How to make Box HIPAA compliant

Featured image

Share this article

Is Box HIPAA Compliant? - Paubox

Lately, we’ve been discussing in the office whether certain cloud-based solutions are HIPAA compliant or not. Box is a publicly traded cloud content management and file sharing service for businesses.

We know the HIPAA industry is vast so we can empathize with just how many people need to use cloud-based services in this sector.

In previous posts, we’ve covered the following cloud solutions and their capabilities for HIPAA compliance:

Today, we will determine if Box offers HIPAA compliance or not.

SEE ALSO: HIPAA Breaches and Cloud Providers

About Box

Box is a cloud computing business which provides file-sharing, collaborating, and other tools for working with files that are uploaded to its servers. It went public on the NYSE in 2015.

Box was originally developed as a college project of Aaron Levie while he was a student of the University of Southern California in 2004. Levie soon dropped out of USC, became CEO, and he got his childhood friend Dylan Smith to become CFO.

Box and the Business Associate Agreement

We’ve previously talked about how a Business Associate Agreement (BAA) is a written contract between a Covered Entity and a Business Associate. It is required by law for HIPAA compliance.

We checked Box’s site and quickly found the Box for Healthcare solutions page.

On that page, Box states:

“For extra assurance, Box signs HIPAA Business Associate Agreements (BAAs) with customers.”

When did Box first announce HIPAA Compliance?

Now that we know Box support HIPAA compliance, we thought it would be useful to find out when they first offered HIPAA compliant services.

The answer turns out to be April 2013.

We found a Box Community guided titled, Box HIPAA and HITECH Overview and FAQs.

It mentions:

“In April of 2013, Box announced its ability to support the HIPAA and HITECH regulations, as well as the ability to sign HIPAA Business Associate Agreements (BAAs) with customers.”

Does Box Offer HIPAA Compliant Service?

The Business Associate Agreement is a key component to HIPAA compliance between a Covered Entity and a Business Associate.

Information on Box’s website concisely states they were an early adopter for HIPAA compliance among cloud vendors.

Conclusion

Box for Healthcare is HIPAA compliant.

Make sure you sign a Business Associate Agreement with them.

Try Paubox Email Suite for FREE today.
Author Photo

About the author

Hoala Greevy

Founder of Paubox. Kayak fishing when I can. Native Hawaiian CEO.

Read more by Hoala Greevy

Get started with
end-to-end protection

Bolster your organization’s security with healthcare’s most trusted HIPAA compliant email solution

The #1-rated email encryption 
and security software on G2

G2 Badge: Email Encryption Leader Fall 2022
G2 Badge: Security Best Usability Fall 2022
G2 Badge: Encryption Momentum Leader Fall 2022
G2 Badge: Security Best Relationship Fall 2022
G2 Badge: Security Users Most Likely to Recommend Fall 2022
G2 Badge: Email Gateway Best Relationship Fall 2022
G2 Badge: Email Gateway Best Meets Requirements Fall 2022
G2 Badge - Users Most Likely to Recommend Summer 2022
G2 Badge: Email Gateway Best Results Fall 2022
G2 Badge: Email Gateway Best Usability Fall 2022
G2 Badge: Email Gateway Best Support Fall 2022
G2 Badge: Email Gateway Easiest To Use Fall 2022
G2 Badge: Email Gateway Easiest Setup Fall 2022
G2 Badge: Email Gateway Easiest Admin Fall 2022
G2 Badge: Email Gateway Easiest to do Business with Fall 2022
G2 Badge: Email Gateway Highest User Adoption 2022
G2 Badge: Email Gateway High Performer Fall 2022
G2 Badge: Email Gateway Momentum Leader Fall 2022
G2 Badge: Email Gateway Most Implementable Fall 2022
G2 Badge: Email Gateway Users Most Likely to Recommend Fall 2022