Validation Package for HIPAA Compliance Review

Hello! Does Jotform have a validation package available? I am putting together a validation report and would like to include any validation documentation Jotform is able to provide for their Jotform Enterprise, HIPAA-compliant platform.

Thanks!

Caroline

Hi Caroline,

Thanks for reaching out to Jotform Support. I'm an AI assistant. I'll do my best to help you until someone from the support team is available.

Jotform offers a HIPAA-compliant Enterprise platform with extensive security and compliance features. We provide documentation on our HIPAA compliance, including encryption, access controls, auditing, and workforce training. When you enable HIPAA compliance, your data is migrated to an isolated system with enhanced security measures.

You can find detailed information about our HIPAA compliance and validation documentation on our HIPAA compliance page. This includes how to enable HIPAA compliance, the security architecture, integrations available, and the Business Associate Agreement (BAA) process.

If you need specific validation documents for your report, please let us know what exact documents you require, and we can assist further.

Give it a try and let us know how it goes.

Best regards,
Jotform Support

Hi Caroline,

Thanks for reaching out to Jotform Support. Jotform provides extensive validation documentation and compliance information for our HIPAA-compliant Enterprise platform. This includes detailed descriptions of our security architecture, encryption methods, access controls, auditing processes, workforce training, and more. When you enable HIPAA compliance, your data is migrated to an isolated system with enhanced security measures to protect PHI.

Here are some key points about our HIPAA compliance and validation documentation:

• All data is encrypted in transit, end to end, and at rest, including log data.
• Access controls default to no access unless manually overridden, with all access tracked and audited.
• Customer data is segmented with dedicated network overlays for additional security.
• Continuous monitoring, intrusion detection, vulnerability scanning, and regular backups are in place.
• We have a documented and regularly tested disaster recovery plan.
• Workforce members undergo regular HIPAA and security training.
• Detailed documentation of policies and procedures is reviewed annually.

You can also enable HIPAA compliance features directly from your Jotform account, which includes a setup wizard that guides you through upgrading your account, verifying your email, setting a strong password, consenting to data transfer, reviewing forms for HIPAA compliance, migrating your data, and signing a Business Associate Agreement (BAA).

For your validation report, you can include our HIPAA compliance documentation and the signed BAA as part of your validation package.

Let us know if you need any more help.