Legal

HIPAA statement.

Praxis Health designs and builds the websites we deliver to HIPAA’s privacy and security rules. The statement below reflects how we handle PHI on the marketing surface and how we integrate with clinic-side systems that do.

On Praxis Health’s site

This site (praxishealth.health) does not collect, store, or transmit Protected Health Information. We do not run third-party session-replay tools, ad-network pixels that match identities, or any analytics that capture form contents. The contact form submissions land in our own inbox; if a sender voluntarily includes PHI in a message, we treat it as confidential and delete it after the conversation concludes.

On the sites we build for clinics

Where a project requires a Business Associate Agreement, we sign one before kickoff. Site analytics are configured without PHI—no IP-level identifiers, no in-form session replay, no cookie matching to PHI-bearing systems. Patient-facing booking and intake flows are embedded from the practice’s vendor (e.g. Athenahealth, Cerner, Epic MyChart); Praxis Health does not store PHI ourselves.

Reporting concerns

If you believe a site we built has handled PHI incorrectly, write to info@praxishealth.health. We respond within one business day and work directly with the practice’s designated privacy officer.

Last updated: 2026-05-06 · subject to revision when a project requires