HIPAA Compliance
The Health Insurance Portability and Accountability Act (including the Privacy Rule, Security Rule, Breach notification Rule, and Health Information Technology for Economic and Clinical Health Act) ("HIPAA"), requires Covered Entities and Business Associates to take certain measures to protect health information that can identify an individual. It also provides certain rights to individuals. Zoho does not collect, use, store or maintain health information protected by HIPAA for its own purposes. However, Zoho Assist provides certain features (as described below) to help its customers use Zoho Assist in a HIPAA compliant manner.
HIPAA requires Covered Entities to sign a Business Associate Agreement (BAA) with its Business Associates. You can request our BAA template by sending an email to legal@zohocorp.com.
The uses of remote support software—from monitoring a patient's health remotely to managing special medical devices—has greatly helped the healthcare industry cross a lot of hurdles. However, because these activities involve transferring patient data across the Internet, remote support software must ensure data in transit cannot be intercepted.
What constitutes to be ePHI (electronic Personal Health Information)
Patient Name, Patient Email ID, Support Session Agenda, Session Description and Session Recordings are considered ePHI.
How does Zoho Assist help a healthcare organization to comply with HIPAA?
Zoho Assist has a number of safeguards to help healthcare organizations fulfil their HIPAA requirements. Here are ways in which Zoho Assist will help your organization to achieve HIPAA compliance
HIPAA Requirements | Features that help you to fulfill HIPAA guidelines |
---|---|
Access Control |
|
Audit Controls |
|
Integrity | Zoho Assist has mechanisms that ensure a high degree of integrity to protect patient information. They include:
|
Authentication | Zoho Assist has mechanisms that ensure a high degree of integrity to protect patient information. They include:
|
Encryption | Zoho Assist encrypts the ePHI data both in Transit and at Rest.
|