by Sara Nguyen
Article filed in

Is HoneyBook HIPAA compliant?

by Sara Nguyen

HoneyBook company logo

Using an online scheduling tool can make it easy and simple for patients to book appointments with you. Client management software often includes a scheduling feature and can make running your practice easier.

Let’s review HoneyBook for HIPAA compliance.

What is HoneyBook?

HoneyBook is a client management software that enables businesses to oversee the customer experience. Some key features include invoicing, online scheduling, and automated workflows.

Is HoneyBook HIPAA compliant?

HoneyBook doesn’t match the criteria needed for HIPAA compliance. This means that covered entities and business associates should look elsewhere for online scheduling tools and client management software.

Online scheduling tools can collect electronic protected health information (ePHI) like phone numbers and names. The potential to collect ePHI means online scheduling tools are considered business associates, and they need data security that meets HIPAA regulations.

One way to ensure that online scheduling tools are HIPAA compliant is their willingness to sign a business associate agreement (BAA). This agreement ensures that business associates are following the HIPAA Security Rule in protecting their sensitive data.  A BAA with all business associates is a mandatory aspect of HIPAA compliance.

HoneyBook’s website doesn’t mention any willingness to sign a BAA. If there’s no BAA in place, then it’s automatically considered not in compliance with HIPAA.

Why you should partner with Paubox

While HIPAA compliant online scheduling tools are important, you can’t forget to protect your email data. HIPAA compliant email is critical to preventing data breaches.

Paubox Email Suite has achieved HITRUST CSF certification and meets key regulatory and industry-defined requirements to manage risk, and every customer receives a BAA at no additional charge.

Paubox Email Suite allows you to send encrypted emails from your email platform, including Google Workspace and Microsoft 365. Your patients receive emails directly in their inboxes, which means you can stop using client portals and passwords.

Paubox uses security features like blanket TLS encryption and two-factor authentication for ultimate protection. Our Plus and Premium plan levels also include our patented ExecProtect feature, which stops display name spoofing emails from entering your employees’ inboxes. 

You can rest assured that Paubox will protect your sensitive data and meet HIPAA guidelines for security.

Try Paubox Email Suite for FREE today.