All is in the title.
I have been looking for a while and couldn't get a clear answer: Something like Google itself stating in its documentation that it's HIPAA compliant.
If not. Why? What is exactly not compliant and is there a way to resolve it? For example, by blocking the google cookie beyond the user creation page.