HIPAA-aware scanning
Solutions
Healthcare
Protect patient data on the web. Get HIPAA-aware visibility into trackers and pixels, evidence for audits and incidents, and real-time control so PHI stays private.
Built for healthcare privacy, compliance, and IT teams protecting patient data on the web.
Use case
Healthcare
Patient health data should stay private. Healthcare sites are held to HIPAA, FTC rulings, and state privacy laws, but pixels, trackers, and session replay can expose PHI and trigger lawsuits, breaches, and regulatory action. Privacy Edge gives you visibility and evidence so you can find risk, fix it, and demonstrate compliance.
Tracker and PHI visibility
Real-time protection
Evidence for audits and incidents
How Lokker helps
What this use case needs
See what's on your site
Get visibility into third parties, fourth parties, and beyond: who they are, where they are, and what data they collect. Page-level and portfolio risk scores surface hidden or forgotten pages that put you at risk.
Stay ahead of regulatory targets
Check for trackers and tools cited in recent rulings and guidance: session replay, Meta pixel, and other technologies that have triggered HIPAA and FTC action. Use your daily risk score and alerts to catch new exposure quickly.
Fix before it becomes a claim
Track risk improvements over time and report progress to leadership. After an incident, demonstrate corrective measures and compliance with evidence-grade reports and remediation timelines.
Control what leaves the browser
Guardian enforces trust rules in real time: block untrusted trackers and prevent unauthorized sharing of PII and PHI before data leaves the browser, so you protect patients and your organization.
Behind the page
What visitors see is only half the story.
Drag the slider to compare a typical marketing surface to the requests, pixels, and policy gaps that actually run in the browser: the parts that are easy to miss in a visual review alone.
https://portal.wellhartclinic.org/appointments
WH
Wellhart Clinic
Primary & specialty care
Privacy choices. We use cookies and similar technologies. Manage preferences or accept to continue.
Board-certified providers · Virtual & in-person
Photo by National Cancer Institute on Unsplash
Same-day & scheduled visits
Care that fits your schedule
Book appointments, message your care team, and see test results: the experience patients expect from a modern health system.
Book an appointment Find a location
Illustrative example, not a real clinic.
Popular on this site
Primary care
Video visit
Test results
Secure sign-in · Messages in transit encrypted
Drag the grip to move the split (clicking the page does not jump it). Scroll the panel on the right independently. Left: patient-facing page · Right: findings and request trace.
What Our Clients Say
"Using Lokker has been a game-changer for us. It not only protects our patients but also helps us better understand our own code. We utilize Lokker in presentations across the organization, especially the dependency graph, to showcase our privacy efforts and educate our team."
Healthcare client
Relevant Healthcare Lawsuits and Rulings
Why tracking on healthcare sites matters
There has been a recent spate of lawsuits and violations alleging that tracking technologies, such as trackers, pixels, and cookies, collect sensitive information from website visitors and share it with third parties without the user's consent. This activity violates data privacy laws like HIPAA, the CPRA, and wiretapping laws. Several companies even consider this type of unauthorized data sharing a data breach to their customers.
Inova Health Care Services agreed to a $3.1 million settlement to resolve claims that tracking pixels on its public-facing websites disclosed private patient information to third-party advertising platforms.
Kaiser Permanente agreed to a $46 million settlement to resolve allegations that its websites and mobile apps used third-party tracking code to transmit confidential health information to companies like Google, Microsoft, and Meta without user consent.
GoodRx was fined by FTC under HIPAA laws due to patient data sharing. BetterHelp also gets fined for its misuse of online trackers.
TikTok settles a $92 million class action suit for sharing user viewing data, violating VPPA, the Video Privacy Protection Act. 70+ similar lawsuits have been filed in the past year.
Advocate Aurora Health reports a breach to 3 million patients for the use of the pixel. Other providers have followed.
Meta, UCSF Medical, and Dignity Health sued over sharing healthcare data with the DB pixel under various data privacy laws. Numerous additional class-action suits against hospitals have followed.
Recommended products
Products that support this solution
Each product links to its page so you can explore features and request a demo.
Intelligence
Privacy Edge
HIPAA-aware scanning, risk scores, reason codes, and evidence-ready reports for audits, incidents, and regulatory response. Industry context flags healthcare-specific exposure.
Explore Privacy EdgeEnforcement
Guardian
Block unwanted trackers and PHI sharing in real time at the edge, so sensitive data never reaches third parties.
Explore GuardianValidation
Consent Validator
Verify that consent and GPC behavior align with policy across the patient journey and that disclosures match actual data collection.
Explore Consent ValidatorUse-case FAQ
Common implementation questions for this solution
Use topic filters to drill into discovery, operations, and rollout specifics.
Next step
Pick the path that fits
Request a demo to see the platform, or contact us to discuss your use case.
See your healthcare risk profile
Walk through real findings from healthcare sites and get a practical path to remediation and compliance.
Request a demoTalk to a privacy specialist
Discuss your healthcare properties and how Lokker helps protect patient data and meet HIPAA and state obligations.
Contact us