HIPAA Compliance for healthcare

With just a few lines of code, developers can embed HIPAA-compliant video calls. Both Daily Prebuilt — our ready-to-use embeddable video chat interface — and custom interfaces built using Daily call object can be used to build HIPAA-compliant applications.

Daily Prebuilt's UI must be embedded in your app to maintain HIPAA compliance. Using direct Daily room links in the browser is not compliant.

Business Associate Agreement (BAA)

To partner with you and build HIPAA-compliant applications, we've designed our APIs with data security and privacy as our top concern. We will sign a Business Associate Agreement (BAA) at no additional cost.

Room names

To create HIPAA-compliant rooms, you can use the REST API or the Daily dashboard.

Whether you're using the dashboard or our REST API programmatically, the Daily REST API will create a randomized name for your room in order to prevent room name information from including any PII or PHI. Trying to set a name manually will result in an error.

HIPAA-compliant recording types

We offer two HIPAA-compliant recording options:

  1. "local" recordings
  2. "output-byte-stream" recordings

These recordings are not stored on Daily servers.

In addition to recording types being limited, accounts with HIPAA enabled cannot use live streaming. This is to maintain HIPAA compliance.

Text chat

We offer HIPAA-compliant text chat by default. When using Daily Prebuilt, text chat can be enabled via the enable_chat room property. Chat messages in Daily Prebuilt are never stored on Daily servers.

Developers can also build their own HIPAA-compliant text chat implementation with Daily's sendAppMessage() method, which is what Daily Prebuilt's chat uses, as well. Chat data sent by sendAppMessage() is HIPAA-compliant by default. Developers are responsible for maintaining compliance in custom implementations by ensuring chat messages are not stored externally by their app.

Pricing

HIPAA compliance requires our paid Healthcare add-on. Visit our pricing page for more information.

How to turn on HIPAA compliance

  1. Sign up for a Daily account via Daily's dashboard.
  2. Add a credit card to your account via the dashboard billing page.
  3. Click the Contact sales button in the Healthcare add-on section of the dashboard billing page. This will start a conversation with our team, who will guide you through the rest of the process.

Healthcare add-on in dashboard

Our team will turn on HIPAA compliance and adjust your billing to include the Healthcare add-on pricing.

Receive a $15 credit for free

Try Daily pay-as-you-go features for free! New accounts have a $15 credit automatically applied when you add a credit card to the account. Learn more about pay-as-you-go features on our pricing page.

If you have any additional questions, contact our support team.

Additional reading