Begin Your HIPAA Assessment
First Name
Email
*
Website
Is your WordPress site using SSL/TLS and encrypted databases and backups to protect sensitive data?
*
Yes
No
Unsure
Do you regularly back up your site and store those backups securely offsite?
*
Yes
No
Unsure
Do you have audit logs in place that are automatically generated and regularly reviewed for unusual activity?
*
Yes
No
Unsure
Do you have a Business Associate Agreement (BAA) with your hosting provider, and are they experienced in HIPAA compliance?
*
Yes
No
Unsure
Are all users assigned unique IDs and required to use multi-factor or two-factor authentication?
*
Yes
No
Unsure
Do you keep your WordPress core, themes, and plugins fully updated and patched?
*
Yes
No
Unsure
Are all plugins and themes used on your site actively maintained by reputable developers?
*
Yes
No
Unsure
Have you removed any unused, outdated, or unsupported themes and plugins?
*
Yes
No
Unsure
Is a web application firewall (WAF) installed and properly configured on your site?
*
Yes
No
Unsure
Do you manually review and apply updates when necessary, even if automatic updates are enabled?
*
Yes
No
Unsure