top of page

hamdesigns.co

HIPAA Website Scan Report

There are no results.

This report has expired.

Analytics

Tools like Google Analytics may collect visitor data considered PHI under HIPAA, requiring a signed BAA to be compliant. 

This Is a Title

Medium Risk Check.png

Risk

Edit this paragraph to add any content you would iike to share about your company or service.

Trackers

Marketing trackers can capture user behavior tied to health interests, which may violate HIPAA without proper safeguards and agreements. This is typically high risk, since you can’t control what data is collected or shared—and patient consent is usually not obtained.

Facebook Conversion Tracking

High Risk Check.png

High

Tracks user behavior after ad clicks. May share sensitive data with Meta.

Facebook Pixel

High Risk Check.png

High

Tracks website visitors and may result in unauthorized disclosure of PHI—specifically addressed in HHS guidance.

LinkedIn Insights

High Risk Check.png

High

Tracks engagement from LinkedIn ads. Could expose PHI if placed on health pages.

Facebook Signal

High Risk Check.png

High

Facebook content insights. If used on patient pages, could transmit visit behavior.

Forms

Website forms collect sensitive information like names, symptoms, or contact details—making them high risk if PHI is submitted without a Business Associate Agreement or proper security.

Wix Forms

High Risk Check.png

High

Form builder lacks required HIPAA compliance features, and Wix does not provide a Business Associate Agreement (BAA) for form submissions.

Your Scan Is Complete
Now that you know the risks, we’re here to help. Get clear guidance to protect your patients and your practice.

bottom of page