No, Discord isn’t HIPAA compliant. Messages sent on Discord aren’t encrypted, so covered entities shouldn’t use this tool for protected health information (PHI).
Discord is a social media and mobile chat platform created for entertainment and personal communication. No encryption is available for messages sent through Discord, which means this platform doesn’t meet HIPAA requirements.
HIPAA requires privacy for all PHI communication and data storage, so covered entities shouldn’t use these tools. Other chat and messaging platforms are available for the healthcare industry, with specific security measures that meet HIPAA standards.
Since Discord isn’t HIPAA compliant, the company won’t sign a business associate agreement (BAA).