HIPPA Compliance with Zoho Office Integrator

HIPPA Compliance with Zoho Office Integrator

 INTRODUCTION 

The Health Insurance Portability and Accountability Act (including the Privacy Rule, Security Rule, Breach notification Rule, and Health Information Technology for Economic and Clinical Health Act) ("HIPAA"), requires Covered Entities and Business Associates to take certain measures to protect health information that can identify an individual. It also provides certain rights to individuals. Zoho does not collect, use, store or maintain health information protected by HIPAA for its own purposes. However, Zoho Office Integrator provides features to help its customers use Office Integrator within the premises of HIPAA compliance.

 

HIPAA requires Covered Entities to sign a Business Associate Agreement (BAA) with its Business Associates. You can request our BAA template by sending an email to legal@zohocorp.com.

 

 HIPAA compliance in Zoho Office Integrator 

Zoho Office Integrator provides the following features for all the users to use it in a HIPAA compliant manner.
Document content
  • Control access for collaborators
  • Track changes
  • Auto file backup
  • Data Privacy and Security
 

Document Content 

The content written inside the document including the comments for all three services (Writer, Sheet and Show) will be considered as ePHI.
 

Control access for collaborators 

Zoho Office Integrator supports real time document collaboration in all three editors (Writer, Sheet and Show). This means several users can open a particular document at the same time and work together in the same instance. When someone makes a change, the document is updated for everyone to see.
 
User level permissions can be controlled via 'permissions' parameter in all three editors (Writer, Sheet and Show).
   

Track Changes 

Track changes feature is supported only in Zoho Writer service. This allows you to keep track of all changes that are made by the collaborators inside the document.  
 

Auto file Backup

In Office Integrator, we don't have any control over user data. We store the data in Zoho servers only temporarily during the editing process. Once the 'Save' is triggered, we push the latest edited content back to the user application server. For more details, please refer this help link.
 
Every 6 hours, we run a scheduler in our end and clear all user data. Please check out here. To delete the data from Zoho server within 6 hours, you can use our Delete APIs available in all three services (Writer, Sheet and Show).
   

Data Privacy and Security  

We have brought in extra measures to secure your data and keep it private. Please refer this help link for more details.