Health Insurance Portability and Accountability Act (HIPAA)

Who is covered under HIPAA? 

Those covered under HIPAA are typically health care providers, healthcare billing services and health information systems, and health insurance companies. 

Who needs to follow HIPAA guidelines? 

Even though HIPAA is a US law, if you’re a non-US organization that works with US patients, you’ll need to follow HIPAA guidelines. 

How does UserTesting adhere to HIPAA? 

With a signed Business Associate Agreement (BAA) in place, you can use UserTesting to test a wide variety of experiences that may involve the exposure of Protected Health Information (PHI), which is any identifiable personal information used or maintained by a HIPAA-covered entity. For more information on whether you have a BAA in place, contact the Admin on your UserTesting account. In addition to the UserTesting guidelines, also check your organization’s policies for the types of insights you can or cannot collect. 

Healthcare organizations that are covered entities can now gather feedback and insights from their own patients, as well as contributors on the UserTesting Human Insight Platform—this includes managing protected health information (PHI) securely and confidently. 

Under HIPAA, UserTesting remains committed to retaining customer trust with our platform that protects sensitive customer information. Currently, we work with over 200 healthcare organizations to provide human insight. 

What experiences can I test? 

• Improving the patient and potential patient experience in all channels
• Diary testing with chronic illness patients and pharmaceutical trials
• Driving engagement in digital channels
• Increasing new patient appointments
• Competitor testing
• Message validation
• Improving the cross-channel journey