Privacy Program
Mixpanel & HIPAA
The Health Insurance Portability and Accountability Act (“HIPAA”) requires the protection and confidential handling of protected health information by covered entities. Mixpanel’s SOC 2, ISO27001 Data Center, GDPR, and EU-US Data Privacy Framework compliant data centers, along with our standard Business Associates Agreement (“BAA”), help our Enterprise Plan customers maintain their HIPAA compliance.
HIPAA Compliance
Protecting your data
Mixpanel is a first-party analytics provider. When you use Mixpanel, you collect and control the data. All we do is provide powerful tools that help you understand and act on your data. As a first-party analytics provider, Mixpanel helps you maintain the confidentiality and security of your data because it remains under your control.
Helping you meet your compliance obligations
In accordance with HIPAA, Mixpanel is prepared and able to enter into Business Associate Agreements, or BAA. To see if you qualify for a BAA, please contact a sales representative.
Strong encryption
Mixpanel protects health information by using platform wide cryptographic controls. All data is secured in transit using TLS, and encrypted at rest in our proprietary analytics database.
At Mixpanel, our privacy and security team is dedicated to helping you confidently maintain compliance when using our product.
If you have any questions or concerns, please reach out to us at compliance@mixpanel.com.