Find out if your healthcare website has tracking technologies that could violate HIPAA regulations and lead to costly penalties (even with the AHHA court ruling).
The HHS Office for Civil Rights has confirmed that using web trackers without a Business Associate Agreement is a HIPAA violation if they collect PHI. Source: HHS.gov
Civil monetary penalties for HIPAA violations can range from $141 to over $2,134,831 per violation depending on the level of culpability. Source: HIPAA Journal
Beyond penalties, HIPAA violations can damage patient trust and your organization's reputation in the healthcare community.
Google Analytics, Adobe Analytics, HotJar, and other tools that track user behavior.
Facebook Pixel, Google Ads, TikTok Pixel, and other advertising trackers.
Google Tag Manager and similar tools that can load third-party scripts.
Google Maps and other mapping services that collect location data.
YouTube, Vimeo, and other video platforms that track user viewing habits.
Insecure forms and third-party form processors that may collect PHI.