If you are a Covered Entity or Business Associate that is looking for a HIPAA compliant CRM solution, you should consider using a platform that has been certified by a recognized third-party organization.
No, HubSpot is not HIPAA compliant. HubSpot does not currently sign Business Associate Agreements (BAAs) with its clients. This means that HubSpot is not a HIPAA compliant solution and should not be used by Covered Entities or Business Associates to collect, receive, store, or transmit Protected Health Information (PHI).
However, HubSpot does offer a number of features that can help organizations to protect their PHI. For example, HubSpot offers data encryption, firewall protection, and intrusion detection and prevention systems. Additionally, HubSpot has a team of security experts who are responsible for monitoring and maintaining the security of the platform.
If you are a Covered Entity or Business Associate that is looking for a HIPAA compliant CRM solution, you should consider using a platform that has been certified by a recognized third-party organization.