Privacy Program

Mixpanel & HIPAA

The Health Insurance Portability and Accountability Act (“HIPAA”) requires the protection and confidential handling of protected health information by covered entities. Mixpanel’s SOC 2, ISO27001 Data Center, GDPR, and EU-US Data Privacy Framework compliant data centers, along with our standard Business Associates Agreement (“BAA”), help our Enterprise Plan customers maintain their HIPAA compliance.

HIPAA Compliance

Protecting your data

Mixpanel is a first-party analytics provider. When you use Mixpanel, you collect and control the data. All we do is provide powerful tools that help you understand and act on your data. As a first-party analytics provider, Mixpanel helps you maintain the confidentiality and security of your data because it remains under your control.

Helping you meet your compliance obligations

In accordance with HIPAA, Mixpanel is prepared and able to enter into Business Associate Agreements, or BAA. To see if you qualify for a BAA, please contact a sales representative.

Strong encryption

Mixpanel protects health information by using platform wide cryptographic controls. All data is secured in transit using TLS, and encrypted at rest in our proprietary analytics database.

At Mixpanel, our privacy and security team is dedicated to helping you confidently maintain compliance when using our product.

If you have any questions or concerns, please reach out to us at[email protected].