Skip to main content
All CollectionsSmartSuite Policy
HIPAA and FERPA Compliance
HIPAA and FERPA Compliance

Ensuring compliance with federal data privacy laws for healthcare and education.

Peter Novosel avatar
Written by Peter Novosel
Updated this week

Plan Availability

All plan types

Permissions

General Access: All users benefit from SmartSuite’s security and compliance measures.

Related Reading

Nonprofit & Education Discount Program

SmartSuite Subprocessors

SmartSuite and GDPR

ISO/IEC 27001 & SOC-2 Type 1

Dashboards: Filter Widget

Overview

At SmartSuite, we are committed to maintaining the highest standards of security and privacy for our customers, including those in healthcare and education. We recognize the importance of HIPAA and FERPA compliance and continuously assess our security practices to align with these regulations.

For additional details on SmartSuite’s security and privacy measures, please refer to our Global Privacy Policy.

HIPAA Compliance

What is HIPAA?

HIPAA (Health Insurance Portability and Accountability Act) is a U.S. federal law designed to protect sensitive health information. It establishes privacy and security standards to ensure the confidentiality, integrity, and availability of Protected Health Information (PHI).

Key HIPAA Objectives:

  • Protect PHI by enforcing strict security measures.

  • Ensure confidentiality while promoting health data portability.

  • Mandate compliance for healthcare providers, health plans, and clearinghouses.

SmartSuite’s HIPAA Compliance

SmartSuite offers a HIPAA Business Associate Agreement (BAA) under certain circumstances. If your organization requires a BAA, please contact our sales team.

FERPA Compliance

What is FERPA?

FERPA (Family Educational Rights and Privacy Act) is a U.S. federal law that protects the privacy of student education records. It applies to all educational institutions that receive federal funding.

Key FERPA Rights:

  • Access to Records: Students (or parents, if the student is under 18) have the right to view their educational records.

  • Request for Corrections: Students can request amendments to incorrect or misleading records.

  • Control Over Information Disclosure: Schools must obtain consent before sharing student information, except in specific legal circumstances.

Is There a FERPA Certification?

No, there is no official FERPA certification issued by the government. Compliance involves implementing best practices and ensuring student records are managed according to FERPA regulations.

How SmartSuite Supports FERPA Compliance

SmartSuite is committed to maintaining the security and privacy of education records. We are currently undergoing SOC 2 Type II and ISO 27001 certification assessments to enhance our compliance framework.

For more information on SmartSuite security and privacy practices, please refer to our Global Privacy Policy.

For more information on how SmartSuite can assist educational institutions with FERPA compliance, please contact our sales team.

More Questions?

For further inquiries about HIPAA or FERPA compliance, please reach out to our sales team.

Related Articles
SmartSuite and GDPR
SmartSuite Security Practices
Did this answer your question?