HIPAA Business Associate Agreement (BAA) in Zoom App

According to the U.S. “Health Insurance Portability and Accountability Act”, HIPAA business associate agreements (BAA) are contracts between HIPAA-covered entities and their business associates (BAs). HIPAA guidelines govern the protection of personal health information (PHI) in this contract.

Here is more information about Zoom’s compliance with HIPAA.

Note : 

The Zoom subscription plans are also complemented by pre-paid plans with 1, 2, or 3-year increments. Pricing is available from Sales.

Configuration of Zoom account BAA

For covered entities and business associates who would like to store PHI on the platform, a BAA must be in place before such an exchange can occur, whereas for enhancements to feature functionality, the administrator does not need to touch any manual configuration steps.

In addition to Zoom’s HIPAA offering, Zoom’s Compliance, Privacy, and Security products are conducive to enhancing compliance and maintaining privacy.

Features enabled

  1. Zoom Phone, our cloud VoIP phone solution featuring secure HD voice; call forwarding, recording, and delegation; and voicemail transcription
  2. Zoom Chat to quickly and securely communicate with colleagues onsite or on the go
  3. Provide a secure location for patient health information and reporting on the administrator dashboard

What’s more, administrators have the flexibility to turn these settings on and off at the network level depending on your organization’s specific policies. This allows you to give employees what they need when they need it, without worrying about granting access to unnecessary features.

Privacy and security must be ensured

  • Using industry-standard encryption, all meeting data is protected while in motion
  • In order to enable Zoom’s Advanced Chat Encryption feature, users are required to enable the Zoom server in order to send and receive encrypted messages. This feature can be enabled via the Zoom server settings
  • There are various privacy features available that allow you to ensure that session attendees are allowed entry at your discretion, whether it’s through individual or group entry, waiting rooms, forced meeting passcodes, or locked rooms
See also  Recommended settings for Home Office Zoom Rooms

Please contact Sales if you would like more information on how a BAA can be signed with Zoom.


Frequently Asked Questions


Whether Zoom is HIPAA compliant is a question that we often hear from our clients. Zoom meets all the requirements that make Zoom compliant with the HIPAA Security Rule, like authentication measures, which make Zoom compliant with the Security Rule.
In fact, if the healthcare organization enters into a business associate agreement with Zoom before using a HIPAA compliant web conferencing and video conferencing platform, such as Zoom, then it is possible to provide healthcare services using a HIPAA compliant web conferencing and video conferencing platform, such as Zoom. In addition, when using the platform in a compliance-friendly manner (e.g. by adhering to the HIPAA Minimum Necessary Standard), you must comply with HIPAA regulations.

Detailed provisions are contained in Business Associate Agreements

In order to be HIPAA compliant, a Covered Entity must have a Business Associate Agreement (BAA) between the Covered Entity and the Business Associate.

There is a monthly fee of $14.99 for this service
Because Zoom boasts enterprise features as well as simple user management, you don’t have to hire a dedicated IT department in order to manage your users since it offers enterprise features and easy user management. A Zoom license costs as little as $14.99 per month and it is designed to allow small practices to enjoy HIPAA-compliant software by signing up with a Business Associate Agreement, which can enable the software to function in a HIPAA-compliant manner.
According to the results of Zoom’s HIPAA-compliant healthcare license, it has been demonstrated that it has enabled staff, hospital administrators, and health systems to use video in much more innovative ways than had previously been possible, setting a new benchmark in the use of video technology among providers and hospitals alike. A number of innovative ways have been developed to use video to connect members of medical communities and conduct virtual doctor’s visits.