Yes. HIPAA compliance encompasses a lot, including encryption of data at rest and in motion, business associate agreements, business process design and internal training. We're fully compliant. We use industry standard encryption and handle protected health information based on the protocols and requirements of compliance.
You can always ask us specific questions around HIPAA compliance and site security here: firstname.lastname@example.org