Venmo isn't HIPAA-compliant
Venmo is a great way to receive payments from friends.
It’s not a HIPAA-compliant way to receive payments from therapy clients.
What makes a payment processor HIPAA-compliant?
Must ensure the confidentiality, integrity, and availability of protected health information (PHI) transmitted and stored in their software.
Must sign a business associate agreement (BAA) with their healthcare clients.
Like Calendly, Venmo doesn’t issue a BAA, so you’re not considered a “covered entity.” They also share your client's data with PayPal, their parent company.
If you want to give clients a way to securely pay you, consider using practice management software like SimplePractice with an embedded payment processor. They use Stripe.
Ivy Pay is another HIPAA-compliant option for processing credit card payments.
Read more about HIPAA-compliant payment methods here.