HIPAA Compliance with Bigin

The Health Insurance Portability and Accountability Act (including the Privacy Rule, Security Rule, Breach notification Rule, and Health Information Technology for Economic and Clinical Health Act) ("HIPAA"), requires Covered Entities and Business Associates to take certain measures to protect health information that can identify an individual. It also provides certain rights to individuals. Zoho does not collect, use, store or maintain health information protected by HIPAA for its own purposes. However, Bigin by Zoho CRM provides certain features (as described below) to help its customers use Bigin by Zoho CRM in a HIPAA compliant manner.

HIPAA requires Covered Entities to sign a Business Associate Agreement (BAA) with its Business Associates. You can request our BAA template by sending an email to legal@zohocorp.com

HIPAA compliance in Bigin

HIPAA compliance is applicable for the Contacts module in Bigin.

When a healthcare organization starts using Bigin to store customer information in a shared database, it is crucial that they ensure the confidentiality of an individual's health information.

In Bigin, we provide ways for healthcare organizations to secure and restrict export of individuals' health information and stay compliant with HIPAA.

The Bigin admins can achieve the above by performing the following steps:

1. Marking fields that contain PHI (Personal Health Information)
In the Contacts module, there may be only a few fields that contain personal health details of a customer. For example, surgical history, symptoms, medication details, etc. marking these fields as PHI will help the system identify and restrict access to these fields through API and prevent the export of these field values. A total of 30 fields can be marked as PHI fields.

Note: Lookup and auto number fields cannot be marked as PHI.

2. Setting restrictions for the data marked as PHI
There are four options for restricting PHI from being accessed outside Bigin. Any of these options can be enabled depending on the org's requirements:

Restrict data access through API
Other applications can connect with Bigin using API and data can be transferred. You can ensure that PHI of your customers is not shared in the process, by restricting transfer of personal health data to other applications via API.
Restrict data export
While exporting data from the Bigin account you may want to withhold PHI from being exported by enabling this option.
Restrict data transfer to Zoho Services
If the Bigin account is integrated with other Zoho applications like Desk, Campaigns, Books etc. the data will flow from Bigin to these applications. This option will prevent PHI from being transferred to other apps.
Restrict data transfer to third party Services
If your Bigin account is integrated with third party applications, there will be data flow from Bigin to these apps when the records are synced between Bigin and the third party services. This option will prevent PHI from being transferred to other apps.

3. Encrypting PHI fields

Fields that are marked as PHI can be encrypted for additional security. Though field encryption is not a mandatory step in Bigin, we strongly recommend you enable encryption as it is the best practice to prevent unauthorized access.

Refer to the Zoho Encryption whitepaper to understand the encryption process and key management in detail.

To configure HIPAA compliance

Go to Settings > Users and Controls > Compliance.
Click the HIPAA Compliance tab.
Enable the HIPAA Compliance button.
In Personal Health Data Handling section, toggle any of the following options, as required:

Restrict Data access through API
Restrict Data in Export
Restrict Data transfer to Zoho Services
Restrict Data transfer to Third-party Services.

To mark fields that contain personal health data

Go to Settings > Fields.
In Contacts module, go to the desired field and click the Edit icon.
Check the Contains Personal Health Data box.
Remember that this option will only appear if HIPAA compliance is enabled in your Bigin account.

Disabling HIPAA compliance

Once HIPAA compliance is disabled, the fields that have been marked as PHI will be unmarked. The admin can mark the fields again when they re-enable the HIPAA compliance.

Viewing personal data of the records

All the fields that are marked as containing PHI will be listed in the record detail page. Under Data Privacy, in the Personal Data section, you can click the Health tab to view the fields that have PHI.

Kindly note that the content presented here is not to be construed as legal advice. Please contact your legal advisor to learn how HIPAA impacts your organization and what you need to do to comply with the HIPAA.

Zoho CRM Training Programs

Learn how to use the best tools for sales force automation and better customer engagement from Zoho's implementation specialists.

Redefine the way you work

with Zoho Workplace

Start your free trial

Zoho DataPrep Personalized Demo

If you'd like a personalized walk-through of our data preparation tool, please request a demo and we'll be happy to show you how to get the best out of Zoho DataPrep.

Create, share, and deliver

beautiful slides from anywhere.

Get Started Now

Zoho Sign now offers specialized one-on-one training for both administrators and developers.

BOOK A SESSION

Zoho Workerly Home
Forums
Connect With Us:

Zoho Recruit Home
Forums
Connect With Us:

Start tracking your website metrics today

Use PageSense to understand what your visitors are looking for, how they are behaving, and where they are facing problems on your website.

Ready to improve your website's performance?

Install the PageSense code snippet on your site in a matter of minutes and start collecting in-depth data about the website visitors to grow your business.

Track and measure every business goal

Set up goals in PageSense to measure every single action performed by visitors on your website like button or link clicks, form submissions, and page engagements.

Understand the customer journey on your website

Create funnels in PageSense to quickly see which pages visitors use to enter your website, where they navigate to next, and which pages they decide to leave without converting.

Visualize your visitor's behavior with color codes

Set up heatmaps in PageSense to see where users have clicked more, how far they've scrolled, and on which parts of a page they've spent the most time using color-coded patterns in reports.

Measure customer engagement with your web forms

Use form analytics in PageSense to see how people interact with different fields in your form, whether they complete the form successfully or not, and where exactly they drop out on your form.

Record real visitor interactions on your website

Use session recordings in PageSense to watch a video of all the visitor actions performed on your website including the pages they navigate, the buttons they click, the UX issues they face, and more.

Test and optimize webpages for better conversions

Run A/B or Split URL tests in PageSense to figure out which version of your web page works best for your business and results in the best conversion rate.

Give each customer a unique website experience

Use personalization in PageSense to deliver customized versions of your website for every individual customer based on their demographics, local weather, browsing history, and more.

Grow your business through customer feedback

Run polls on your website using PageSense to understand what your customers think about your products/services and what needs improvement on your site.

Send timely updates that customers love

Use web push notifications in PageSense to schedule and notify your customers about an upcoming flash sale, product releases, promotional coupons, and a lot more that can spark conversions on your website.

Advertise your business to website visitors

Use pop-ups in PageSense to instantly grab the attention of visitors by showing attractive signup offers, coupon code discounts, or email newsletters that can eventually convert them into subscribers.

Access more advanced settings in PageSense

Use PageSense's advanced features like creating mutually exclusive groups, enabling cross-domain tracking, configuring customized project JS, and more to get deeper insights about your website.

Try easy-to-use extensions

Download the PageSense extension app available for your web browser with a few clicks and start collecting all of your required website metrics in real time.

Discover your favorite integrations with PageSense

Get a deeper look at your website's data by seamlessly integrating PageSense with a host of popular third-party apps like Google Analytics, Mixpanel, Intercom, and more.

Still can't find what you're looking for?

Write to us: support@zohoforms.com

Quick Links	Workflow Automation	Data Collection
Web Forms	Enterprise	Begin Data Collection
Interactive Forms	Workplace	Data Collection App
Offline Forms	Customer Service
Digital Forms	Marketing	Form Templates
HTML Forms	Education	Halloween Forms
Contact Forms	E-commerce	Business Forms
Lead Generation Forms	Healthcare	Medical Forms
Wordpress Forms	Customer onboarding	Education Forms
No Code Forms		E-commerce Forms
Free Forms
Prefill Forms
Intake Forms
Form Designer
Card Forms
Assign Forms
Translate Forms
Electronic Forms
Notification Emails for Forms Holiday Forms

New to Zoho Social?

Manage your brands on social media

Access Zoho Social

Zoho Sheet Resources

New to Zoho Forms?

Latest Feature Updates

Explore our Pricing & Plans

Zoho Forms Resources

Secure your business

communication with Zoho Mail

Get started

Mail on the move with

Zoho Mail mobile application

Go Mobile

Stay on top of your schedule

at all times

Get started

Carry your calendar with you

Anytime, anywhere

Get started

Latest Announcements

New to Zoho Sign?

Zoho Sign Resources

Sign, Paperless!

Sign and send business documents on the go!

Get Started Now

Zoho SalesIQ Resources

New to Zoho TeamInbox?

Zoho TeamInbox Resources

Connect with us

New to Zoho ZeptoMail?

LEARN MORE

Latest Feature Updates

Zoho DataPrep Resources

New to Zoho DataPrep?

Access Zoho DataPrep

Zoho DataPrep Demo

Get a personalized demo or POC

Design. Discuss. Deliver.

Create visually engaging stories with Zoho Show.

Get Started Now

New to Zoho Workerly?

Access Zoho Workerly

New to Zoho Recruit?

Access Zoho Recruit

New to Bigin?

Signup Now

Access Bigin

Latest Feature Updates

New to Zoho CRM?

Signup Now

Access Zoho CRM

Latest Feature Updates

New to Zoho Projects?

Access Zoho Projects

New to Zoho Sprints?

Access Zoho Sprints

New to Zoho Assist?

Access Zoho Assist

Related Articles
Manage Compliance
Under compliance settings, you need to first switch on GDPR compliance settings if it applies to your business. Enable GDPR Compliance To enable GDPR compliance Click Setup > Users and Control > Compliance. In the Compliance page, toggle the button ...
How to find Bigin's privacy policy?
To find Bigin's privacy policy 1. Open the Bigin app on your Mac. 2. Click Bigin in the menu bar that runs along the top of the screen. 3. Select Preferences in the dropdown to open Settings in Bigin. 4. Switch to the Help & Support tab that is ...
How to find Bigin's privacy policy?
To find Bigin's privacy policy 1. Open the Bigin app on your smartphone. 2. Tap the More icon at the bottom right of the screen. 3. Select Settings . 4. Switch to the Help & Support tab that is adjacent the title Settings. 5. Scroll and find Legal > ...
How to find Bigin's privacy policy?
To find Bigin's privacy policy 1. Open the Bigin app on your iPad. 2. Tap on Settings at the bottom right of the screen. 3. Switch to the Help & Support tab that is adjacent the title Settings. 4. Scroll and find "Legal". 5. Tap on "Privacy Policy". ...
How to find Bigin's Terms of Service?
To find Bigin's terms of service 1. Open the Bigin app on your Mac. 2. Click Bigin in the menu bar that runs along the top of the screen. 3. Select Preferences in the dropdown to open Settings in Bigin. 4. Switch to the Help & Support tab that is ...

Wherever you are is as good as

your workplace

Workplace on mobile

Resources

Videos

Watch comprehensive videos on features and other important topics that will help you master Zoho CRM.

Watch Now

eBooks

Download free eBooks and access a range of topics to get deeper insight on successfully using Zoho CRM.

Download eBooks

Webinars

CRM Tips

Make the most of Zoho CRM with these useful tips.

Learn More

HIPAA Compliance in Bigin | Online Help - Bigin by Zoho CRM

HIPAA Compliance with Bigin

HIPAA compliance in Bigin

To configure HIPAA compliance

To mark fields that contain personal health data

Disabling HIPAA compliance

Viewing personal data of the records

Zoho CRM Training Programs

Zoho DataPrep Personalized Demo

Start tracking your website metrics today

Ready to improve your website's performance?

Track and measure every business goal

Understand the customer journey on your website

Visualize your visitor's behavior with color codes

Measure customer engagement with your web forms

Record real visitor interactions on your website

Test and optimize webpages for better conversions

Give each customer a unique website experience

Grow your business through customer feedback

Send timely updates that customers love

Advertise your business to website visitors

Access more advanced settings in PageSense

Try easy-to-use extensions

Discover your favorite integrations with PageSense

Still can't find what you're looking for?

Zoho Sheet Resources

Zoho Forms Resources

Zoho Sign Resources

Zoho TeamInbox Resources

Zoho DataPrep Resources

Related Articles

Manage Compliance

How to find Bigin's privacy policy?

How to find Bigin's privacy policy?

How to find Bigin's privacy policy?

How to find Bigin's Terms of Service?

Resources

Videos

eBooks

Webinars

CRM Tips

Zoho Show Resources