Acuity Scheduling's HIPAA compliance is achieved through specific security measures and configurations. Here's how to ensure your account meets HIPAA requirements:

Prerequisites:

• Active Power-up plan subscription
• Signed Business Associate Agreement (BAA)

Setting Up HIPAA Compliance:

1. Navigate to [Customize Appearance]
2. Click [Booking Page Options]
3. Follow the BAA signing process link
4. Review and confirm obligations
5. Complete required information
6. Submit signed BAA

Enhanced Security Features:

• No form responses in email notifications
• Local-only file uploads
• Disabled client balance checks via email
• No calendar sync with Office 365, Outlook, Live.com, Exchange, or iCloud
• Disabled Squarespace email campaigns integration
• No invoicing feature
• Disabled Reserve with Google integration
• Limited subscription renewal information

Email and Text Notification Management:

• PHI content control in notifications
• Optional ICS invitation attachments
• Customizable From/Reply-To fields
• Customer opt-out options for marketing communications

Important Considerations:

• HIPAA compliance requires more than just enabling features
• Organizations must manage their own compliance efforts
• Third-party integrations may not support HIPAA requirements
• Regular review of security settings is essential

Accessing Your BAA:

1. Go to [Customize Appearance]
2. Select [Booking Page Options]
3. Click [View and download your signed BAA]
4. Download PDF if needed

Remember: Simply enabling HIPAA features doesn't guarantee compliance. Your business practices and systems must work together with Acuity to maintain HIPAA standards.

Related Articles

Previous Articles