HIPAA & BAA · Shared inbox / customer communication
Is Front HIPAA compliant?
Conditionally. Front may enter into a BAA, but it reserves this for customers whose annual contract price meets a certain (undisclosed) threshold, and only for expressly covered functionality.
Key facts
- BAA available: Conditionally — on specific plans
- What it takes: Customers meeting Front's annual contract threshold
- Official source: Front — HIPAA Compliance for Customers — https://front.com/legal/hipaa-compliance (verified 2026-06)
How to use Front in a HIPAA-compliant way
- Contact Front sales or your account representative to ask about BAA eligibility.
- Confirm your annual contract value meets Front's threshold for BAAs.
- Review which features fall under the BAA's 'Included Functionality.'
- Execute the BAA with Front before processing PHI.
- Restrict PHI to the covered functionality and retain the signed BAA.
Important caveats
- The contract-value threshold is not publicly disclosed; eligibility must be confirmed directly with Front.
- The BAA only covers features expressly stated as Included Functionality — not all Front features.
- Without a signed BAA, Front should not be used to process or store PHI.
The bottom line
No software is "HIPAA compliant" on its own. HIPAA compliance is a property of your organization, not a tool. Even with a signed BAA, you remain responsible for configuring Front correctly, limiting access to PHI, training staff, and maintaining your own safeguards. This page is general information, not legal advice; confirm current terms with Front.
Frequently asked questions
Does Front sign a BAA?
On specific plans. Customers meeting Front's annual contract threshold A signed BAA is required before any PHI is involved.
Is Front HIPAA compliant out of the box?
No software is "HIPAA compliant" by itself. Even when Front offers a BAA, you are responsible for signing it, configuring the product correctly, restricting access, and maintaining your own administrative, physical, and technical safeguards.
What should I check before using Front with PHI?
The contract-value threshold is not publicly disclosed; eligibility must be confirmed directly with Front.