Bill.com and HIPAA Compliance
HIPAA (Health Insurance Portability and Accountability Act), and specifically the HIPAA Security Rules, establish national standards for protecting patient data through physical, technical, and administrative security measures.
Bill.com is not currently HIPAA compliant. We have not undergone the technical process required to become compliant. This means that prohibited information as outlined by HIPAA (for example, healthcare information) should not be stored in Bill.com or transferred using Bill.com.
We understand the importance for some companies to be able to include certain types of sensitive information in financial transactions. We are currently working towards becoming HIPPA compliant, although we do not have a definitive ETA right now. We'll update this article when we have new information. Please follow the article to receive email updates.
For more information about HIPAA and HIPAA compliance, please visit U.S. Department of Health and Human Services - Health Information Privacy.