Is OneNote HIPAA compliant?

Yes, OneNote is HIPAA compliant because Microsoft’s business associate agreement (BAA) covers OneNote.

OneNote can be HIPAA compliant, provided the right security features and configurations are used. Physical, technical, and administrative safeguards are available through Microsoft’s cloud services, and they meet the guidelines set by HIPAA.

These security and privacy measures help to prevent unauthorized access of electronic protected health information (PHI). Data stored on OneNote is encrypted, and Microsoft provides user access logs on request.

Notes can be shared with other OneNote users through a network or internet connection. Because Microsoft OneNote offers multiuser collaboration, every participating device must meet all HIPAA compliance standards.

Storing or sharing PHI on the software requires a signed business associate agreement (BAA) with the software provider. The BAA offers contractual assurances of HIPAA-compliant safeguards. Microsoft provides a BAA for many of its products, including OneNote.

Product details

Company Logo

Business Associate Agreement


HIPAA Compliant



Note-Taking Apps

Product description

Microsoft OneNote is an application for digital note-taking on smartphones, computers, and tablets. This app offers features for creating, sharing, and storing various types of media, including text, audio files, and screen grabs.


Readers should perform their own research before making the final decision. The information on the Jotform HIPAA Compliance Checker does not constitute official healthcare or legal advice. Jotform is not liable for any damage or liabilities arising out of or connected in any manner with this platform.

If you see any incorrect, incomplete or inaccurate information, please request correction by filling the form below.

Request Correction