Microsoft 365 from GoDaddy Help

What is HIPAA and HIPAA compliant email?

The Health Insurance Portability and Accountability Act (HIPAA) is a US healthcare law that establishes requirements for the use, disclosure, and safeguarding of personally identifiable information by the healthcare and healthcare insurance industries.

The HIPAA Privacy Rule and the HIPAA Security Rule require covered entities, like your practice, to obtain written assurances that their business associates, i.e., GoDaddy and Microsoft, will appropriately safeguard electronic Protected Health Information (PHI). Failure to comply with these rules can result in civil and criminal penalties. Learn more about HIPAA.

Microsoft has enabled safeguards required by HIPAA for Microsoft 365 services including Office Online, Exchange Online, SharePoint Online and OneDrive for Business. Read more about Microsoft compliance offerings.

We offer an optional privacy and security contractual supplement (also called a HIPAA business associate agreement or BAA) to assist Microsoft 365 customers in meeting HIPAA compliance requirements.

Does having a BAA with GoDaddy and Microsoft ensure my organization’s compliance with HIPAA and the HITECH Act?

No, by offering a BAA, GoDaddy and Microsoft help support your HIPAA compliance, but using this service doesn't achieve compliance on its own. Your organization is responsible for ensuring that you have an adequate compliance program and internal processes in place and that your particular use of Microsoft services aligns with the requirements of HIPAA and the HITECH Act.

How do I get started with HIPPA email?

You'll need one Business Professional or Premium Security email account for your email plan to allow you to use and purchase HIPAA compliant email as an add-on. Other email accounts on the same plan don't need to be a Business Professional or a Premium Security account to be HIPAA compliant. Available Microsoft 365 plans by GoDaddy.

After you set up your email account, activate your HIPAA compliant email and sign the Microsoft 365 HIPAA Business Associate Agreement (BAA).

Signing your BAA takes you one step closer to achieving HIPAA compliance for your organization.

Will my email plan still work the same way?

Microsoft 365 HIPAA compliant email works just like regular email. All security features run behind the scenes.

Related step

More info

  • You can also reach out to our specially trained HIPAA support guides. They can walk you through the setup process, step-by-step, and assist you with any other questions.

Share this article