SlackEnterprise Grid only BAA on select plansPHI with conditions
Slack's HIPAA help page states you "must be using a Slack Enterprise plan" (the Enterprise Grid tier) to be covered under its BAA. The page does not name the Free, Pro, or Business+ tiers, so their exclusion is inferred from the Enterprise-only requirement rather than explicitly stated by Slack.
BAA on select plansPHI with conditions
Microsoft's HIPAA BAA is included by default through the Data Protection Addendum for commercial/enterprise customers covering in-scope services; Microsoft will not sign a customer's own BAA form, and free accounts are excluded.
Teams has no separate BAA — it is in scope under the Microsoft 365 / Office 365 commercial BAA. Free accounts are excluded.
BAA on select plansPHI with conditions
Google offers a HIPAA BAA to any paid Workspace/Cloud Identity customer via the Admin console (not free consumer Gmail), covering only services on the HIPAA Included Functionality list.
Google Chat is a HIPAA Included service covered by the Google Workspace BAA, which any paid Workspace admin can accept (not free consumer Gmail).
BAA on select plansPHI with conditions
Zoom signs a BAA with paid healthcare customers across Pro, Business, Business Plus, and Enterprise plans; free accounts are excluded. The BAA itself is US-only, but customers with a Canadian billing address are instead offered a Personal Health Information Annex (PHIA) covering PHIPA/PIPEDA — so non-US healthcare customers are not shut out.
Zoom Team Chat is covered by Zoom's BAA, signed with paid healthcare customers on Pro, Business, Business Plus and Enterprise. Free accounts are excluded.
Every verdict above is cited public information, not legal or compliance advice. A BAA's availability changes with your plan, region and contract, and the product names here may be governed by a parent suite's agreement — always confirm the current BAA and PHI scope directly with the vendor before processing protected health information.
Which team chat tools sign a HIPAA BAA?
All 4 (Slack, Microsoft Teams, Google Chat, Zoom Team Chat) will sign a HIPAA Business Associate Agreement (BAA), each on a specific plan tier. Every verdict on this page is cited and date-stamped — confirm current terms with the vendor before storing PHI.
Does Slack sign a HIPAA BAA?
Sometimes — Slack signs a HIPAA BAA only on specific plans or add-ons. Slack's HIPAA help page states you "must be using a Slack Enterprise plan" (the Enterprise Grid tier) to be covered under its BAA. The page does not name the Free, Pro, or Business+ tiers, so their exclusion is inferred from the Enterprise-only requirement rather than explicitly stated by Slack.
Does Microsoft Teams sign a HIPAA BAA?
Sometimes — Microsoft Teams signs a HIPAA BAA only on specific plans or add-ons. Microsoft's HIPAA BAA is included by default through the Data Protection Addendum for commercial/enterprise customers covering in-scope services; Microsoft will not sign a customer's own BAA form, and free accounts are excluded.
Does Google Chat sign a HIPAA BAA?
Sometimes — Google Chat signs a HIPAA BAA only on specific plans or add-ons. Google offers a HIPAA BAA to any paid Workspace/Cloud Identity customer via the Admin console (not free consumer Gmail), covering only services on the HIPAA Included Functionality list.
Does Zoom Team Chat sign a HIPAA BAA?
Sometimes — Zoom Team Chat signs a HIPAA BAA only on specific plans or add-ons. Zoom signs a BAA with paid healthcare customers across Pro, Business, Business Plus, and Enterprise plans; free accounts are excluded. The BAA itself is US-only, but customers with a Canadian billing address are instead offered a Personal Health Information Annex (PHIA) covering PHIPA/PIPEDA — so non-US healthcare customers are not shut out.