All HIPAApropriateness Reviews >>

WhatsApp and HIPAA Compliance

Published February 19, 2018. Product Features: ,

Company that makes this product:

WhatsApp and HIPAA Compliance Product Home Page

Important: HIPAApropriateness reviews, including their summaries, are for informational purposes only. They are neither consultation nor legal advice. Be aware that while we do our best to be thorough and complete, information may be missing or possibly even inaccurate. Products also change quickly, and the review may become out of date. By continuing to read, you agree to use the information in HIPAApropriateness reviews and their summaries at your own risk.

Vital Stats

HIPAA compliance with this product appears possible?: No.
Recommend for your HIPAA risk management needs?: No.

What Is This Product?

WhatsApp Messenger is a freeware and cross-platform instant messaging and VoIP service. The application allows the sending of text messages and voice calls, as well as video calls, images and other media, documents, and user location.

Unlike Signal, WhatsApp stores meta-data (data about the messages and message senders and receivers) and therefore does not qualify as a conduit, but as a business associate. However, WhatsApp will not execute a Business Associate Agreement and is, as a result, not a HIPAA-secure option.

Person Centered Tech gets a lot of questions about using WhatsApp because they advertise their service as “end-to-end-encrypted” and because they utilize the same open-source protocol as Signal, by Open Whisper Systems. Despite using the same encryption protocol as Signal, which we do recommend, WhatsApps’ storage of meta-data is where the two options diverge and why the HIPAA-security and recommendation outcome differ for the two otherwise very similar services. A “no” outcome for WhatsApp should not cause distress, though, because Signal is an excellent alternative that is both HIPAA-secure and free. For details about using Signal, please see our review here. For an Office Hours discussion comparing and contrasting WhatsApp and Signal, please see question/answer clip #3 by clicking here.

v1.25.06

Continuing Education National Approvals

Person Centered Tech Incorporated has been approved by NBCC as an Approved Continuing Education Provider, ACEP No. 6582. Programs that do not qualify for NBCC credit are clearly identified. Person Centered Tech Incorporated is solely responsible for all aspects of the programs.

Person Centered Tech Incorporated is approved by the American Psychological Association to sponsor continuing education for psychologists. Person Centered Tech Incorporated maintains responsibility for this program and its content.

Continuing Education State Approvals

  • Person Centered Tech is an approved provider continuing education provider with the Florida Board of Clinical Social Work, Marriage and Family Therapy and Mental Health Counseling. CE Broker Provider #50-23706.
  • Ohio Counselor, Social Worker, and Marriage and Family Therapist Board accepts continuing education credits from providers approved by the Florida Board of Clinical Social Work, Marriage and Family Therapy and Mental Health.
  • Person-Centered Tech Incorporated is recognized by the New York State Education Department's State Board for Social Work as an approved provider of continuing education for licensed social workers #SW-0540 and the State Board for Mental Health Practitioners as an approved provider of continuing education for licensed marriage and family therapists #MFT-0092, licensed mental health counselors #MHC-0210 and licensed psychoanalysts #P-0050 and the State Board for Psychology as an approved provider of continuing education for licensed psychologists #PSY-0068.

Policies and Terms

Training Resources

About Us

Email: [email protected]

Customer Service Hours: M-F 9AM-3PM PST

Address:
Person Centered Tech Incorporated
PO Box 42494
Portland, OR 97242

Where's our phone number?

Scheduled Maintenance

We will be temporarily taking the website offline at 10:00 PM Pacific (1:00 AM Eastern) tonight, July 6, in order to make some improvements. We plan to be back online by midnight Pacific (3:00 AM Eastern). We apologize for any inconvenience this may cause. Dismiss