RingCentral Compliance with HIPAA Regulations

This document is a guide that outlines how RingCentral, as a business associate, enables its customers to comply with the Health Insurance Portability and Accountability Act (HIPAA). It details the responsibilities of RingCentral regarding the handling of protected health information (PHI) and the measures taken to ensure compliance. The guide explains that while RingCentral does not require customers to provide PHI, customers may use its services to process such information. It also describes the contractual agreements available to Covered Entities, including a Business Associate Agreement (BAA) that aligns with HIPAA requirements. Furthermore, the document presents RingCentral's security certifications, including HITRUST CSF Certified status, and summarizes the administrative, physical, and technical safeguards implemented to protect PHI. Additionally, it discusses the encryption of email notifications and the security measures in place for communication between Covered Entities and patients or third parties.