This information has been gathered during a scan of your web application. By checking your online properties for issues such as insecure data
collection forms, cookie presence, third-party links, cross-site-scripting vulnerabilities, and SQL-injection vulnerabilities, the scan generates an
automatic checklist of potential compliance issues. By taking advantage of this information, you can then proactively filter and prioritize
identified issues to ensure faster remediation of your organization's most critical regulatory compliance concerns.
It is important to note that while this automatically-generated information is intended to greatly enhance the efficiency with which you may
remediate compliance issues, it does not presume to represent the full scope of compliance with HEALTH INSURANCE PORTABILITY AND ACCOUNTABILITY ACT OF 1996 regulations. These results
represent a subset of the requirements that can be gathered automatically from your web application. Further, as regulations are subject to change,
this report may have been generated with a version of the application that has not been updated to reflect those changes.
It is therefore the sole responsibility of the user to know the regulations and comply with them.
The issues presented in this report correspond to the HEALTH INSURANCE PORTABILITY AND ACCOUNTABILITY ACT OF 1996 (HIPAA).
The information presented here is not to be regarded as legal advice. It does not express or imply any guarantee of compliance with any law or
regulation. It is the sole responsibility of the user of this report to seek competent legal counsel for advice on compliance with any laws and
regulatory requirements and to otherwise take whatever measures are necessary for such compliance. Rapid 7 Inc. assumes no responsibility for
any use or misuse of any information presented in this report.
The results of this report do not cover the full set of requirements for HIPAA compliance. This information has been gathered during a
scan of your web application, and will only cover the following requirements as is possible from a "blackbox" analysis.
For a full copy of the HEALTH INSURANCE PORTABILITY AND ACCOUNTABILITY ACT OF 1996, visit the US Government Printing Office website http://www.gpo.gov/fdsys/search/pagedetails.action?granuleId=CRPT-104hrpt736&packageId=CRPT-104hrpt736.
Pass or Fail for a requirement is based on the sub-requirements we are able to test for in an automated Web Application Assessment. All other sub-requirements are not factored in.