SOLVED

Is SharePoint Online List HIPAA Compliant?

%3CLINGO-SUB%20id%3D%22lingo-sub-1600980%22%20slang%3D%22en-US%22%3EIs%20SharePoint%20Online%20List%20HIPAA%20Compliant%3F%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1600980%22%20slang%3D%22en-US%22%3E%3CP%3EDoes%20SharePoint%20Online%20list%20meets%20the%20compliance%20requirement%20for%20HIPAA%3F%20We%20need%20to%20decide%20if%20we%26nbsp%3B%20can%20store%20the%20PHI%20information%20in%20SharePoint%20lists.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-1600980%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EDocument%20Library%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EMicrosoft%20Lists%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3ESharePoint%20Online%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1601290%22%20slang%3D%22en-US%22%3ERe%3A%20Is%20SharePoint%20Online%20List%20HIPAA%20Compliant%3F%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1601290%22%20slang%3D%22en-US%22%3EYou%20have%20to%20take%20a%20look%20at%20how%20Office%20365%20meets%20HIPAA%20and%20other%20regulations%3A%20%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fmicrosoft-365%2Fcompliance%2Foffering-hipaa-hitech%3Fview%3Do365-worldwide%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3Ehttps%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fmicrosoft-365%2Fcompliance%2Foffering-hipaa-hitech%3Fview%3Do365-worldwide%3C%2FA%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-1601580%22%20slang%3D%22en-US%22%3ERe%3A%20Is%20SharePoint%20Online%20List%20HIPAA%20Compliant%3F%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-1601580%22%20slang%3D%22en-US%22%3E%3CP%3EThanks%2C%26nbsp%3B%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F60%22%20target%3D%22_blank%22%3E%40Juan%20Carlos%20Gonz%C3%A1lez%20Mart%C3%ADn%3C%2FA%3E%2C%26nbsp%3Bfor%20your%20response.%20I%20found%20that%20SharePoint%20Online%20is%20covered%20for%20HIPAA%20Compliance%20from%20this%20Microsoft%20Compliance%20Document%20-%20%3CA%20href%3D%22https%3A%2F%2Fgo.microsoft.com%2Ffwlink%2Fp%2F%3FLinkID%3D2077751%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3Ehttps%3A%2F%2Fgo.microsoft.com%2Ffwlink%2Fp%2F%3FLinkID%3D2077751%3C%2FA%3E%26nbsp%3Bwhich%20I%20found%20on%20the%20link%20that%20you%20shared.%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E
Occasional Contributor

Does SharePoint Online list meets the compliance requirement for HIPAA? We need to decide if we  can store the PHI information in SharePoint lists.

2 Replies
Best Response confirmed by Rizwan Ansari (Occasional Contributor)
Solution
You have to take a look at how Office 365 meets HIPAA and other regulations: https://docs.microsoft.com/en-us/microsoft-365/compliance/offering-hipaa-hitech?view=o365-worldwide

Thanks, @Juan Carlos González Martín, for your response. I found that SharePoint Online is covered for HIPAA Compliance from this Microsoft Compliance Document - https://go.microsoft.com/fwlink/p/?LinkID=2077751 which I found on the link that you shared.