Is WhatsApp HIPAA compliant?

No, Whatsapp does not define itself as a HIPAA compliant app. Although it is encrypted end to end, it doesn’t offer a Business Associate Agreement (BAA). WhatsApp shouldn’t be used for communicating protected health information (PHI).

WhatsApp is one of the most used text messaging apps in the world. After it was bought by Facebook, various security measures such as end-to-end encryption were added. However, in the current version, WhatsApp does not state that they are HIPAA compliant but there is a possibility for it to be HIPAA compliant technically. Access controls, possibly a BAA and audit controls would be needed for starters, for WhatsApp to become HIPAA compliant. The lack of a signed Businesses Association Agreement overrides all of the security features required for a tool to become HIPAA compliant. WhatsApp shouldn't be used to communicating PHI since it has a probability of breaking the HIPAA rules.

Product details

Company Logo

Business Associate Agreement


HIPAA Compliant


Product description

WhatsApp is a popular messaging app used by millions around the globe. It can be used for texting, sharing images, and making phone and video calls.


Readers should perform their own research before making the final decision. The information on the Jotform HIPAA Compliance Checker does not constitute official healthcare or legal advice. Jotform is not liable for any damage or liabilities arising out of or connected in any manner with this platform.

If you see any incorrect, incomplete or inaccurate information, please request correction by filling the form below.

Request Correction