Since Paubox is a Business Associate to thousands of customers, we’ve been wondering if they are able to use JotForm in a HIPAA compliant manner. In fact, we've noticed more vendors, customers, and prospects asking about HIPAA compliant services. This is especially true now as we see an accelerated, long overdue adoption of digital transformation in healthcare.
We know the HIPAA industry is vast, so we can empathize with just how many people need to use cloud services in this sector. Today we will determine if JotForm offers HIPAA compliant service or not.
JotForm
JotForm is an online form building company. Its software creates forms with a drag-n-drop creation tool and an option to encrypt user data. JotForm was founded in 2006 by Aytekin Tank. The company is based in San Francisco.
What is a Business Associate?
A Business Associate is a person or company that performs certain functions or activities that involve the use or disclosure of protected health information (PHI) for a Covered Entity. In a nutshell, the role of a Business Associate is to help Covered Entities comply with the HIPAA Privacy Rule
Read full article: What does it mean to be a Business Associate?
Business Associate Agreement provisions
If a Business Associate provides services to a Covered Entity, then a Business Associate Agreement (BAA) must be in place. A BAA is a written contract between a Covered Entity and a Business Associate and is required by law for HIPAA compliance. At a minimum, a Business Associate Agreement contains 10 provisions.
Read full article: Business Associate Agreement Provisions
JotForm and the Business Associate Agreement
We checked the JotForm site for mention of their ability to sign a Business Associate Agreement (BAA). We found the following pages:- HIPAA-Compliant Online Forms
- How to receive the BAA for my HIPAA account?
- Can you provide a Business Associate Agreement?
From these pages, we can see that:
- JotForm will sign a BAA if a customer upgrades to their "HIPAA Compliance" plan
- The JotForm "HIPAA Compliance" plan starts at $39 a month
- JotForm's HIPAA BAA Request Form is here
See Also: HIPAA Breaches and Cloud Providers
Does JotForm offer HIPAA Compliant Service?
The Business Associate Agreement (BAA) is a key component to HIPAA compliance between a Covered Entity and a Business Associate. We were able to learn the following about JotForm about their ability to be considered a HIPAA compliant solution:- JotForm will sign a BAA if a customer upgrades to their "HIPAA Compliance" plan
- A customer can begin the process upgrading to the JotForm "HIPAA Compliance" plan here
Conclusion: JotForm is a HIPAA compliant online forms service.