Paubox blog: HIPAA compliant email made easy

Is Quenza HIPAA compliant?

Written by Kirsten Peremore | September 22, 2023

Quenza is a practice management platform designed for coaches, therapists, and practitioners. Based on our information gathered, Quenza is HIPAA compliant. 

 

What is Quenza?

Quenza is a practice management platform designed for coaches, therapists, and practitioners seeking to enhance client engagement, streamline administrative tasks, and scale their practices. It offers a range of features, including automated client engagement, digital paperwork management, progress tracking, and compliance with strict privacy regulations such as GDPR, HIPAA, and CCPA. Quenza empowers practitioners to provide personalized care to their clients while maintaining data security and privacy, allowing them to expand their practices efficiently and effectively.

See also: Is OneNote HIPAA compliant?

 

Quenza and business associate agreements (BAAs)

Under the Health Insurance Portability and Accountability Act (HIPAA), a business associate agreement (BAA) is a document that outlines the responsibilities of third-party vendors when handling protected health information (PHI). Any software or service that stores, processes, or transmits PHI on behalf of a healthcare entity is considered a business associate and should, therefore, sign a BAA.

Given Quenza's functionalities, such as facilitating the management of client information and progress tracking in healthcare settings, it's likely that it would be categorized as a business associate when used within healthcare settings. After reviewing their website, we found that Quenza does offer a BAA. Specifical, their website states: "We offer a BAA (Business Associate Agreement) to our professional users." 

See also: What does it mean to be a business associate?

 

Quenza and data security

  1. Privacy by Design (PbD): Quenza follows Privacy by Design principles, which means that privacy considerations are integrated into the development process from the start.
  2. Password and PIN security: Quenza encourages users to set strong passwords and utilize personal PIN codes for added security.
  3. Automatic lockout: Users are automatically logged out or locked out of their accounts after 30 minutes of inactivity to prevent unauthorized access.
  4. Data deletion and portability: Quenza's end users (clients) have control over their data, including the ability to request data deletion or obtain a complete portfolio of their data in PDF format.
  5. Global privacy standards: Quenza addresses privacy regulations and strives to maintain data security and privacy standards.
  6. Encryption: Data transmitted and stored on Quenza is secure and encrypted to protect client information.

 

Is Quenza HIPAA compliant?

Quenza demonstrates a commitment to data security by adhering to Privacy by Design (PbD) principles, automatic lockout features, and robust encryption measures. Furthermore, their willingness to sign a BAA reinforces their compliance with HIPAA standards. 

Based on these factors, Quenza is HIPAA compliant.

See also: HIPAA Compliant Email: The Definitive Guide