Is LastPass HIPAA compliant?
The Health Insurance Portability and Accountability Act (HIPAA) calls for privacy and security standards that protect the confidentiality and integrity of patient health information.
LastPass does not qualify as a HIPAA "Covered Entity" since we are not a healthcare provider, healthcare plan, nor a healthcare clearinghouse. We do, however, work with a number of such healthcare organizations today to help them build compliance with stronger password policies.
For more information about our security, please see our LastPass Technical Whitepaper.