HIPAA Guidelines

Delve into how Recurly supports HIPAA-regulated subscription businesses, bolstering data privacy, consumer trust, and enabling businesses to tap into the burgeoning healthcare subscription market.


Required plan

This feature or setting is available to all customers on any Recurly subscription plan.


The HIPAA Guidelines highlight the necessary steps that Recurly, a leading subscription management and billing platform, has taken to support operations within the scope of the Health Insurance Portability and Accountability Act (HIPAA). This includes data security, privacy, and consumer trust enhancements, facilitating HIPAA-compliant subscription services, particularly in the rapidly evolving healthcare sector.

Key benefits

  • Enhanced data privacy and security: By aligning with HIPAA guidelines, Recurly ensures robust protection of sensitive consumer healthcare data, reinforcing trust among its user base.
  • Unlocking new market opportunities: With HIPAA compliance, Recurly can now support the fast-growing healthcare subscription sector, presenting new growth avenues for businesses.
  • Compliance with regulatory standards: Recurly's compliance with major regulatory standards including GDPR, CPRA, CCPA, and now HIPAA, demonstrates its commitment to uphold the highest data protection measures across industries.
  • Boosted consumer confidence: By ensuring data security and privacy, Recurly builds long-term consumer relationships rooted in trust, fostering enhanced customer loyalty and retention.

Recurly's leap into HIPAA compliance

In an era where personal data privacy is paramount across various industries, Recurly has proactively positioned itself to foster consumer relationships anchored in trust. The platform complies with the Health Insurance Portability and Accountability Act (HIPAA), the U.S. national standard for health information security and privacy.

The emergence of healthcare subscriptions

The healthcare subscription market is on a steady rise. A Recurly survey reveals that a staggering 60% of U.S. subscription users are likely or highly likely to consider a healthcare subscription encompassing general medical care. With its newfound ability to support HIPAA-regulated subscription businesses, Recurly adds healthcare-specific compliance to its suite of privacy-first data and consumer experiences.

This step showcases Recurly's commitment to safeguarding consumer data across the board, aligning its products with the stringent requirements of data protection regulations.

Recurly's compliance with regulatory standards

HIPAA is a set of regulatory standards that govern the security, privacy, and integrity of sensitive healthcare data, referred to as protected health information (PHI). Any vendors interacting with individually identifiable health care-related information must also comply with HIPAA.

Already serving over 2,220 consumer brands globally, Recurly is a subscription management and recurring billing platform that meets the regulatory standards of GDPR, CPRA, and CCPA, and holds SOC 2 Type 2 certification. The recent HIPAA compliance steps fortify Recurly's commitment to upholding data privacy and protection, fueling the growth of healthcare subscriptions in a secure and compliant manner.

Helpful resources