Protocol-Compliant Audit Engine 45 C.F.R. §84 · 89 FR 40066
HHS Enforcement Window Active

Your HHS Deadline Was Not Extended.

Healthcare organizations receiving federal funding are required to meet WCAG 2.1 AA accessibility standards under Section 504 and Section 1557.

The DOJ extension to 2027 applies to government entities only.
Healthcare providers remain on the May 11, 2026 timeline.

May 11, 2026 — Active Deadline
--Days
--Hrs
--Min
--Sec

IDR Protocol Engine · WCAG 2.1 AA · Section 504 / 1557 · Real-Time Audit

HHS / Federal Health Funding
Employee Count

The same automated accessibility scans used in enforcement proceedings are run here. No public record is created unless you activate.

IDR

Initializing HHS protocol…

Image Alt Text
Form Labels
Keyboard Navigation
Heading Structure
ARIA & Links
Scan Complete
Out of 100

Audit across 5 WCAG 2.1 AA protocol categories

0Critical
0Total Issues
Scan Time
1Page Scanned

This check applies the WCAG 2.1 AA standard required under federal HHS enforcement. Your score reflects the current accessibility posture of this organization — visible to any audit system running today.

Category Breakdown

Scan Receipt

Scan Receipt (Preview)
Immutable record · SHA-256 signed · Timestamp verified
Not Activated
SHA-256 Integrity Hash
Any change to this receipt — score, issues, domain, or timestamp — produces a different hash. Tamper-evident by design.

This scan exists — but there is no documented record of it. Without activation, there is no proof this organization has taken action under HHS requirements. Create your HHS Readiness Record for $497 — delivered within 48 hours.

"Organizations receiving HHS funding may be required to meet WCAG 2.1 Level AA accessibility standards under federal law (45 C.F.R. Part 84 / 89 FR 40066). This scan reflects the current accessibility posture of the identified domain."

HHS Good Faith Effort Record — Select Your Audit Scope

Create Your Compliance Record

The first documented proof your organization has taken action under HHS accessibility requirements. Choose the scope that matches your compliance exposure — both options issue a formal Good Faith Effort Record, sealed and registered.

Step 1 — Choose Your Audit Scope
Good Faith Effort Record
Primary Web Presence · WCAG 2.1 AA · Section 504 / 1557
$497
Delivered within 48 hours
Surfaces audited: Your primary homepage — the main public-facing URL submitted for evaluation. A multi-page crawl of up to 15 internal pages is conducted as part of the paid audit and documented in your Good Faith Effort Record.
Automated WCAG 2.1 AA protocol scan across five categories — image alt text, form labels, keyboard navigation, heading structure, ARIA & links
CPACC human validation — Primary Surface: Keyboard-only navigation test (no mouse), screen reader pass with NVDA and VoiceOver across headings and landmarks, form completion and error-handling test, visual stress test at 200% zoom, focus indicator verification. Findings documented with annotated screenshots.
CPACC reviewer signs certification page with full name and credential number — human review is the legal attestation that elevates this above an automated scan report
SHA-256 timestamped Good Faith Effort Record — cryptographically sealed, publicly registered in the IDR HHS Compliance Registry
IDR Registry entry — "Manual Verified" status · Screenshot evidence package · Defense positioning summary
Not included: Online scheduling flows, patient intake forms, patient portal entry, mobile apps, or third-party embedded tools
Recommended if your organization is beginning its compliance documentation, your digital presence is primarily informational, or you do not currently offer online scheduling or patient portal access.
Select Primary Web Presence — $497
Good Faith Effort Record
Full Patient Access · Primary Site + Transaction Layer
Recommended
$1,197
Delivered within 5 business days
Surfaces audited: Primary website and patient-facing transaction layer — online scheduling flow, patient intake forms, patient portal login and landing experience
Automated WCAG 2.1 AA protocol scan across all five categories on the primary web presence
CPACC human validation — Primary Surface: Full keyboard-only navigation, screen reader pass with NVDA and VoiceOver, form completion and error-handling, 200% zoom stress test, focus indicator verification
CPACC human validation — Transaction Layer: Live walk-through of the complete appointment booking flow end to end, patient intake form completion test with screen reader and keyboard only, patient portal login and session experience — keyboard navigation, timeout warnings, error message accessibility. Each step documented with annotated evidence.
CPACC reviewer signs a dual-surface certification statement — credential number on record, both surfaces individually attested
Transaction layer is where most Section 1557 complaints originate — access barriers here directly prevent patients from receiving care. This surface is what enforcement investigators examine first.
Single comprehensive Good Faith Effort Record — one SHA-256 sealed document, one IDR Registry entry covering both surfaces
Not included: Patient portal interior (medical records, provider messaging), mobile applications, third-party embedded tools — covered under the Full Digital Footprint enterprise engagement
Recommended for any organization with an active online scheduling system, patient intake process, or patient portal — the surfaces where most OCR enforcement actions originate.
Select Full Patient Access — $1,197
What is explicitly out of scope for both products: Patient portal interior (test results, medical records, provider messaging), mobile applications, third-party embedded tools (insurance verification portals, payment systems, chatbots), and linked PDF documents. These surfaces are covered under the Full Digital Footprint enterprise engagement — available by inquiry for hospital systems and large clinic networks.

Both products issue a Good Faith Effort Record that explicitly states every surface audited and every surface excluded. No ambiguity. No surprises. The document you receive reflects exactly the scope you selected.
Enterprise · Full Digital Footprint Audit

Hospital systems, large clinic networks, and federally qualified health centers requiring complete coverage — patient portal interior, mobile app, all embedded third-party tools, and PDF document accessibility — contact us for a custom scoped engagement. hello@idrshield.com

Step 2 — Your Organization Details
✓ Details saved — proceeding to payment
Select a scope above to continue
Choose your audit scope above

Ongoing Compliance Monitoring

Your HHS obligation doesn't end on May 12.

$49/mo
After audit activation

A static audit can be challenged. A continuously dated record is far harder to dispute.

Weekly rescans keep your registry record active and continuously dated — the difference between a one-time snapshot and a living compliance record that compounds in strength every month. Includes your live HHS Accessibility Monitored badge.
Add Ongoing Monitoring — $49/mo →

Available after HHS Readiness Audit activation

INSTITUTE OF DIGITAL REMEDIATION HHS · SECTION 504 IDR ON RECORD

⚠ Not Active On Your Site

HHS Accessibility Monitored

This badge is not active. Activate to display the signal that this organization maintains a documented, continuously updated compliance record under HHS Section 504 and Section 1557.

HHS · Section 504 / 1557 · Public Registry

idrshield.com/hhs-verify/yourorganization →