[Whitepaper] Slack and the HIPAA Security Rule

The Health Insurance Portability and Accountability Act of 1996 (HIPAA) is a U.S. federal law that requires privacy and security protections for protected health information (PHI). If you’re a covered entity or business associate subject to HIPAA, Slack can be configured to support PHI within uploaded files and message content. When a covered entity or business associate has executed a Business Associate Agreement with Slack and is using Enterprise Grid to transmit, upload or communicate about PHI, Slack is deemed a business associate.