Compliancy Group Confirms MailHippo is HIPAA Compliant

Posted by Steve Alder

MailHippo, an encrypted email provider, has been awarded the HIPAA Seal of Compliance by Compliancy Group, confirming that MailHippo is HIPAA compliant.

Encryption of electronic protected health information (ePHI) is an addressable implementation specification of the HIPAA Security Rule, which means it is not required, provided that an alternative safeguard is implemented that provides an equivalent level of protection. If HIPAA-regulated entities sent any ePHI via email beyond the protection of a firewall, then emails must be encrypted to prevent unauthorized access to the ePHI they contain.

MailHippo provides an encrypted email solution that works with all email providers that protects email with AES 256-bit end-to-end encryption, ensuring all emails are protected in transit and at rest. The platform allows users to send and receive encrypted emails from anyone – even individuals who do not subscribe to the service – and track all message access, obtain full message details on demand, and set expiry dates for messages. MailHippo also offers signable HIPAA-compliant forms.

As a provider of those services to HIPAA-regulated entities, MailHippo is classed as a business associate under HIPAA, is required to sign a business associate agreement, and must comply with the HIPAA Rules. MailHippo opted to demonstrate compliance with the Health Insurance Portability and Accountability Act’s Privacy, Security, Breach Notification, Omnibus Rules, and the requirements of the HITECH Act by partnering with Compliancy Group. MailHippo used Compliancy GRoup’s proprietary HIPAA compliance process to confirm that it has achieved compliance with all aspects of the HIPAA Rules that are applicable to business associates, and tracked progress throughout that process using Compliancy Group’s HIPAA compliance software – The Guard.

Compliancy Group’s methodology includes a 6-stage HIPAA risk analysis and remediation process, and after completing the compliance program, through the use of The Guard, Compliancy Group’s HIPAA compliance experts assessed MailHippo’s good faith effort toward maintaining HIPAA compliance and awarded the company the HIPAA Seal of Compliance.

The HIPAA Seal of Compliance demonstrates to current and future HIPAA-regulated entity clients that MailHippo’s encryption solutions are fully compliant with the HIPAA Rules and the HITECH Act and confirmed that MailHippo has implemented an effective HIPAA compliance program to ensure HIPAA compliance is maintained.

The post Compliancy Group Confirms MailHippo is HIPAA Compliant appeared first on HIPAA Journal.