1 min read

Is TherapyNotes HIPAA compliant?

Caitlin Anthoney June 27, 2024

HIPAA compliance
Clipboard with 'Therapy Notes' heading and checkmarks

TherapyNotes is a practice management software tailored for behavioral health professionals, offering functionalities like electronic health records (EHR), billing, scheduling, and telehealth services.

Is TherapyNotes HIPAA compliant? Yes, TherapyNotes can be HIPAA compliant.

 

Will TherapyNotes sign a business associate agreement (BAA)?

Yes, TherapyNotes will sign a business associate agreement, which can be reviewed under their privacy policy here.

 

What does the TherapyNotes BAA cover?

The TherapyNotes BAA covers the use and disclosure of protected health information (PHI), stating, theyimplement commercially reasonable administrative, physical, and technical security measures designed to protect your information from unauthorized access. 

Although theycannot ensure the security of any information [users] transmit to [them] or guarantee that this information will not be accessed, disclosed, altered, or destroyed,theywill make any legally required disclosures of any breach of the security, confidentiality, or integrity of [user’s] Personal Information.”

Their BAA covers:

  • Information use and sharing
  • Protection of PHI
  • Data retention
  • Compliance with legal requirements
  • Third party links
  • Do-not-track signals
  • Children's privacy
  • Privacy for users in the European Union
  • Privacy rights of United States residents

 

Conclusion

TherapyNotes signs a BAA and is therefore HIPAA compliant.

Learn more: Do therapy notes need to be HIPAA compliant?

 

FAQs

What is a business associate agreement?

A business associate agreement (BAA) is a legally binding contract establishing a relationship between a covered entity under the Health Insurance Portability and Accountability Act (HIPAA) and its business associates. The purpose of this agreement is to ensure the proper protection of personal health information (PHI) as required by HIPAA regulations.

 

What is HIPAA?

The Health Insurance Portability and Accountability Act (HIPAA) sets national standards for protecting the privacy and security of certain health information, known as protected health information (PHI). HIPAA is designed to protect the privacy and security of individuals’ health information and to ensure that healthcare providers and insurers can securely exchange electronic health information. Violations of HIPAA can result in significant fines and penalties for covered entities.

 

Who does HIPAA apply to?

HIPAA applies to covered entities, which include healthcare providers, health plans, and healthcare clearinghouses. It also applies to business associates of these covered entities. These are entities that perform certain functions or activities on behalf of the covered entity.
Secure every email you send and receive HIPAA compliant. Threat-proof. Hassle-free.
Caution cone on computer keyboard

CCPA: How California’s new privacy law impacts healthcare

Heather C. Orr : December 9, 2019

In June 2018, California passed a new privacy law, AB 375, that in some ways goes even further to protect private data than the General Data...

HIPAA compliance
Read More
Hand holding a smartphone

Discussing health issues with patients via text message

Picture of Tshedimoso Makhene Tshedimoso Makhene : October 3, 2024

While HIPAA does not explicitly prohibit texting for patient-provider communication, healthcare providers must ensure that any communication through...

HIPAA compliance Patient privacy
Read More
pills over prescription pad

HIPAA and prescription records

Picture of Kirsten Peremore Kirsten Peremore : June 14, 2024

Prescription records are covered under HIPAA because they are considered protected health information (PHI). This means that pharmacies and...

HIPAA compliance
Read More

Subscribe to Paubox Weekly

Every Friday we bring you the most important news from Paubox. Our aim is to make you smarter, faster.