Is SiteGround HIPAA compliant?

Dec 25, 2020

No, SiteGround isn’t HIPAA compliant. SiteGround’s website disclaimer states that its services don’t comply with federal HIPAA requirements.

SiteGround doesn’t comply with HIPAA regulations, so its services are not recommended for protected health information (PHI). In its terms of service, SiteGround includes a HIPAA disclaimer section that states customers are prohibited from using its services to store PHI.

Covered entities that need web hosting services should choose a provider that offers digital and physical HIPAA-compliant safeguards. While most hosting providers provide HTTPS protocol and SSL certification for security, these features aren’t sufficient to meet HIPAA requirements. For a hosting account to be HIPAA compliant, it must include physical safeguards to protect equipment and servers. Audit controls and access controls are other digital security features that help with HIPAA compliance.

Because SiteGround doesn’t provide HIPAA-compliant services, the company is unwilling to sign a business associate agreement (BAA).

Reference link for SiteGround:

https://www.siteground.com/viewtos/siteground_terms_of_service

Product details

Company Logo

Business Associate Agreement

HIPAA Compliant

Website

https://www.siteground.com/

Product description

SiteGround provides user-friendly tools to help customers create beautiful websites. In addition to web hosting, SiteGround offers collaboration tools and website management services.

Disclaimer:

Readers should perform their own research before making the final decision. The information on the JotForm HIPAA Compliance Checker does not constitute official healthcare or legal advice. JotForm is not liable for any damage or liabilities arising out of or connected in any manner with this platform.