Free HIPAA Risk Assessment
Find out where your practice actually stands on HIPAA — in 25 minutes, in plain English.
A free, structured Security Risk Analysis built for solo therapists and small practices. No consultant fees, no jargon. Get an instant compliance score and a personalised report showing exactly where your gaps are and how to fix them.
Free to start · Takes 25–30 minutes · You'll see your score immediately
What this is
A HIPAA Security Risk Analysis is the single most important compliance task for any practice that handles patient information — and it's also the most commonly cited deficiency in OCR enforcement. In 2025, every single one of the ten resolution agreements OCR announced cited failure to conduct one. Solo practices have settled cases for $25,000–$30,000 over missing or outdated risk analyses.
The federal government offers a free risk assessment tool, but most therapists who try it give up around question 40 of 156 because it was clearly written for IT departments. Consultants will do it for you, but typically charge several thousand dollars. This tool sits between those two — a structured 40-question assessment in plain English, designed specifically for solo and small mental health practices, that produces the same kind of documentation OCR expects to see.
What you'll get
An instant compliance score
Your overall HIPAA compliance percentage and a breakdown across five categories — administrative, physical, technical, vendor management, and breach preparedness. Visible immediately on completion, no email required.
A personalised gap list
Every specific compliance gap we identify in your practice, prioritised by risk, with plain-English explanations of what each one means and what to do about it. Sent to your email as a downloadable PDF.
A real foundation for compliance
The completed assessment becomes the start of your written Security Risk Analysis — the same document OCR expects to see in any investigation. Save it, update it annually, share it with your team if you have one.
How long this takes
About 25–30 minutes for most solo practices, depending on how much of your current setup you have at hand. You don't need to look anything up to start — if you don't know the answer to a question, you can answer “not sure” and the tool will treat that honestly. The questions are organised into five short sections so you can see your progress as you go.
- Compliance foundation — 10 questions, ~6 minutes
- Devices and physical space — 8 questions, ~4 minutes
- Systems and access — 12 questions, ~8 minutes
- Vendors and tools — 6 questions, ~4 minutes
- Breach preparedness — 4 questions, ~3 minutes
What we don't do
Yundra never sees your patient information. This tool only collects your answers about your compliance setup — not patient data, not session notes, not identifiable health information. We don't connect to your EHR, we don't read your email, we don't see your records. The assessment runs entirely on your answers about your practice.
Your answers stay private. We don't sell email addresses, we don't share data with third parties, and we don't add you to any marketing lists you didn't ask to join. If you choose to receive your full report by email, we'll send it once, and we'll only contact you again if you want us to.
Who built this
Yundra is a compliance tool built specifically for solo therapists and small mental health practices. We started Yundra because the gap between “the free government tools that nobody can finish” and “the $5,000 consultant nobody can afford” is enormous. This free risk assessment is the first step — take it, see your gaps, and if you need the full compliance documents, they're ready in minutes.
Ready to start?
The assessment takes about 25–30 minutes. You'll see your overall score and category breakdown the moment you finish. Email is only required if you want the full personalised report and the downloadable PDF.
You can take the assessment as many times as you need. There's no penalty for trying it, restarting, or coming back later.
Having trouble? Email hello@yundra.health