How do I configure HIPAA Compliance in my CRM account?
With more healthcare organizations using CRM to run their business smoothly and store customer information in a shared database, it is crucial that they can ensure the confidentiality of an individual's health information.
In Zoho CRM, we provide ways for healthcare organizations to secure and restrict export of individuals' health information and stay compliant with the HIPAA guidelines.
To configure HIPAA compliance
- Go to Setup > Users and Controls > Compliance Settings.
- Click the HIPAA Compliance tab.
- Toggle the Enable HIPAA Compliance Settings button.
Select the modules from the dropdown list. You can select up to 10 modules. - In Personal Health Data Handling, toggle Restrict Data access through API, Restrict Data in Export, or both, as required.
To mark fields that contain personal health data
- Go to Setup > Customization > Modules and Fields.
- Select a module and click the More icon to select the desired layout.
Alternatively, you can click the More icon and select Edit Layout. - Go to the desired field and click the More icon.
- Click Edit Properties and check the Contains Personal Health Data box.
Remember that this option will only appear if the module has been selected for HIPAA compliance.
Related Articles
What kind of restrictions can be set for the PHI fields under HIPAA Compliance?
A total of 25 fields in each module can be marked as personal health data containing fields. Once marked, there are certain restrictions that can be set to prevent unauthorized access to the sensitive values present in the fields. Note: Lookup, ...How does Zoho CRM help organizations be HIPAA Complaint?
At Zoho CRM, we allow organizations to be compliant with the HIPAA guidelines by providing the following options: Select modules that contain personal health data: All modules that contain protected health information must be selected. Both ...How does Zoho manage personal health information fields to comply with HIPAA?
The Health Insurance Portability and Accountability Act (HIPAA), which includes the Privacy Rule, Security Rule, Breach notification Rule, and Health Information Technology for Economic and Clinical Health Act), requires Covered Entities and Business ...HIPAA Compliance with Zoho CRM
The Health Insurance Portability and Accountability Act (including the Privacy Rule, Security Rule, Breach notification Rule, and Health Information Technology for Economic and Clinical Health Act) ("HIPAA"), requires Covered Entities and Business ...Does Zoho provide audit log as part of HIPAA compliance?
As a covered entity it is your responsibility and best practice to export logs periodically and preserve them for the required period. To facilitate this we allow you to export data as and when required using the Export Audit Log option. In Zoho CRM ...