Free resource · Checklist

The HIPAA checklist every clinic should run at least once a year.

A working list of 27 items — administrative, technical, physical, marketing and breach response. Tick them off as you go; progress saves in this browser. No email required.

0 / 27

items complete

Start here

Administrative safeguards

0 / 5

Technical safeguards

0 / 5

Physical safeguards

0 / 3

Marketing & website

0 / 6

Breach preparedness

0 / 3

Need a hand?

We’ll do a HIPAA-aware audit of your marketing stack — free.

Pixels, GTM, forms, session tools, BAAs. A 30-minute call, a short report, zero pitch.

Request free audit →

Note — this checklist is a starting point, not legal advice. HIPAA compliance depends on your specific workflows, covered-entity status and state law. Work with qualified counsel before certifying your practice.