The HIPAA-compliant UX research platform

Protect your customers’ health data and maintain HIPAA compliance at every step of the research process.

Contact sales
Great Question's Panel UI with the HIPAA seal of compliance
Securely import customer health data from Salesforce or Snowflake into Great Question

Securely import your customers’ health data

Our integrations with Salesforce and Snowflake make it safe and easy.
Contact sales

Mark any custom
attribute as PHI

Any attribute stored in our system can be marked as PII (Personally Identifiable Information) and PHI (Protect Health Information). This ensures it’s logged anytime it’s read or updated.
Contact sales
Mark any custom data attribute Protected Health Information (PHI)

Your health data is safe with us

PHI logging icon

All access to PHI is logged
in our system

Anytime PHI is accessed in our system, we log it. This ensures HIPAA compliance in the event of a breach.
HIPAA-compliant vendors icon

All of our vendors are
HIPAA-compliant

All third-parties processing PHI have signed a BAA (Business Associate Agreement) with Great Question. We encourage customers to sign one with us, too.
PHI and PII obfuscation icon

Both PII & PHI is obfuscated by default

This is set by default for most user roles
and can be configured to meet the needs of your team.

Frequently asked questions

What is HIPAA?
The Health Insurance Portability and Accountability Act of 1996 (HIPAA) is a federal law that required the creation of national standards to protect sensitive patient health information from being disclosed without the patient’s consent or knowledge. The US Department of Health and Human Services (HHS) issued the HIPAA Privacy Rule to implement the requirements of HIPAA. The HIPAA Security Rule protects a subset of information covered by the Privacy Rule.
What’s the difference between PHI and PII?
Protected Health Information (PHI) is any health information that includes any of the 18 elements identified by HIPAA. Personally Identifiable Information (PII) is defined as data used in research that is not considered PHI and is therefore not subject to the HIPAA Privacy and Security Rules.
What is a BAA?
A Business Associate Agreement (BAA) establishes a legally-binding relationship between HIPAA-covered entities and business associates to ensure complete protection of PHI. This type of agreement is necessary if business associates can potentially access PHI during their work.
How do I get started with Great Question’s HIPAA Solution?
Great Question’s HIPAA solution is an add-on to our Enterprise plan you can choose to purchase. Great Question Enterprise customers who purchase the HIPAA add-on can enter into a BAA with us.

Make Great Question your home for UX research

Contact sales
Company
AboutCareersPrivacyTermsHelp centerGive feedback
Customers
AppFolioBlinkistCanvaNutrisenseOpalProcare Solutions
Features
AI for UX researchPanel managementResearch recruitmentResearch calendarContinuous discoveryPrototype testsResearch incentivesResearch repositoryHighlight reelsIntegrationsSalesforce integrationSnowflake integrationTremendous integrationGDPR complianceHIPAA complianceSecurityDeveloper hub
Templates
Brand awareness surveyBrand perception surveyChatbot feedback surveyCustomer discovery interviewCustomer exit interviewCustomer journey interviewCustomer churn surveyCustomer satisfaction surveyCustomer service feedback surveyDemographic surveyNet Promoter Score (NPS) surveyPath to purchase surveyStakeholder interviewSoftware feedback surveySystem Usability Scale (SUS) surveyWebsite feedback survey
Blog
Research operations guideUX research methods guideHow to write a screener surveyUser interview script exampleHow to transcribe an interviewScaling research that rocks (or at least isn't rubbish)Democratization led by researcher, not of researchAn in-depth look at organizational research maturity
Thank you! Your submission has been received.
Oops! Something went wrong while submitting the form.
© 2023 Great Question, Inc. All rights reserved.