Teams? Is Miro HIPAA compliant? Miro offers a BAA only for Enterprise customers. Free, Starter, and Business plans have no HIPAA coverage. Learn what healthcare...
OpenAI (API) Is the OpenAI API HIPAA Compliant? Is OpenAI API HIPAA compliant? Standard API accounts lack a BAA; enterprise customers need the Healthcare Addendum before PHI use.
Pipedrive Is Pipedrive HIPAA Compliant for Healthcare CRM? Is Pipedrive HIPAA compliant? Pipedrive does not offer a HIPAA BAA. Clinics using Pipedrive for patient CRM create exposure if any contact record contains PHI.
Microsoft Power Automate Is Microsoft Power Automate HIPAA Compliant? Is Power Automate HIPAA compliant? Microsoft covers Power Automate under its Online Services Terms BAA — but only when using HIPAA-covered connectors. Learn...
SimplePractice Is SimplePractice HIPAA Compliant? Is SimplePractice HIPAA compliant? Yes — SimplePractice includes a BAA at all paid tiers. Learn what the BAA covers and what your practice still needs for a...
Stripe Is Stripe HIPAA Compliant for Medical Clinics? Is Stripe HIPAA compliant? Stripe does not offer a HIPAA BAA. Learn the PCI-DSS vs HIPAA difference and how clinics can use Stripe for billing without PHI...
SurveyMonkey Is SurveyMonkey HIPAA Compliant for Patient Surveys? Is SurveyMonkey HIPAA compliant? Only Enterprise plan includes a BAA. Standard, Advantage, and Premier have no HIPAA coverage. Learn what patient survey...
Twilio Is Twilio HIPAA Compliant for Healthcare Messaging? Is Twilio HIPAA compliant? Twilio offers a BAA for eligible products, but not all Twilio products qualify. Learn which products are covered and how to set...
Vonage Is Vonage HIPAA Compliant for Healthcare Communications? Is Vonage HIPAA compliant? Vonage Business Communications offers a BAA for healthcare customers. Learn which Vonage products qualify and when clinic phone...
Wix Is Wix HIPAA Compliant for Healthcare Websites? Is Wix HIPAA compliant? Wix does not offer a HIPAA BAA. General clinic websites are fine, but any patient-facing data collection on Wix creates a PHI...
Workday Is Workday HIPAA Compliant for Healthcare Organizations? Is Workday HIPAA compliant? Workday offers a BAA for healthcare customers, but most clinic Workday data is employee HR data, not patient PHI. Learn when...
WordPress Is WordPress HIPAA Compliant for Healthcare Websites? Is WordPress HIPAA compliant? WordPress.com has no BAA. Self-hosted WordPress depends on your host. Learn what clinics must do before collecting patient...
Box Is Box HIPAA Compliant? Is Box HIPAA compliant? Box offers a BAA on qualifying plans. Learn what plan, configuration, and controls are required before using Box with PHI.
Figma Is Figma HIPAA Compliant? Is Figma HIPAA compliant? Standard Figma plans lack a BAA. Learn when Figma creates HIPAA risk and how to keep PHI out of design files entirely.
Freshdesk Is Freshdesk HIPAA Compliant? Is Freshdesk HIPAA compliant? Freshworks offers a BAA on Enterprise plans. Learn when Freshdesk creates PHI risk and what configuration is required.
GitHub Is GitHub HIPAA Compliant? Is GitHub HIPAA compliant? Microsoft's Enterprise BAA covers GitHub Enterprise. Learn when PHI enters repositories and how to prevent it.
Intercom Is Intercom HIPAA Compliant? Is Intercom HIPAA compliant? Intercom offers a BAA on qualifying plans. Learn when patient chat creates PHI risk and what configuration is required.
Loom Is Loom HIPAA Compliant? Is Loom HIPAA compliant? Loom's standard plans lack a BAA. Learn when Loom creates HIPAA risk and how to use it safely without PHI.
Power BI Is Power BI HIPAA Compliant? Is Power BI HIPAA compliant? Microsoft covers Power BI in its HIPAA BAA. Learn what configuration is required before connecting PHI datasets.
QuickBooks Is QuickBooks HIPAA Compliant? Is QuickBooks HIPAA compliant? Intuit does not broadly offer a HIPAA BAA for QuickBooks. Learn when clinic accounting data constitutes PHI and how to manage it.
ServiceNow Is ServiceNow HIPAA Compliant? Is ServiceNow HIPAA compliant? ServiceNow offers HIPAA BAAs for healthcare customers. Learn when IT tickets contain PHI and what configuration is required.
Tableau Is Tableau HIPAA Compliant? Is Tableau HIPAA compliant? Salesforce covers Tableau in its HIPAA BAA for qualifying plans. Learn the deployment differences, RLS requirements, and PHI risks.
Webex Is Webex HIPAA Compliant? Is Webex HIPAA compliant? Cisco offers a HIPAA BAA for Webex. Learn plan requirements, telehealth configuration, and PHI risks in video and messaging.
Zendesk Is Zendesk HIPAA Compliant? Is Zendesk HIPAA compliant? Zendesk offers a BAA for qualifying customers. Learn the plan requirements, AI considerations, and configuration needed for PHI.
Adobe Acrobat Sign Is Adobe Acrobat Sign HIPAA Compliant for Medical Clinics? Is Adobe Acrobat Sign HIPAA compliant? BAA available on enterprise plans. Learn the tier, configuration steps, and what small clinics must verify.
ChatGPT / OpenAI Is ChatGPT HIPAA Compliant for Medical Clinics? Is ChatGPT HIPAA compliant? Learn about OpenAI's enterprise BAA, consumer tier risks, training data policies, and what clinics must do before using AI with PHI.
Microsoft Copilot Is Microsoft Copilot HIPAA Compliant for Medical Clinics? Is Microsoft Copilot HIPAA compliant? M365 Copilot on qualifying enterprise plans can qualify. Consumer Copilot does not. What clinics must verify.
DocuSign Is DocuSign HIPAA Compliant for Medical Clinics? Is DocuSign HIPAA compliant? Learn which DocuSign plans offer a BAA, what admin controls are required, and where clinics face PHI exposure with e-signatures.
Doximity Is Doximity HIPAA Compliant for Medical Clinics? Is Doximity HIPAA compliant? Yes — Doximity offers a BAA and is purpose-built for healthcare. Learn what clinics still need to configure and govern.
Dropbox Is Dropbox HIPAA Compliant for Medical Clinics? Is Dropbox HIPAA compliant? Learn which plans offer a BAA, what admin controls are required, and the shared-link risk that catches clinics off guard.
FaceTime / Apple Is FaceTime HIPAA Compliant for Medical Clinics? Is FaceTime HIPAA compliant? Apple does not sign BAAs for FaceTime. Learn the compliance gap and what clinics need for HIPAA-safe video calls.
Google Gemini Is Google Gemini HIPAA Compliant for Medical Clinics? Is Google Gemini HIPAA compliant? Enterprise Workspace BAA covers Gemini in specific tiers. Consumer Gemini is not. Learn what clinics need to know.
Gmail / Google Workspace Is Gmail HIPAA Compliant for Medical Clinics? Is Gmail HIPAA compliant? Learn which Google Workspace plans include a BAA, what admin steps are required, and what risks remain for small clinics.
Google Meet Is Google Meet HIPAA Compliant for Medical Clinics? Is Google Meet HIPAA compliant? Learn about BAA coverage, required admin settings, and what clinics must configure before using Meet for patient care.
Google Voice Is Google Voice HIPAA Compliant for Medical Clinics? Is Google Voice HIPAA compliant? Learn which plan offers BAA coverage, what limitations apply, and why clinics should evaluate alternatives for patient calls.
Google Workspace Is Google Workspace HIPAA Compliant for Medical Clinics? Is Google Workspace HIPAA compliant? Guide to Google's BAA, covered services, admin setup steps, and what clinics must verify before placing PHI there.
HubSpot Is HubSpot HIPAA Compliant for Medical Clinics? Is HubSpot HIPAA compliant? BAA available on Enterprise with add-on. Learn which HubSpot plans support PHI and what configuration is required.
Otter.ai Is Otter.ai HIPAA Compliant for Medical Clinics? Is Otter.ai HIPAA compliant? BAA available on Business and Enterprise plans with opt-out of AI training. Learn what clinics need before using Otter.ai.
Outlook / Microsoft 365 Is Outlook HIPAA Compliant for Medical Clinics? Is Outlook HIPAA compliant? Learn which Microsoft 365 plans include a BAA, what admin steps are required, and what risks remain for clinical email use.
Salesforce Is Salesforce HIPAA Compliant for Medical Clinics? Is Salesforce HIPAA compliant? Learn which editions offer a BAA, what admin steps are required, and how Health Cloud differs from standard Salesforce CRM.
Microsoft Teams Is Microsoft Teams HIPAA Compliant for Medical Clinics? Is Microsoft Teams HIPAA compliant? Learn about Teams' BAA coverage, admin setup requirements, guest access risks, and the Teams for Healthcare tier.
WhatsApp / Meta Is WhatsApp HIPAA Compliant for Medical Clinics? Is WhatsApp HIPAA compliant? No. Meta does not offer a BAA for WhatsApp. Learn why clinics must avoid PHI on WhatsApp and what to use instead.
Zoom Is Zoom HIPAA Compliant for Small Clinics? Is Zoom HIPAA compliant? Guide for clinics on Zoom for Healthcare, BAA scope, recording storage, and chat/PMI risks.
Google Drive Can Healthcare Teams Use Google Drive for PHI? Can healthcare teams use Google Drive for PHI? Guide to Google Workspace BAA requirements, included functionality, and sharing controls.
Airtable Is Airtable HIPAA Compliant for Healthcare Workflows? Is Airtable HIPAA compliant? Guide for clinics on Enterprise Scale gating, BAA requirements, integrations, and AI settings.
Asana Is Asana HIPAA Compliant for Small Clinics? Is Asana HIPAA compliant? Guide for small clinics on Asana's BAA posture, enterprise gating, and where compliance risk remains.
Google Sheets Can Healthcare Teams Use Google Sheets for PHI? Can healthcare teams use Google Sheets for PHI? Guide to Google Workspace BAA requirements, included functionality, and spreadsheet workflow limits.
Basecamp Is Basecamp HIPAA Compliant for Clinic Work? Is Basecamp HIPAA compliant? Guide for clinics on public documentation gaps, security materials, and why PHI workflows need caution.
Calendly Is Calendly HIPAA Compliant for Patient Scheduling? Is Calendly HIPAA compliant? Guide for clinics on scheduling workflows, BAAs, and the patient-information risks that still remain.
ClickUp Is ClickUp HIPAA Compliant for Clinical Work? Is ClickUp HIPAA compliant? Guide for clinics on enterprise gating, BAAs, and where ClickUp still leaves operational compliance work on the clinic.
Jira Is Jira HIPAA Compliant for Clinic Operations? Is Jira HIPAA compliant? Guide for clinics on Atlassian plan eligibility, BAA coverage, implementation requirements, and workflow risk.
Microsoft Planner Is Microsoft Planner HIPAA Compliant for Clinic Tasks? Is Microsoft Planner HIPAA compliant? Guide for clinics on Microsoft 365 BAA coverage, Planner visibility limits, and guest-access risk.
monday.com Is monday.com HIPAA Compliant for Small Clinics? Is monday.com HIPAA compliant? Guide for small clinics on Enterprise gating, BAA activation, notifications, and workflow risk.
Notion Is Notion HIPAA Compliant for Clinic Documentation? Is Notion HIPAA compliant? Guide for clinics on Enterprise gating, BAA requirements, product limitations, and configuration controls.
Smartsheet Is Smartsheet HIPAA Compliant for Clinical Work? Is Smartsheet HIPAA compliant? Guide for clinics on Enterprise eligibility, PHI Eligible Services, shared responsibility, and add-on caveats.
Trello Is Trello HIPAA Compliant for Clinic Workflows? Is Trello HIPAA compliant? Guide for clinics on Atlassian's HIPAA docs, Trello-specific gaps, and why PHI workflows need caution.
Jotform Can Healthcare Teams Use Jotform for PHI? Can healthcare teams use Jotform for PHI? Guide to Jotform's HIPAA program, BAA path, and workflow limits.
Microsoft Teams Can Healthcare Teams Use Microsoft Teams for PHI? Can healthcare teams use Microsoft Teams for PHI? Guide to Microsoft's BAA terms, in-scope services, and workflow caveats.
OneDrive Can Healthcare Teams Use OneDrive for PHI? Can healthcare teams use OneDrive for PHI? Guide to Microsoft's BAA terms, in-scope services, and personal file-sharing risks.
SharePoint Can Healthcare Teams Use SharePoint for PHI? Can healthcare teams use SharePoint for PHI? Guide to Microsoft's BAA terms, in-scope services, and document governance requirements.
Slack Can Healthcare Teams Use Slack for PHI? Can healthcare teams use Slack for PHI? Guide to Enterprise Grid, BAA requirements, and Slack HIPAA limitations.