With the increase in remote workers, many companies are likely looking at new tools to make telecommuting easier. TeamViewer is a software provider that enables remote access, support, and online collaboration tools using elements like, TeamViewer two-factor authentication. But is TeamViewer HIPAA compliant? The answer is discussed below.
Is TeamViewer HIPAA Compliant: Security Features
Under HIPAA, TeamViewer is considered a business associate when working with healthcare clients. As such, it is essential to ensure that they are maintaining the confidentiality, integrity, and availability of the protected health information (PHI) filtered through their software.
TeamViewer offers the following data security features:
End-to-end encryption.
End-to-end encryption (E2EE) ensures that data stored, transmitted, or received through TeamViewer is secure. E2EE prevents unauthorized access to data by turning it into a format that is only readable with a decryption key.
User authentication.
TeamViewer utilizes two-factor authentication (TeamViewer 2FA) for user authentication. TeamViewer 2FA requires users to input multiple unique login credentials before accessing the platform such as a username and password in combination with security questions or a one-time PIN.
Access controls.
HIPAA requires employees to only have access to the PHI that they need to perform their job functions, known as the minimum necessary standard. Access controls allow users to designate different levels of access to data based on employee job roles.
Audit logs.
To quickly detect unauthorized access to PHI, it is essential to track access to data using audit logs. TeamViewer allows users to track user activity down to the minute.
For more information on 2FA TeamViewer’s security features, please click here.
Is TeamViewer HIPAA Compliant: Business Associate Agreements
Since TeamViewer is a business associate, before the platform can be used in conjunction with PHI, organizations must have a signed business associate agreement (BAA) with TeamViewer. A BAA is a legal document that dictates the safeguards the business associate must have in place, and requires each signing party to be responsible for maintaining their HIPAA compliance.
Is TeamViewer HIPAA Compliant?
So, is TeamViewer HIPAA compliant? Yes, provided that you have signed a BAA with TeamViewer before use, and the platform is used in accordance with HIPAA standards.
