You may be experiencing slow load times on the forum; the team is working to resolve this ASAP.

×
Forums
Home Q&A Discussion groups Articles Ask a question Search
Learning
Events
Champions
Community
Forums
Home Q&A Discussion groups Articles Ask a question Search
Learning Events Champions
Forums
Home Q&A Discussion groups Articles Ask a question Search
Learning Events Champions

Forums

Articles
Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

HIPAA instance

Katherine Lord
Katherine Lord November 3, 2025

We are investigating setting up a 2nd Atlassian instance that is HIPAA compliant.  I am not able to find a good description of the differences.  With turning off AI and ROVO can I still create workflows with Approvers.

 

Is there a comparison of regular cloud vs HIPAA compliant cloud instance?

Answer
Watch
Like Be the first to like this
48 views

2 answers

0 votes
Lindsay Bolan
Lindsay Bolan
Contributor
November 3, 2025

Hi Katherine,

As far as I know, there isn't a demo or walkthrough video showing all the differences between regular & HIPAA-compliant Atlassian Cloud setups, but I can tell you what I know from having run a HIPAA-compliant org for two years.

First to answer your specific question, you will not be able to use Atlassian Intelligence or Rovo because they are not part of the HIPAA-compliant platform. This doesn't affect creating workflows with approval steps; you can still do that without Rovo.

You will need to sign a Business Associate Agreement with Atlassian, and you will need to implement the settings listed in this KB page: https://support.atlassian.com/organization-administration/docs/the-hipaa-implementation-guide/

From a user experience perspective, the biggest challenge has been the "safe customer notifications" setting, because that blocks the plain text of item summary, description, and public comments from being displayed in email messages. This has caused a lot of unhappiness with my user base because most of them only interacted with IT via email threads previously.

This is just a quick rundown, but if you have any other questions, I am happy to answer.

Thanks,

Lindsay

Reply
0 votes
John Funk
John Funk
Community Champion
November 3, 2025

Hi Katherine,

The HIPAA compliance stuff is mainly about hiding information. When certain features are turned on, when you get an email, it has no information from the Description or Summary of the ticket - just that someone tagged you or you are now assigned to a ticket or someone left a comment, etc. You have to open the ticket to see the details. 

Here is a link to the implementation guide: 

https://support.atlassian.com/organization-administration/docs/the-hipaa-implementation-guide/

 

Reply

Suggest an answer

Log in or Sign up to answer
Jira
Jira
TAGS
AUG Leaders

Atlassian Community Events

    See all events
    Community
    Forums
    FAQs Forums guidelines
    Learning
    About learning Resources
    Events
    Champions
    Copyright © 2025 Atlassian
    Privacy Policy Notice at Collection Terms Security