Healthie is a texting platform designed for healthcare providers to communicate with their clients, facilitating remote support and engagement. Furthermore, it supports collaborative charting among providers and multi-provider scheduling.
Is Healthie HIPAA compliant?
Yes, based on our research, Healthie can be HIPAA compliant.
Will Healthie sign a business associate agreement (BAA)?
Yes, Healthie will sign a business associate agreement, which can be reviewed here.
What does the Healthie BAA cover?
The Healthie BAA covers the use and disclosure of protected health information (PHI), ensuring protection of PHI, notifications of security incidents, access by HHS requests, individual Right of Access requests, individual accounting requests, and return of PHI.
Their BAA covers:
- Use and disclosure of protected health information (PHI)
- Implementation of safeguards
- Subcontractor agreements
- Amendments to PHI
- Access to information
- Accounting of disclosures
- Prohibition of remuneration for PHI
- Training requirements
- Notification of breaches
What does the Healthie BAA exclude?
The Healthie BAA excludes de-identified information, allowing Healthie to create, use, and disclose de-identified PHI in compliance with HIPAA regulations.
Their terms state that the “Business Associate may create, use and disclose de-identified PHI if the de-identification is in compliance with 45 CFR §164.502(d), and any such de-identified PHI meets the standard and implementation specifications for de-identification under 45 CFR §164.514(a) and (b), as they may be amended from time to time.”
Their BAA further explains that a covered entity shall not request Healthie to use or disclose PHI in a manner not permissible under HIPAA or HITECH, and shall not request more than the minimum necessary PHI.
Specifically stating that the “Covered Entity shall not request Business Associate to use or disclose PHI in any manner that would not be permissible under HIPAA or HITECH if done by Covered Entity. Covered Entity shall not request Business Associate to use or disclose more than the minimum PHI necessary.”
Conclusion
Healthie signs a BAA and is therefore HIPAA compliant.
FAQs
What is a business associate agreement?
A business associate agreement (BAA) is a legally binding contract establishing a relationship between a covered entity under HIPAA and its business associates, ensuring proper protection of personal health information (PHI).
What is HIPAA?
HIPAA sets national standards for protecting the privacy and security of certain health information, known as protected health information (PHI), ensuring secure exchange of electronic health information.
Who does HIPAA apply to?
HIPAA applies to covered entities including healthcare providers, health plans, healthcare clearinghouses, and business associates performing certain functions on behalf of covered entities.
