Do I need to become HIPAA compliant?

If you are collecting, storing or transmitting PHI (Protected Health Information) to a covered entity then you definitely should be HIPAA compliant.


If you’re building an application that has any reasonable likelihood of collecting, storing or transmitting PHI you should probably be HIPAA compliant.

If we’re being honest, it’s not worth taking the risk of HIPAA compliance audits and penalties if you have even a small chance of managing PHI within your application.



This article is provided for general informational purposes only and is not intended to be legal advice.  By using the article, you agree that the information on this article does not constitute legal or other professional advice. The article is not a substitute for obtaining legal advice from a qualified attorney licensed in your state. The information on the article may be changed without notice and is not guaranteed to be complete, correct or up-to-date, and may not reflect the most current legal developments.