Is Google Forms HIPAA compliant?

Google Forms offers security and privacy configurations that could be made to comply with HIPAA regulations. Covered entities can set the access and visibility of folders and files, as well as grant specific collaborators sharing and editing capabilities.


When configuring Google Forms, administrators should set the sharing permissions to manage data visibility and access. Additionally, admins should disable third-party applications that don’t meet HIPAA privacy standards. Software compliance depends on how the software is used, which is why administrators must adjust privacy settings properly before and during using Google Forms for collecting and managing patient information.


Other possible HIPAA-compliant safeguards include encryption to protect sensitive information, user authentication, and audit controls that track information access.


If a covered entity uses Google Forms to collect protected health information (PHI), it must have a business associate agreement (BAA) in place before collecting PHI through this tool. Google may offer a signed business associate agreement (BAA) that covers Google Forms as well as other Google Workplace services such as Gmail, Docs, Sheets, Calendar, and Slides.

Product details

Company Logo

Business Associate Agreement

Yes

HIPAA Compliant

Yes

Categories

Online Form Builder

Product description

Google Forms is part of Google Workspace (formerly known as G Suite). This cloud-based tool enables customers to collect information through surveys.

Disclaimer:

Readers should perform their own research before making the final decision. The information on the Jotform HIPAA Compliance Checker does not constitute official healthcare or legal advice. Jotform is not liable for any damage or liabilities arising out of or connected in any manner with this platform.

If you see any incorrect, incomplete or inaccurate information, please request correction by filling the form below.

Request Correction