HIPAA & BAA · AI meeting notes
Is Otter.ai HIPAA compliant?
Conditionally. As of July 2025 Otter.ai will sign a BAA, but HIPAA support is limited to the Enterprise plan; Basic, Pro, and Business plans cannot handle PHI.
Key facts
- BAA available: Conditionally — on specific plans
- What it takes: Enterprise plan
- Official source: Otter.ai Help Center — HIPAA — https://help.otter.ai/hc/en-us/articles/33975072019991-HIPAA-Otter-ai (verified 2026-06)
How to use Otter.ai in a HIPAA-compliant way
- Be on (or move to) the Otter.ai Enterprise plan.
- Contact your Otter.ai account manager or sales team to request the BAA.
- Assess whether your use will create/receive/transmit PHI before proceeding.
- Execute the BAA before handling any PHI in Otter.ai.
- Apply Otter's administrative and technical safeguards for PHI access.
Important caveats
- HIPAA support is recent (announced July 2025) and Enterprise-only.
- Basic, Pro, and Business plans cannot obtain a BAA and must not be used for PHI.
- Otter does not publish its BAA text publicly; terms are obtained via sales.
The bottom line
No software is "HIPAA compliant" on its own. HIPAA compliance is a property of your organization, not a tool. Even with a signed BAA, you remain responsible for configuring Otter.ai correctly, limiting access to PHI, training staff, and maintaining your own safeguards. This page is general information, not legal advice; confirm current terms with Otter.ai.
Frequently asked questions
Does Otter.ai sign a BAA?
On specific plans. Enterprise plan A signed BAA is required before any PHI is involved.
Is Otter.ai HIPAA compliant out of the box?
No software is "HIPAA compliant" by itself. Even when Otter.ai offers a BAA, you are responsible for signing it, configuring the product correctly, restricting access, and maintaining your own administrative, physical, and technical safeguards.
What should I check before using Otter.ai with PHI?
HIPAA support is recent (announced July 2025) and Enterprise-only.