Skip to content
Noelle NetzbandJun 6, 2024 1:20:20 PM2 min read

HubSpot Enhances Security: Introducing HIPAA Compliance and New Sensitive Data Tools

HubSpot has rolled out HIPAA (Health Insurance Portability and Accountability) support and new tools for managing sensitive data within its Smart CRM. This update is a game-changer for industries like healthcare, finance, and insurance, where handling sensitive customer information securely is crucial. The enhanced security features ensure compliance with HIPAA regulations, offering businesses a safe way to store and manage data. This compliance isn't just a checkbox—it's about providing peace of mind that client information is well-protected. 

The new sensitive data tools are designed to strengthen security through features like advanced authentication, audit logging, and per-tenant encryption. These measures guard against unauthorized access and potential breaches, guaranteeing that sensitive data remains confidential. 

One of the standout benefits of these updates is the unified customer view. With all teams—marketing, sales, and service—having access to the same sensitive data, businesses can operate more efficiently and deliver personalized customer experiences. This integrated approach enhances lead generation, marketing campaigns, sales prospecting, and customer service efforts, making sure that each team member can address customer needs more effectively. 

HubSpot’s new HIPAA support and sensitive data tools fill a crucial gap in the market. Many CRM platforms are not HIPAA compliant, forcing businesses that must adhere to confidentiality standards to choose security over functionality. These updates allow users to work confidently on a user-friendly platform, knowing their patient and client information is stored securely. For more details, check out HubSpot’s announcement. 


Key Takeaways 

  • HIPAA Compliance: HubSpot now supports HIPAA regulations, ensuring sensitive data is stored and managed safely. 
  • Unified Customer View: The Smart CRM allows seamless access and management of sensitive data across marketing, sales, and service teams. 
  • Enhanced Security: Features include advanced authentication, audit logging, and per-tenant encryption to protect against unauthorized access. 
  • Industry Focus: Particularly useful for healthcare, finance, and insurance sectors. 
  • Global Rollout: These features are available worldwide, with plans to support more data types in the future. 


Why is it Crucial to Align with HIPAA Standards?

Being in compliance with HIPAA regulations ensures the protection of highly sensitive data, helps build trust between you and clients, and avoids hefty fines and legal repercussions. 

How Do I Turn on the Enhanced Sensitive Data Settings? 

 To activate HubSpot’s new sensitive data settings in the Enterprise Hub: 

  1. Go to your HubSpot settings. 
  2. Click on Privacy & Analytics. 
  3. Click the Configure Sensitive Data Settings button under Data Privacy. 
  4. Select what type of information you will store (i.e. personal, financial, or medical). 
  5. If you select that you are storing medical information, you must also click the HIPAA compliance box underneath the health and medical data option.  
  6. You’re ready to start storing data! 

After I Turn on These Settings is My Entire Enterprise Hub HIPAA Compliant?  

Activating the enhanced sensitive data settings allows you to use this data across CRM, records, workflows, and search functions. However, some HubSpot tools, such as playbooks, tokens, and chatbots, do not yet support sensitive data properties. It's important to follow HIPAA requirements and ensure you have the proper paperwork to access and manage client data securely. 


Get Started

As a certified HubSpot partner, Front Burner Marketing can help you implement and provide ongoing support for a HIPAA-compliant CRM. This ensures your business meets confidentiality standards while benefiting from enhanced security and efficiency. 

Spark a Conversation!


Disclaimer: While we are experts in marketing and CRM implementation, we are in no way qualified to provide legal advice. If you have questions about the specifics of confidentiality standards or HIPAA compliance, please consult a lawyer.