Bluehost Web Hosting Help
Are You HIPAA Compliant?
You may NOT use our Services for hosting “protected health information” under the federal HIPAA law and related regulations. Other hosting providers may specifically price and offer “HIPAA compliant” hosting services, which typically are more expensive, and involve the hosting company signing a “Business Associate Agreement.” We do not offer such a product at this time.
We do not sign Business Associate Agreements. Storing “protected health information” on our servers constitutes a breach of our User Agreement and is an unauthorized use of our Services. Our Services are not represented to be HIPAA compliant, and you may not use them for such purposes. Our User Agreement expressly states:
We are not "HIPAA compliant." Users are solely responsible for any applicable compliance with federal or state laws governing the privacy and security of personal data, including medical or other sensitive data. Users acknowledge that the Services may not be appropriate for the storage or control of access to sensitive data, such as information about children or medical or health information. Bluehost does not control or monitor the information or data you store on, or transmit through, our Services. We specifically disclaim any representation or warranty that the Services, as offered, comply with the federal Health Insurance Portability and Accountability Act ("HIPAA"). Customers requiring secure storage of "protected health information" under HIPAA are expressly prohibited from using this Service for such purposes. Storing and permitting access to "protected health information," as defined under HIPAA is a material violation of this User Agreement, and grounds for immediate account termination. We do not sign "Business Associate Agreements" and you agree that Bluehost is not a Business Associate or subcontractor or agent of yours pursuant to HIPAA. If you have questions about the security of your data, please contact our Technical Support team.
Recommended Help Content
TLS 1.0 PCI Compliance
This article will discuss how you might be affected by the removal of TLS 1.0 in the updated PCI Compliance Standards.
This article will explain the benefits of SiteLock in regards to reputation monitoring.
Related Help Content
India Service Tax
India imposes a 18% Service Tax on electronically supplied services sold by foreign entities to customers located in India.
GDPR stands for General Data Protection Regulation. This law was proposed by the European Union (EU), and will go into effect May 25, 2018. What is GDPR, and what do you need to know to prepare for it
Domain Privacy for .us Domains
The WHOIS database shows my personal information for my .us domain names. How do I get privacy for the .us domain?
MySQL Repair and Optimize Tables in phpMyAdmin
How to repair and optimize your database using phpMyAdmin: