Our hosting environment is not HIPAA compliant. Among other reasons, this is because HIPAA compliance is incompatible with shared and VPS hosting environments. It would also require that we take what amounts to a “hands off” approach to our customers’ servers and data. This would prevent us from providing many of the managed services that we offer today, including our “hands-on” support.
I would suggest that you look for a hosting company that specializes in HIPAA hosting — most “general-purpose” web hosts, including DreamHost, choose to focus on aspects of security other than HIPAA compliance.