1 min read

Is Workplace HIPAA compliant? (update 2026)

Picture of Farah Amod Farah Amod December 2, 2021

HIPAA compliance
Workplace logo

Workplace from Meta is an enterprise communication and collaboration platform designed to bring familiar social networking features such as news feeds, groups, and messaging into the workplace for internal business use.

Is Workplace HIPAA compliant? No, based on our research, Workplace is not HIPAA compliant.

 

What changed this year?

As of March 2026, our review did not identify any publicly disclosed changes to Workplace HIPAA-related policies or BAA terms. However, in September 2025, Workplace became read-only, with content available for download until May 31, 2026. After June 1, 2026, Workplace will be closing and all data will be deleted.

 

Will Workplace sign a business associate agreement (BAA)?

No, Workplace will not sign a business associate agreement, and therefore is not HIPAA compliant.

 

Conclusion

Workplace does not sign a BAA and is therefore not HIPAA compliant.

Learn more: HIPAA Compliant Email: The Definitive Guide

 

FAQS

What is a business associate agreement?

A business associate agreement (BAA) is a legally binding contract establishing a relationship between a covered entity under the Health Insurance Portability and Accountability Act (HIPAA) and its business associates. The purpose of this agreement is to ensure the proper protection of personal health information (PHI) as required by HIPAA regulations.

 

What is HIPAA?

The Health Insurance Portability and Accountability Act (HIPAA) sets national standards for protecting the privacy and security of certain health information, known as protected health information (PHI).

HIPAA is designed to protect the privacy and security of individuals’ health information and to ensure that healthcare providers and insurers can securely exchange electronic health information. Violations of HIPAA can result in significant fines and penalties for covered entities.

 

Who does HIPAA apply to?

HIPAA applies to covered entities, which include healthcare providers, health plans, and healthcare clearinghouses. It also applies to business associates of these covered entities. These are entities that perform certain functions or activities on behalf of the covered entity.
Secure every email you send and receive HIPAA compliant. Threat-proof. Hassle-free.
Paubox website homepage displayed on laptop screen

HIPAA compliance for business associates

Picture of Hoala Greevy Hoala Greevy : November 25, 2014

I went to a networking event for healthcare startups in Sunnyvale recently and was surprised by what I learned. The event was well attended and it...

HIPAA compliance
Read More
Two men having a casual conversation indoors, one holding an acoustic guitar

HIPAA Conduit Exception Rule - what is it?

Picture of Hoala Greevy Hoala Greevy : September 19, 2017

While I was doing research regarding Apple's FaceTime and whether or not it achieves HIPAA Compliance, I came across opinions on the internet that...

HIPAA compliance
Read More
Dental treatment chair and operatory with overhead light and instruments

HIPAA rules that every dentist should know

Hannah Trum : February 26, 2021

By Dr. Steven Kafko, 209 NYC Dental The issue of patient security is vital to the success of all healthcare workers, including dentists. Below we’ll...

HIPAA compliance
Read More

Subscribe to Paubox Weekly

Every Friday we bring you the most important news from Paubox. Our aim is to make you smarter, faster.