The Health Insurance Portability and Accountability Act (HIPAA) establishes standards for the protection of sensitive patient information in electronic healthcare transactions.
Who this is for
This content applies to all users on the Proof platform.
This is a paid feature and must be enabled by Proof. If you're interested in this feature, contact your Customer Success Manager (CSM) or contact our sales team.
HIPAA compliance
Proof is able to support HIPAA compliance for any organization that meets both requirements below:
- Meets the definition of a covered entity
- Signs a business associate agreement (BAA) provided by Proof that delineates each party’s roles and responsibilities
Additional protections
Some organizations supporting HIPAA compliance also have a HITRUST Certification that covers controls for the processing of highly sensitive data, such as personal health information (PHI). Though Proof does not have a HITRUST Certification, we are committed to security and:
- Undergo a System and Organization Control (SOC 2) audit each year
- Maintain a Kantara Certification
Both of these follow the same security principles and controls related to the processing of such sensitive information.