Is SiteGround HIPAA compliant?

George Davidson
Mar 15, 2021

No, SiteGround isn’t HIPAA compliant. SiteGround’s website disclaimer states that its services don’t comply with federal HIPAA requirements.

SiteGround doesn’t comply with HIPAA regulations, so its services are not recommended for protected health information (PHI). In its terms of service, SiteGround includes a HIPAA disclaimer section that states customers are prohibited from using its services to store PHI.

Covered entities that need web hosting services should choose a provider that offers digital and physical HIPAA-compliant safeguards. While most hosting providers provide HTTPS protocol and SSL certification for security, these features aren’t sufficient to meet HIPAA requirements. For a hosting account to be HIPAA compliant, it must include physical safeguards to protect equipment and servers. Audit controls and access controls are other digital security features that help with HIPAA compliance.

Because SiteGround doesn’t provide HIPAA-compliant services, the company is unwilling to sign a business associate agreement (BAA).

Product details

Company Logo

Business Associate Agreement


HIPAA Compliant


Product description

SiteGround provides user-friendly tools to help customers create beautiful websites. In addition to web hosting, SiteGround offers collaboration tools and website management services.


Readers should perform their own research before making the final decision. The information on the JotForm HIPAA Compliance Checker does not constitute official healthcare or legal advice. JotForm is not liable for any damage or liabilities arising out of or connected in any manner with this platform.

If you see any incorrect, incomplete or inaccurate information, please request correction by filling the form below.

Request Correction