The answer depends on which version of Google Voice you use — and most healthcare professionals use the one that isn't compliant.
Get started for freeConsumer Google Voice is not HIPAA compliant — Google does not offer a BAA for free personal Google Voice accounts. Google Voice for Google Workspace is conditionally compliant: it is listed as HIPAA Included Functionality under the Workspace BAA, but only on eligible editions (Business Standard, Business Plus, or Enterprise) with a separately purchased Voice add-on, an admin-accepted BAA, and significant security configuration.
Google does not offer a Business Associate Agreement for free or personal Google Voice accounts. Without a BAA, any use of consumer Google Voice for protected health information violates HIPAA — regardless of how the service is configured.
Source: Google HIPAA Included FunctionalityGoogle lists Google Voice (managed users only) as HIPAA Included Functionality under the Google Workspace BAA. However, the BAA is available only on Business Standard, Business Plus, and Enterprise editions — not Starter or free tiers. The Voice add-on itself costs $10–$30 per user per month on top of the Workspace subscription.
Source: Google HIPAA Included FunctionalityGoogle Voice SMS messages traverse third-party carrier networks where Google has limited control over encryption and metadata logging. Message metadata — who texted whom and when — may be retained by carriers outside the scope of Google's BAA.
Source: Google Workspace HIPAA BAAGoogle Voice automatically transcribes voicemails using AI. These transcriptions may contain protected health information and are covered under the Workspace BAA, but transcription accuracy is not guaranteed. Inaccurate transcripts that are retained as records could create compliance risk.
Source: Google Workspace HIPAA BAAEven with an eligible Workspace edition and a signed BAA, Google Voice does not ship HIPAA-ready. Administrators must configure two-factor authentication, mobile device management, Google Vault retention policies, data loss prevention rules, and sharing restrictions. Google's own implementation guide states that default settings do not satisfy HIPAA requirements.
Source: Google Workspace HIPAA complianceGoogle's HIPAA Included Functionality page lists "Google Voice (managed users only)" as a Covered Service under the Workspace BAA. The BAA defines Covered Services as products listed on that page and requires Google to give 12 months' notice before removing any service.Source: Google HIPAA Included Functionality
Required plan: Google Workspace Business Standard, Business Plus, or Enterprise — plus a Google Voice add-on license ($10–$30/user/month)
Requires IT staff to configure and maintain Google Workspace security settings, Vault policies, and DLP rules. The combined cost of Workspace ($12–$25/user/month) plus Google Voice add-on ($10–$30/user/month) means $22–$55 per user per month before any configuration effort. Not a one-time setup — policies need ongoing review as Google updates features and defaults.
Purpose-built HIPAA messaging with a signed BAA on every plan, including the free plan. Cross-organization messaging is free — no Workspace subscription or Voice add-on required.
HIPAA-compliant communication platform for medical practices with secure messaging, phone, fax, and telehealth in one system.
Patient texting platform with EHR integrations, call-to-text, and website chat for practices that need broader patient communication tools.
For a detailed comparison, see BloomText vs Google Voice.
Not in its free or consumer form. Google Voice for Google Workspace is listed as HIPAA Included Functionality, but only on Business Standard, Business Plus, or Enterprise editions with a signed BAA and admin configuration. Most individual healthcare professionals using Google Voice are on the free consumer version, which has no path to HIPAA compliance.
Only for Google Voice within eligible Google Workspace editions. The BAA is accepted by a super administrator in the Google Admin console. Consumer Google Voice — the free version tied to a personal Google account — is not covered by any BAA.
No. Free Google Voice is not HIPAA compliant and Google will not sign a BAA for it. Using free Google Voice to discuss patients, share lab results, or transmit any protected health information violates HIPAA.
Google Workspace Business Standard starts at $12 per user per month, and the Google Voice add-on starts at $10 per user per month — totaling at least $22 per user per month before configuration effort. Compare this to BloomText, where cross-organization messaging is free with a signed BAA included.
Last verified May 29, 2026.
