Set up HIPAA compliant email

HIPAA requires health care providers to ensure that their business associates will safeguard electronic Protected Health Information (ePHI). HIPAA compliant email accounts are one part of the HIPAA compliance process.

To use HIPAA compliant email, you must have at least one Business Premium or Premium Security Office 365 account.

1. In your Office 365 account, click Add-Ons in the top header.
2. Next to HIPAA compliant email, click Get started.
3. Click the box next to I agree to the Office 365 HIPAA Business Associate Agreement.
4. Enter your contact details. These are required by Microsoft so they can contact all customers in the very unlikely event of a data breach.
5. Click Accept & send.

Now that you've signed the Business Associate Agreement (BAA), the email accounts you create are automatically HIPAA-compliant. Remember, HIPAA compliant email is one part of your business being HIPAA compliant.

Related step

• If you see a phone number instead of a Get started button, please call 480-463-8843 to find out how to enable HIPAA compliant email

More info

• What is email encryption
• Archive email using an add-on