Along with HIPAA compliant email, covered entities need to ensure all other online communication is secure. Dialpad is a cloud communication platform that lets businesses call, meet, and message their patients. But is it HIPAA compliant? Let’s explore if it meets the HIPAA security standards.
Dialpad and the business associate agreement
A business associate agreement (BAA) is necessary when a third-party vendor has access, stores, or transmits protected health information (PHI). A BAA is required by law for HIPAA compliance, and it ensures a business associate follows HIPAA security guidelines.
Covered entities should not work with any business associate that is not willing to sign a BAA.
Read more: The complete guide to HIPAA violations
Communication platforms need to sign a BAA because they often have access to potential PHI like names or telephone numbers.
In the case of Dialpad, it is willing to participate in a BAA. An online BAA is available on all paid accounts. Covered entities will need to review and accept the BAA before they can use Dialpad for HIPAA compliant communication.
Dialpad and data security
A BAA is not the only element a covered entity needs to look for when choosing a HIPAA compliant vendor. Not all data security protocols are the same, so it’s important for covered entities to investigate a vendor’s security measures before deciding to use it.
Dialpad offers the following security protocols:
- Data encryption at rest and in transit
- Data access limitations based on user privileges
- Automatic backups
- 24/7 emergency response
- Monitors log access for unusual activity
- Conducts security risk assessments
Is Dialpad HIPAA compliant?
Yes, Dialpad can be HIPAA compliant. Covered entities will need to sign the online BAA before using Dialpad.
Don’t forget email security
Covered entities need to make it a priority to have HIPAA compliant communications. This is especially important for HIPAA compliant emails. Email breaches continue to be one of the most common attack vectors.
Paubox Email Suite is the solution to keeping your emails secure and HIPAA compliant. A BAA is automatically in all plans, so you can rest assured that we are continuously working to keep PHI safe.
Paubox is easy for your employees to use. It seamlessly integrates with your current email provider, such as Google Workspace and Microsoft 365. Your employees can send emails directly to a patient’s inbox – no need to sign into a client portal or third-party app to read each other’s messages.