Set up HIPAA compliance for your workspace

Enable Healthcare Information Portability and Accountability Act (HIPAA) compliance through Fireflies' Security Checklist to ensure your healthcare conversations meet regulatory standards. This self-service process guides you through the requirements and helps you maintain compliant meeting workflows.

Why use the Security Checklist?

The Security Checklist in your Team Settings eliminates guesswork around your account's security and compliance status. Instead of wondering what protections are in place or spending time coordinating with support teams, you get immediate visibility and control.

Key benefits

Complete transparency at a glance 🔎

See exactly what security measures are protecting your data and meetings. No more uncertainty about compliance status or having to dig through documentation to understand your protection level.

Self-service compliance management ⚡

Set up and maintain HIPAA compliance entirely through your dashboard. Reduce admin overhead by handling compliance requirements yourself, with clear guidance on what's needed and real-time status updates.

What you'll see in your Security Checklist:

• Zero Data Retention & Data is Private – Always active protections that secure your data

• SOC 2 Type 2 - GDPR – Enterprise compliance documentation access

• HIPAA Compliance – Healthcare-specific requirements with self-service setup

• FERPA Compliance – Education-specific requirements (configured separately)

HIPAA compliance requirements

HIPAA compliance in Fireflies requires two essential components to protect healthcare information:

Enterprise plan requirement

HIPAA compliance is only available on Enterprise plans. If you're on a lower plan, you'll need to upgrade first.

Compliance checklist for Enterprise users

Once you're on an Enterprise plan, you'll see a two-step checklist:

Set up HIPAA compliance

Step 1: Enable Private Storage

1. Go to the Team tab in the left-hand menu

2. Click the Settings icon in the top right corner

3. At the top, find the Private Storage section

4. Click Setup Private Storage

   

5. Follow the Private Storage setup process

   

   • Your data will be moved to a dedicated infrastructure

   • This ensures complete separation from shared resources

🆘 Need more help setting up? Learn how to Set up Private Storage for your workspace

Step 2: Complete the BAA contract

Access the BAA contract page and follow the steps to complete its signature.

Step 3: Verify HIPAA activation

Once both requirements are complete:

1. Check your Security Checklist – HIPAA Compliance will show as ✅ Enabled

2. Verify your workspace settings – HIPAA controls will be active across your team

Maintaining HIPAA compliance

Your HIPAA compliance status depends on maintaining both requirements:

Understanding data protection

Zero Data Retention and Data is Private are automatically enabled:

• Hover over each feature in your Security Checklist to see detailed explanations

• These protections apply to all plans and users

How HIPAA and FERPA relate

HIPAA and FERPA apply to different types of data and are configured independently.

• HIPAA applies to healthcare-related information

• FERPA applies to student education records

Enabling HIPAA compliance does not automatically enable FERPA compliance, and vice versa. Each must be configured separately based on your use case.

Related: Set up FERPA compliance for your workspace

Making sense of it all

• HIPAA compliance is Enterprise-only and requires both Private Storage and BAA completion

• The Security Checklist provides a real-time status of all compliance measures

• Automatic monitoring ensures you know if the compliance status changes

• Private Storage and BAA are both required – one without the other won't enable HIPAA

• Plan downgrades or storage changes will immediately disable HIPAA compliance

• HIPAA and FERPA are independent compliance requirements and are set up separately.