HIPAA (the Health Insurance Portability and Accountability Act of 1996) is U.S. legislation created to improve healthcare standards.
We know the HIPAA industry is vast and that it is important to work well and communicate with patients while remaining HIPAA compliant.
SEE ALSO: HIPAA compliant email
Today, we will determine if Totango is HIPAA compliant or not.
Totango is a customer success platform with an all-in-one system.
With Totango, organizations can design, run, measure, and scale a customer’s SaaS (software-as-a-service) journey for customer retainment and growth.
As a customer intelligence tool, Totango allows for the active monitoring of customer health and engagement. The company can do this by partnering with other technology leaders (e.g., Salesforce) to extend the value of its customer success tools.
Totango and the business associate agreement
A major part of HIPAA compliance is ensuring a business associate will sign a business associate agreement (BAA). A business associate is a person or entity that performs certain functions or activities that involves the use or disclosure of PHI.
There is no mention of a BAA or HIPAA on the Totango website.
Totango and data protection
Totango uses a security system it calls Totango Shield to protect customer data. According to the website, “Security and privacy are built into the foundation of [its] customer success platform and [its] company.”
Totango is hosted by Amazon Web Services infrastructure and therefore also uses its physical and environmental controls to keep data safe.
Is Totango HIPAA compliant?
The BAA is a key component of HIPAA compliance and Totango does not appear to sign a BAA.
Totango is not HIPAA compliant.