[thisismarc]

We mention HIPAA and GDPR to address data privacy concerns for users in regulated industries, as we don't only target the IT sector. Since I couldn't share a direct link to the Microsoft Teams app store, I used the landing page URL as a workaround.

[number6]

Never interested me in HIPAA before - I read the post and I found the last paragraph very cool:

> At present, there’s no certification in relation to HIPAA. The agencies that certify health technology don’t approve software or empower independent certifying authorities to accredit business associates or covered entities with a HIPAA attestation. Therefore, there is no official certification to say that we comply with HIPAA.

So everyone who puts this badge on the page is just doing the best effort thing?

[thisismarc]

Yes, but we did undergo the Microsoft Certification process, which includes independent verification of the effectiveness of our security, privacy, and compliance controls done by Microsoft.