Doc Storage Platforms That Are HIPAA Compliant

blur pharmacy drugstore with pharmacist background
Most healthcare organizations have started to embrace the numerous benefits of cloud computing as a doc storage platform. Among many, the benefits include its flexibility, cost-efficiency, and scalability. While cloud computing gives the benefit of convenient, easy sharing, and simple file storage, the risks related to security are abundant enough to bring an escalation to the Cloud Access Security Broker category.

Nonetheless, before employing a solution, it is vital to comprehend how industry regulations and procedures can have an impact on cloud adoption. Not just that, it is imperative to realize the necessary attributes when choosing a service provider for your cloud storage needs. In the healthcare sector, the major deciding element is HIPAA-HITECH compliance.

The Health Insurance Portability and Accountability Act (HIPAA) will not suggest specific tools or methods regarding how to protect your data. However, encryption is encouraged to be used as a regular practice.

Why Does HIPAA Apply To Cloud Storage?

HIPAA was passed in 1996 with the objective of guarding the confidentiality and discretion of complex patient information. Protected entities under this act include healthcare policies, health care establishments and specific kinds of healthcare providers. The Health Information Technology for Economic and Clinical Health Act (HITECH) included a notification obligation. Covered business associates and entities must inform OCR when a breach of unsafe PHI affects above 500 individuals.

We have taken the time to compile the top five HIPAA compliant cloud storage services deemed most popular. These doc storage platforms can also be a great way to take care of your bookkeeping obligations.

Dropbox (Business)

In November 2015, Dropbox stated their approval of the HIPAA and HITECH Act submission. Now, the company offers BAAs (Business Associate Agreement) to their Dropbox business clients. Organizational controls take account of removal and review of user activity accounts, user access linked devices, and permit two-step verification.

The Dropbox Business version comes out to be $12.50 per user, per month. It provides file recovery and unlimited storage, system alerts, innovative collaboration tools, granular permissions, and Office 365 incorporation.


Box made the addition of HIPAA/HITECH compliance in 2013. Since then, Box has been enthusiastically promoting themselves to the healthcare sectors and customers. BAAs are offered for enterprise versions. Among the various features are granular file approvals, access monitoring, audits, and reporting trails for content and users.

Among others, Box integrations also offers Google, Salesforce, DocuSign and Office 365. Not only that, Box also permits DICOM files to be securely viewed (DICOM files are for ultrasounds, X-rays and CT scans) as well as securely sharing information by a direct messaging procedure.

Google Drive

Another doc storage platform is Google Drive. Google provides a BAA for their customers of Google Apps for Work. Apps consist of Forms, Slides, Sheets and Docs in addition to quite a lot of other facilities like Gmail. Organizational controls take account of file-sharing consents, audits, app activity and account activity tracking.

Microsoft OneDrive

Microsoft has also shown its support towards HIPAA/HITECH through providing BAAs towards their enterprise cloud computing services. Microsoft has some of the greatest security practice policies in the field. These security practice policies are most forceful and tough at the Enterprise E5 level. It will cost about $35 per month, per user.


Carbonite offers BAAs for their Office customers. Safety measure consist of offsite standby for disaster retrieval and compliance with the MDSR (Massachusetts Data Security Regulation). The company declares that it is extensively acknowledged and recognized as the best rigorous data security in the entire country.

Check out America's Best Bookkeepers
About Complete Controller® – America’s Bookkeeping Experts Complete Controller is the Nation’s Leader in virtual accounting, providing services to businesses and households alike. Utilizing Complete Controller’s technology, clients gain access to a cloud-hosted desktop where their entire team and tax accountant may access the QuickBooks file and critical financial documents in an efficient and secure environment. Complete Controller’s team of  US based accounting professionals are certified QuickBooksTMProAdvisor’s providing bookkeeping and controller services including training, full or partial-service bookkeeping, cash-flow management, budgeting and forecasting, vendor and receivables management, process and controls advisement, and customized reporting. Offering flat rate pricing, Complete Controller is the most cost effective expert accounting solution for business, family office, trusts, and households of any size or complexity.