Is SiteGround HIPAA compliant?

No, SiteGround have not stated that it is HIPAA compliant. SiteGround’s website disclaimer states that its services don’t has with federal HIPAA requirements.

SiteGround doesn’t state that it is in compliance with HIPAA regulations, so its services are not recommended for protected health information (PHI). In its terms of service, SiteGround includes a HIPAA disclaimer section that states customers are prohibited from using its services to store PHI.

Covered entities that need web hosting services should choose a provider that offers digital and physical HIPAA-compliant safeguards. While most hosting providers provide HTTPS protocol and SSL certification for security, these features aren’t sufficient to meet HIPAA requirements. For a hosting account to be HIPAA compliant, it must include physical safeguards to protect equipment and servers. Audit controls and access controls are other digital security features that help with HIPAA compliance.

Because SiteGround doesn’t provide HIPAA-compliant services, the company is unwilling to sign a business associate agreement (BAA).

Product details

Company Logo

Business Associate Agreement


HIPAA Compliant


Product description

SiteGround provides user-friendly tools to help customers create beautiful websites. In addition to web hosting, SiteGround offers collaboration tools and website management services.


Readers should perform their own research before making the final decision. The information on the Jotform HIPAA Compliance Checker does not constitute official healthcare or legal advice. Jotform is not liable for any damage or liabilities arising out of or connected in any manner with this platform.

If you see any incorrect, incomplete or inaccurate information, please request correction by filling the form below.

Request Correction