mFax for HIPAA compliant online fax

A HIPAA compliant cloud fax service is authorized to transmit and store sensitive data including PHI and ePHI.


of our customers stay for life


Here are a few things you might want to know about HIPAA fax

Didn't find an answer? You can go to our Help center or contact us by email

Help centerSend an email
curve arrow
Ask us anything!

Is HIPAA faxing safe for highly sensitive documents?

Absolutely. When faxing medical records or anything with PHI, the processes for keeping the information private to only the sender’s and recipient’s eyes are important. Correctly using a fax service and sending the information to the correct number are both vital to avoiding HIPAA violations when transmitting this sensitive information.

How does HIPAA faxing relate to security?

Faxing is typically more secure than email because most email providers don’t take extra security measures for the contents of their messages or attachments.Email addresses and passwords appear with high frequency on breach warning websites. The average person has a 41% chance of finding their email login information involved in a security breach. Therefore, anyone with that information can read any of their sent or received emails. Faxing over phone lines or via a secure online cloud fax system protects the information from hackers. When faxing over the phone, hackers cannot access the information sent via telephone lines.

What Is the HIPAA disclaimer cover sheet I must send?

Cover sheets are essential whether sending an online or traditional fax. These sheets serve as a means of protecting the information in the fax from someone who might accidentally see a page sitting on the fax machine. However, the cover sheet itself cannot include any PHI while also including information to indicate the confidentiality of the fax.
A HIPAA compliant fax coversheet should have the following information:
Notice of “confidential” and “important” information in the fax
Number of pages, including the cover sheet
Your name and fax number
Recipient’s name
The subject of the fax (without revealing PHI)

Do I need a HIPAA-compliant fax machine?

No. HIPAA-compliant cloud fax services should use multifactor authentication, which prevents someone who only has the user name and password from accessing the account. They also encrypt faxes from the time the fax is sent until the recipient gets it. This encryption uses specific keys to unlock the fax. Someone who does not have these keys cannot see the fax.

Can I use a HIPAA fax API?

Yes, the mFAX service is available as both a secure web-application and as an embedded API call.

What types of healthcare entities use HIPAA compliant fax?

Any organization that provides healthcare-related services, be it hospitals, providers, clinics, insurers or payors, should be using a verifiable HIPAA-compliant fax service as part of its overall PHI security program.

Does mFax have a HIPAA compliant fax app?

Absolutely. We offer the following security features for HIPAA compliance:
Business Associate Agreement
Multifactor authentication login and user protections
Secure connections
File encryptions

Does mFax offer HIPAA compliant fax to email?

Yes. To protect the data sent, mFax uses secure HTTPS connections for our web presence and access from fax API. Transmitted and files at rest are secured with TLS 1.2transit and AES 256-bit encryption respectively.


Get in touch with our fax experts

We can help you evaluate your fax needs so you can make the right decision for your business.

Fill out the form, start a live chat, or call us:

+1 (888) 966-4922
we are