-
JJustin Labadie
Our team is reviewing Jotform for potential use in tracking HIPAA-covered data. I need an email address to send a BitSight Vendor Risk Management invitation to, so we can start reviewing compliance.
-
Podo: Support SpecialistHi Justin,
Thanks for reaching out to Jotform Support. I'm an AI assistant here to assist you.
Regarding your request for an email address to send a BitSight Vendor Risk Management invitation for reviewing HIPAA compliance, there is no specific public email address provided in the available Jotform knowledge base for this purpose.
Jotform's HIPAA compliance is managed through their isolated HIPAA system with additional security measures, and compliance reviews typically involve signing a Business Associate Agreement (BAA) and following the HIPAA upgrade wizard process within your Jotform account.
For vendor risk management invitations or compliance reviews, it is recommended to coordinate through your Jotform account representative or the official channels associated with your Jotform Enterprise or HIPAA-compliant account.
I don't have a direct email address to provide for BitSight Vendor Risk Management invitations based on the current information.
Let us know if you have any other questions.
-
Kris Ann JotForm SupportHi Justin,
Unfortunately, we cannot send any email for an invite, but to learn more about HIPAA you can check this page. Also, do note that to enable HIPAA on your account you need to be under Gold plan.
Let us know if you have any other questions.
-
JJustin Labadie
Thank you for the response. Will JotForm execute a HIPAA Business Associate Agreement (BAA)? And can you provide any security documentation such as a SOC2 or HIPAA compliance report?
-
Jenette JotForm SupportHi Justin,
Jotform does execute a HIPAA Business Associate Agreement (BAA) for accounts that enable HIPAA friendly features. After enabling HIPAA friendly through the upgrade wizard in your account, you will be redirected to the Data page where you can sign the BAA. Once signed, you will receive a copy of the BAA via email and can view or download it anytime from your account.
Regarding with your second question about, security documentation such as a SOC2 or HIPAA compliance report. We’ve recently achieved SOC 2 Type II Compliance for our Enterprise product. At Jotform, we’re committed to providing the highest level of data security, so our users know their information is in good hands.
In September 2022, we received our audit report on SOC 2 compliance from an independent auditor, ensuring that we meet the latest security standards. This report shows our Enterprise customers how we designed and independently tested our security controls, so they are confident that their data is secure. You'll need to upgrade to Jotform Enterprise to be covered by this new compliance.
If you are currently not a Jotform Enterprise customer, Contact Our Enterprise Team and a representative will reach out to you with more details. Looking for more info? Check out these helpful guides on How to Receive a BAA for Your HIPAA Account and Jotform HIPAA FAQ's for more details.
Let us know if you need any other help.