Enterprise customers on a HIPAA or PHIPA plan can send faxes directly from their email client - with full PHI compliance and no additional software required.
Overview
Secured TLS email-to-fax is a dedicated, hardened workflow that lets authorised users send faxes by emailing a recipient fax number at a special domain. It is separate from standard email-to-fax and enforces compliance controls at the infrastructure level.
To use this feature, your organisation must have completed HIPAA or PHIPA onboarding, including activating Advanced Security Controls (ASC) - available within Enterprise accounts - and signing a Business Associate Agreement (BAA) or PHIPA Service Provider Agreement with Fax.Plus.
Emails are sent to:
+1XXXXXXXXXX@tls.fax.plus
TLS enforced
All email traffic is encrypted using TLS.
How to get started
- Activate Advanced Security Controls (ASC) within your Enterprise account and sign the HIPAA Business Associate Agreement or PHIPA Service Provider Agreement with Fax.Plus.
- Confirm your plan is Enterprise with HIPAA or PHIPA mode enabled.
-
+1XXXXXXXXXX@tls.fax.plus, replacing the number with the destination fax number.
No new email client needed. This feature works with your existing email client.
Setup
No setup is required beyond completing compliance requirements (ASC + BAA or ASC + SPA). Once both are in place, email-to-fax to @tls.fax.plus is automatically enabled with TLS enforcement.
How it differs from standard email-to-fax
These are two separate features with different infrastructure, addresses, and compliance guarantees.
| Feature | Standard email-to-fax | TLS email-to-fax |
|---|---|---|
| Sending address | @fax.plus | @tls.fax.plus |
| Available on | All paid plans | Enterprise + HIPAA or PHIPA only |
| TLS enforced | No | Yes |
| PHI compliant | No | Yes |
| BAA required | No | Yes |
| SPA required | No | Yes |
Wrong address? If a HIPAA-enabled account or PHIPA-enabled account sends to @fax.plus instead of @tls.fax.plus, the system automatically redirects the message to the HIPAA or PHIPA-compliant pipeline.
Frequently asked questions
Do I need to install anything?
No. TLS email-to-fax works with your existing email client.
Who needs to sign the BAA or SPA?
Contact your account admin to get started.
Can I use any email address to send?
Only email addresses added / provisioned as users within your HIPAA-enabled or PHIPA-enabled Fax.Plus account can send via this feature. Unauthorized senders are rejected at the infrastructure level.
What happens to faxes sent to the wrong domain?
HIPAA or PHIPAA accounts attempting to send to @fax.plus are automatically redirected to the TLS pipeline. The separation is enforced at the infrastructure level - you cannot inadvertently send PHI through the non-compliant route.