# Health Insurance Portability and Accountability Act
Last modified: March 8th, 2024
The Health Insurance Portability and Accountability Act (opens new window) (HIPAA) is a federal regulation developed by the U.S. Department of Health and Human Services. HIPAA was designed to protect the privacy and security of an individual’s Protected Health Information (PHI) and establishes standards and requirements around the use, disclosure, and protection of that data. HIPAA applies to covered entities and business associates, that create, receive, maintain, access, or send PHI.
# EmailJS and the HIPAA
EmailJS provides comprehensive privacy and security protections that enable our customers to operate our products in compliance with HIPAA.
Customers who are subject to HIPAA compliance and want to partner with EmailJS purchase a Business plan to enter into a Business Associate Agreement (BAA) that covers the applicable products and services.
# Additional Requirements
Customers must check the "Do not save private data" checkbox in the template settings before inputting any PHI into our products. This will help ensure that customers use our products and services in a way that supports their HIPAA compliance obligations.
It’s important to remember that HIPAA compliance is a shared responsibility between EmailJS and clients.