WCAG 2.1 AA compliance for HHS-funded healthcare.

Most hospitals discover Section 504 web accessibility as a marketing problem first. The public website — service pages, find-a-doctor, online appointment requests, billing portals, patient education PDFs — is the easiest surface to scan and the most-trafficked by patients. That's where compliance starts.

Patient portals (MyChart-style applications) and telehealth surfaces are second-priority but high-stakes. They're frequently the only digital pathway to care for users with disabilities. OctoComply's scanner handles the public-facing pages of patient portals; the authenticated app surfaces require coordination with your portal vendor (Epic, Cerner, Athena), but our compliance documentation is the evidence base your vendor needs to prioritize fixes.

Health systems publish enormous volumes of patient-facing documents — discharge instructions, medication guides, insurance forms, patient rights notices, financial assistance applications, language-access materials, billing statements. Most of these are PDFs. Most of those PDFs are not accessible.

OctoComply's Document Remediation Service treats this like the MPO transportation-plan problem: at scale, automated. We extract content with Azure Document Intelligence, rebuild structure with Claude, and validate with axe-core. The output is a clean HTML version that loads fast on a phone, works with screen readers, and is easier to read for low-literacy and limited-English patients — universal design benefits, not just regulatory checkbox.

HHS Office for Civil Rights publishes its enforcement priorities annually. Digital accessibility moved from a peripheral concern to a focus area after the May 2024 Section 504 final rule. OCR has telegraphed that complaint-driven investigations will be the primary enforcement mechanism — and a single complaint can trigger a comprehensive review of your entire digital footprint.

The pattern from other Section 504 enforcement areas (physical accessibility, language access, effective communication) suggests OCR will rely on Voluntary Compliance Agreements (VCAs) — corrective action plans with monitoring — rather than fund-loss for most cases. But VCAs are expensive: legal time, remediation costs, ongoing reporting, and reputational exposure if the agreement becomes public. The cost of compliance is meaningfully lower than the cost of an investigation.

If your organization is government-owned (public hospitals, county health departments, state-run university medical centers, VA-state-partnership facilities) you're subject to BOTH Title II and Section 504. The technical standard is identical — WCAG 2.1 Level AA — so compliance work doesn't double. But the enforcement and documentation requirements compound: DOJ can investigate under Title II; HHS OCR can investigate under Section 504.

OctoComply's compliance record is designed to satisfy both. The same scan results, the same accommodation request log, the same remediation evidence, the same certificates. Dual-covered entities should think of this as a single compliance program with two regulatory audiences.