I need to create forms that are inline with PHIA

I work in a Canadian healthcare environment so I need to create forms that are in line with PHIA. I wanted to know what options Jotform has for me to be in line with this act.

Hi Maxwell,

Thanks for reaching out to Jotform Support. I'm an AI assistant. I'll do my best to help you until someone from the support team is available.

Regarding your need to create forms in line with PHIA for the Canadian healthcare environment, Jotform offers features that help with compliance for healthcare-related regulations, notably HIPAA compliance. While Jotform specifically addresses HIPAA compliance, which is a U.S. healthcare regulation, many of the security and privacy features can support compliance efforts for similar regulations like PHIA.

Jotform provides integrations with various tools that maintain compliance features, ensuring secure handling of sensitive information. These integrations include Box, Dropbox, Google Drive, Salesforce, and others, which can help you manage protected health information securely.

If you need detailed guidance on how to configure your forms and integrations to align with PHIA requirements, it would be best to review Jotform's security features and consult with your organization's compliance team to ensure full adherence.

Let us know if you have any other questions.

Hi Maxwell,

Although Jotform does not explicitly list PHIA (Personal Health Information Act) as one of its supported compliance framework, it does offer several features that align with broader privacy standards such as HIPAA. These features can help support PHIA compliance, depending on your province and specific use case. To build forms that respect PHIA principles, Jotform provides the following options:

• HIPAA-Compliant Forms – Available on the Gold plan and higher, Jotform’s HIPAA-compliant features include encrypted data storage, secure transmission of sensitive health information, and a signed Business Associate Agreement (BAA). While HIPAA is a U.S. regulation, its standards often meet or exceed those of Canadian privacy laws like PHIA and PIPEDA.
• Data Encryption – You can enable form-level encryption to ensure that submission data is securely stored and accessible only with a private key.
• Consent Collection – Jotform supports the creation of consent forms with electronic signatures, which is essential for meeting PHIA’s requirements around informed consent.
• Audit Trails and Access Control – Although Jotform does not offer full audit trail functionality, it allows you to monitor account activity and control access to form data through user permissions and login restrictions.
• Secure Integrations – Jotform integrates with platforms such as Google Sheets, Dropbox, and various CRMs. That said, it is important to verify that any third-party tools you use also comply with PHIA standards.
• Two-Factor Authentication – Enabling two-factor authentication on your Jotform account adds an extra layer of security, helping to prevent unauthorized access and supporting PHIA’s emphasis on protecting personal health information. Let me show you how:

1. On your My Workspace page, click on your Profile Image/Avatar in the upper right.

2. In the menu that shows, click on Settings.

3. Go to the Security tab on the left side of the screen.

4. Toggle Two-Factor Authentication to the On position.

5. In the menu that pops-up, enter your Jotform password, and then click on Verify.

6. Scan the QR code using your authenticator app or enter the code in it. 

7. In the Enter the Generated Code field, type the 6-digit code generated by your authenticator app.

8. Then, click on Enable 2FA in the lower right of the pop-up menu.

9. Copy the Recovery Codes, or click on Download in the lower right of the pop-up box. 

10. Finally, click on the X icon in the upper right of the pop-up box to close it.

If you lose access to your authenticator app, you can use your recovery codes to log in to your account — just make sure to keep them safe.

Let us know if you need any more help.