Paubox blog: HIPAA compliant email made easy

Is Solutionreach HIPAA compliant?

Written by Caitlin Anthoney | June 10, 2024

Solutionreach is a cloud-based platform designed to help streamline communication between healthcare providers and patients, offering appointment reminders, recall notifications, patient surveys, online scheduling, and reputation management. 

Is Solutionreach HIPAA compliant? 

Yes, based on our research, Solutionreach can be HIPAA compliant.

 

Will Solutionreach sign a business associate agreement (BAA)? 

Yes, Solutionreach will sign a business associate agreement, which can be reviewed when customers access their Solutionreach account for the first time. 

 

What does the Solutionreach BAA cover? 

According to Solutionreach's Legal Compliance, their BAA covers the use and disclosure of protected health information (PHI). 

More specifically, their terms state “As your business associate, Solutionreach follows detailed policies governing the protection of your patients’ PHI, including employing administrative, physical, and technical safeguards as required by HIPAA rules and regulations.” 

 

What does the Solutionreach BAA exclude? 

Solutionreach's terms specify that it is the responsibility of the healthcare provider to ensure complete HIPAA compliance. 

Their terms state, "It is your responsibility to comply with all aspects of HIPAA as it relates to the protection, use, and disclosure of your patient PHI."

This implies that their BAA does not cover all compliance obligations and places some responsibilities on providers to ensure their use of the platform adheres to HIPAA regulations.

 

Conclusion

Solutionreach signs a BAA and is therefore HIPAA compliant, but the healthcare provider is responsible for ensuring full HIPAA compliance when using the platform.

Learn more: HIPAA Compliant Email: The Definitive Guide

 

FAQs 

What is a business associate agreement?

A business associate agreement (BAA) is a legally binding contract establishing a relationship between a covered entity under the Health Insurance Portability and Accountability Act (HIPAA) and its business associates. The purpose of this agreement is to ensure the proper protection of personal health information (PHI) as required by HIPAA regulations.

 

What is HIPAA?

The Health Insurance Portability and Accountability Act (HIPAA) sets national standards for protecting the privacy and security of certain health information, known as protected health information (PHI). HIPAA is designed to protect the privacy and security of individuals’ health information and to ensure that healthcare providers and insurers can securely exchange electronic health information. Violations of HIPAA can result in significant fines and penalties for covered entities.

 

Who does HIPAA apply to?

HIPAA applies to covered entities, which include healthcare providers, health plans, and healthcare clearinghouses. It also applies to business associates of these covered entities. These are entities that perform certain functions or activities on behalf of the covered entity.