Tag: WordPress

HIPAA-Ready WordPress: Hosting Sensitive Operations on Private Infrastructure

Healthcare organizations increasingly recognize WordPress as a viable platform for managing sensitive operations—patient portals, appointment systems, billing interfaces, and internal documentation. However, deploying WordPress in a HIPAA-compliant manner requires far more than installing the platform on shared hosting and applying standard security plugins. This article walks healthcare IT managers and practice administrators through the architectural, infrastructure, and operational requirements for hosting WordPress on private infrastructure while maintaining full HIPAA compliance.

Why Standard WordPress Hosting Fails HIPAA

The majority of WordPress hosting solutions—shared hosting, budget-tier cloud platforms, and generic managed WordPress services—contain fundamental structural incompatibilities with HIPAA requirements. Understanding these gaps is essential for recognizing why compliance demands a different approach.

Shared hosting environments violate the foundational principle of workload isolation. When your WordPress installation runs on servers shared with hundreds or thousands of other websites, you lose control over the security posture of neighboring applications. A compromised competitor’s website on the same server creates a lateral attack vector into your healthcare data. HIPAA requires you to maintain exclusive control over the technical safeguards protecting protected health information (PHI); shared hosting architecture makes this impossible.

Backup and storage encryption present another critical failure point. Standard WordPress hosting often stores backups on the hosting provider’s shared infrastructure without encryption at rest. Even encrypted backups are worthless if the encryption keys are accessible to third parties or stored alongside the encrypted data. HIPAA’s Security Rule explicitly requires encryption for electronic PHI at rest. Providers who cannot contractually guarantee exclusive key management and encrypted storage fail this requirement outright.

The Business Associate Agreement (BAA) chain represents the legal and operational backbone of HIPAA compliance. Standard hosting providers typically refuse to execute BAAs because they don’t market themselves to the healthcare industry. Without a signed BAA with your hosting provider, any PHI stored on their infrastructure creates regulatory and legal liability for your organization. This isn’t a technical workaround—it’s a hard compliance boundary.

The Required Infrastructure Stack

HIPAA-compliant WordPress demands a purpose-built infrastructure stack. This architecture prioritizes isolation, encryption, auditability, and contractual accountability.

Dedicated Virtual Machine Layer

Begin with a dedicated virtual machine or dedicated server provisioned exclusively for your WordPress installation. Avoid multi-tenant environments. Select a provider willing to execute a BAA and offering infrastructure positioned for healthcare workloads. The VM should receive a fixed IP address, dedicated vCPU allocation (not shared cores), and guaranteed memory assignment. Containerized environments, while operationally convenient, introduce complexity in demonstrating exclusive control and audit separation; virtual machines provide clearer compliance boundaries.

Configure the hypervisor to disable any inter-VM communication mechanisms. All network traffic must flow through intentional, monitored interfaces—never through backend hypervisor bridges or implicit connectivity between customers.

Encrypted Storage and Disk Configuration

All storage must employ encryption at rest using strong algorithms (AES-256). Implement full-disk encryption at the hypervisor level, not just application-level encryption. This prevents unauthorized access even if the physical hardware is compromised. Store encryption keys in a hardware security module (HSM) or dedicated key management service separate from the VM and backup infrastructure. Your organization must maintain exclusive control over key material or be able to prove the provider cannot access keys despite physical possession of hardware.

Configure separate encrypted volumes for WordPress application files, the MySQL database, and backup staging areas. This segmentation allows granular key rotation and reduces the surface area if one key is compromised.

Private Network and Access Controls

Deploy your WordPress infrastructure within a private network segment (VPC or equivalent) with no direct internet exposure for administrative interfaces. All administrative access—SSH, database connections, backups—must traverse encrypted VPN tunnels or private network links. Web traffic to end users follows a different path through a Web Application Firewall (WAF) and load balancer positioned at the network edge.

Implement strict network segmentation between the WordPress web tier, database tier, and backup systems. Use security groups or firewall rules to allow only necessary ports. Block all traffic between tiers that isn’t explicitly required.

Web Application Firewall and DDoS Protection

Position a WAF between your WordPress installation and the public internet. The WAF should provide SQL injection prevention, cross-site scripting (XSS) filtering, cross-site request forgery (CSRF) protection, and rate limiting. Configure the WAF to log all traffic—both allowed and blocked requests—for audit purposes. HIPAA’s audit logging requirements demand that you maintain records of all attempts to access or modify systems handling PHI.

Comprehensive Audit Logging

Configure your VM, database, web server, and WAF to generate audit logs that capture: all authentication attempts (successful and failed), all modifications to PHI, all administrative actions, and all security-relevant events. These logs must be written to immutable storage (append-only, versioned, or write-protected) and replicated to a separate logging infrastructure outside the primary production environment. A compromised WordPress installation must not be able to erase its own audit trail.

WordPress Hardening and Configuration

Once infrastructure is in place, WordPress itself requires hardening beyond standard security practices.

Disable XML-RPC entirely. This legacy protocol is rarely used by modern WordPress installations and creates unnecessary attack surface. Disable it at both the WordPress level (via plugin or wp-config.php configuration) and at the WAF level (block requests to /xmlrpc.php).

Enforce two-factor authentication (2FA) for all user accounts, especially those with administrative privileges. Use a standards-based 2FA method: time-based one-time passwords (TOTP via authenticator apps) or hardware security keys. SMS-based 2FA is acceptable but less robust. Prohibit user enumeration by disabling REST API access to the /wp-json/wp/v2/users endpoint unless absolutely required for public functionality.

Implement role-based access control (RBAC) at the WordPress level. Define roles with minimal necessary privileges: Editor, Author, Contributor, and Subscriber. Avoid granting Administrator roles unless absolutely required. Limit database access to specific user accounts with granular permissions—many WordPress plugins request more permissions than they actually need. Use a read-only database user for functions that only query data.

Configure WordPress to enforce strong password policies: minimum 16 characters, complexity requirements (uppercase, lowercase, numbers, symbols), and password history to prevent reuse. Disable user account creation through standard WordPress registration unless it’s a public-facing patient portal; use administrative provisioning instead.

Remove or disable default WordPress themes and plugins you don’t use. Keep WordPress core, all active themes, and all plugins updated to the latest stable versions. Subscribe to security update notifications and apply patches within 24-48 hours of release.

Handling PHI Through Custom Post Types and Encryption

Healthcare organizations often need custom data structures to manage PHI. Rather than using standard WordPress posts and pages—which offer limited control and audit visibility—implement custom post types with encryption at the application level.

Create custom post types for specific PHI categories: patient records, appointment histories, clinical notes, billing information. Associate each post type with metadata fields that store PHI. Implement application-level encryption for these fields using strong algorithms (AES-256 in GCM mode). The WordPress database stores encrypted ciphertext; decryption occurs only when an authorized user accesses the data, with the decryption operation logged for audit purposes.

Use a field-level encryption library compatible with PHP and WordPress. Encrypt sensitive fields at the application layer before they reach the database. This approach provides defense-in-depth: even if an attacker gains database access, they encounter only encrypted data.

Implement access controls at the post-type level. A patient’s record should only be accessible to authorized clinical or administrative staff. Use WordPress hooks and custom capability checks to enforce access decisions in code, logging every access attempt.

Backup and Disaster Recovery Requirements

HIPAA mandates comprehensive backup and disaster recovery capabilities. Standard WordPress backup plugins often fall short because they fail to address encryption, geographical redundancy, and testing requirements.

Implement automated backups of your entire WordPress environment—files, database, and configuration—at least daily, with hourly snapshots during business hours. All backups must be encrypted at rest using keys you control exclusively. Store backups in geographically distributed locations (at minimum, a different data center; ideally, a different region or provider).

Backup encryption keys must be stored separately from the backups themselves. If your hosting provider manages encryption, ensure contractually that they cannot access backup data and that only your organization can initiate backup restoration.

Test disaster recovery procedures quarterly. Perform a full restoration from backups to an isolated environment, verify data integrity, and document the process. These tests demonstrate to auditors and regulators that your backup strategy actually works when required.

Establish a documented retention policy for backups aligned with your record retention requirements. HIPAA doesn’t mandate a specific retention period, but healthcare organizations typically retain backups for 6 years or longer. Implement automated deletion of backups older than your retention window to limit exposure.

The BAA Chain and Third-Party Risk Management

The Business Associate Agreement chain extends beyond your hosting provider. Every component of your WordPress ecosystem that touches PHI requires a BAA or contractual commitment to HIPAA compliance.

Your hosting provider is the primary BAA requirement. Many providers position themselves for healthcare but refuse full BAA commitment; clarify this in writing before committing. Request to review their Security Rule assessment and breach notification procedures.

WordPress plugins present a significant risk vector. If a plugin stores, processes, or transmits PHI, its developer must be willing to execute a BAA or provide contractual guarantees of HIPAA compliance. Many popular plugins—even enterprise-grade ones—are developed by small teams unwilling to take on BAA liability. Evaluate plugins conservatively: avoid plugins requiring access to your complete WordPress environment or database. Prefer plugins with minimal scope and clear documentation of data handling practices.

Third-party integrations (payment processors, email services, analytics platforms, appointment scheduling systems) each require BAA coverage. If you use an external appointment system integrated with WordPress, that system’s vendor must be a BAA-bound Business Associate. Cloud-based payment processors handling patient payment information require BAA agreements. Email services used for patient communication need BAAs or privacy commitments. Map your entire technology stack and identify every component handling or potentially handling PHI.

Maintain a documented inventory of all BAAs with vendors, including signatures, effective dates, and scope of services. Review and update BAAs annually and whenever your usage of a service changes materially.

Compliance Verification and Audit Readiness

HIPAA compliance is not a one-time deployment; it’s an ongoing operational commitment. Establish procedures to maintain and verify compliance continuously.

Conduct annual security risk assessments evaluating your WordPress environment, infrastructure, and third-party dependencies. Document identified risks and remediation plans. Use these assessments to validate that your architecture and controls continue meeting HIPAA requirements.

Maintain comprehensive documentation of your security controls, access procedures, backup and recovery protocols, and breach response procedures. This documentation becomes critical during regulatory audits or breach investigations. Auditors expect detailed, current documentation; vague or outdated policies suggest non-compliance.

Prepare for breach response. Document your breach notification procedures, including how you’ll identify affected individuals, notify the Department of Health and Human Services (HHS), and provide affected individuals with notice. Establish a timeline for breach discovery and notification (60 days is the regulatory standard). Test your breach response procedures annually.

Conclusion

HIPAA-compliant WordPress deployment is achievable, but it requires intentional infrastructure design, careful vendor selection, comprehensive WordPress hardening, and ongoing operational diligence. The investment—both in infrastructure and in compliance processes—is substantial. However, healthcare organizations that deploy WordPress using shared hosting, inadequate encryption, or vendors unwilling to execute BAAs face significant regulatory and legal risk. By building on private, dedicated infrastructure, implementing defense-in-depth security controls, and maintaining contractual accountability throughout your technology stack, you create a platform where sensitive healthcare operations can run securely and compliantly.

{
“@context”: “https://schema.org”,
“@type”: “Article”,
“headline”: “HIPAA-Ready WordPress: Hosting Sensitive Operations on Private Infrastructure”,
“description”: “Healthcare organizations increasingly recognize WordPress as a viable platform for managing sensitive operations—patient portals, appointment systems, billing i”,
“datePublished”: “2026-04-03”,
“dateModified”: “2026-04-03”,
“author”: {
“@type”: “Person”,
“name”: “Will Tygart”,
“url”: “https://tygartmedia.com/about”
},
“publisher”: {
“@type”: “Organization”,
“name”: “Tygart Media”,
“url”: “https://tygartmedia.com”,
“logo”: {
“@type”: “ImageObject”,
“url”: “https://tygartmedia.com/wp-content/uploads/tygart-media-logo.png”
}
},
“mainEntityOfPage”: {
“@type”: “WebPage”,
“@id”: “https://tygartmedia.com/hipaa-ready-wordpress-private-infrastructure/”
}
}

You Don’t Need Salesforce: Building a Custom CRM Inside WordPress

Your team just crossed 15 people. Suddenly, managing client relationships feels chaotic—spreadsheets are everywhere, emails disappear into inboxes, and nobody knows who last talked to which prospect. So you do what most growing businesses do: you sign up for a CRM platform, pay $150 per user per month, and hope it solves the problem.

Here’s the uncomfortable truth: you’re probably overpaying by an order of magnitude.

Most small-to-mid-sized businesses don’t need a $2,000-per-month enterprise CRM. They need a system that tracks clients, manages deals, stores notes, and sends reminders. These aren’t exotic features—they’re table stakes for any customer relationship tool. And WordPress, the platform you might already be using to run your website, can deliver all of this natively.

The catch? You have to build it yourself. But that’s not actually a catch. It’s a superpower.

The Salesforce Tax

Let’s do the math. A 15-person sales team using a major CRM platform costs roughly $2,250 per month. Over three years, that’s $81,000. Add in implementation time, training, data migration headaches, and custom integrations that cost extra, and you’re easily north of $100,000.

Now consider what you actually use: you track people (contacts), track opportunities (deals), take notes, and look at a pipeline view. That’s it. Everything else is theater.

A custom WordPress CRM handles those four things for $0 per user per month. Not $0 in the sense of “we use the free tier”—$0 because you already own WordPress hosting. Your CRM runs on the same server, in the same database, behind the same login system as your website.

The platform becomes a second brain for your business, not a rented tool you hope doesn’t get deprecated.

How Custom Post Types Create Your CRM Foundation

WordPress custom post types are the building block of a homegrown CRM. By default, WordPress understands “posts” and “pages.” But you can teach it to understand “clients,” “deals,” and “activities.”

Here’s the architecture:

• Clients (custom post type): Each client is a post. Their name is the post title. Their company, phone number, email, and industry are stored as custom fields.
• Deals (custom post type): Each opportunity or deal is a post linked to a client. The deal size, expected close date, and probability are custom fields.
• Activities (custom post type): Calls, emails, meetings. Each activity is linked to a client and a deal, with a timestamp and detailed notes.
• Stages (taxonomy): You create a taxonomy called “deal_stage” with values like “Prospect,” “Qualified,” “Proposal,” “Negotiation,” “Closed Won.” This is WordPress taxonomy, not a rigid field.

You immediately get WordPress’s native functionality: revision history (every change to a client record is logged), publish status (you can draft deals before they’re official), and user roles (your admin sees everything; your sales team sees only their own deals).

Traditional CRMs charge extra for audit trails and permission controls. WordPress gives them to you free.

Custom Fields Store the Details That Matter

WordPress custom fields (post meta) store the precise data your business needs. Using a plugin like ACF (Advanced Custom Fields) or even the native WordPress Meta Boxes API, you define exactly what data matters to you.

For a client post type, you might add:

• Company name
• Primary contact (name, title, email, phone)
• Industry
• Company size
• Annual revenue (if relevant)
• Last contact date
• Lifetime value
• Notes

For a deal post type:

• Deal size
• Expected close date
• Probability
• Decision maker contact
• Next step
• Internal notes

You own this schema. You control what you track. Unlike a major CRM, which forces you into their data model, WordPress bends to your workflow, not the reverse.

Taxonomies Build Smart Views and Filters

Taxonomies in WordPress are like categories. You use them for grouping and filtering. In a custom CRM, taxonomies solve the pipeline problem—one of the hardest things to get right.

Create a taxonomy called “deal_stage” and define values:

• Prospect (first conversation)
• Qualified (budget confirmed, problem validated)
• Proposal (formal proposal sent)
• Negotiation (terms discussed)
• Closed Won
• Closed Lost

Each deal is assigned a stage. Now you can filter all deals in “Proposal” stage, see total pipeline value, and generate forecasts. You can also create additional taxonomies for deal source (“Referral,” “Inbound,” “Cold Outreach”) or client industry (“SaaS,” “Agency,” “Nonprofit”), giving you unlimited dimensions to slice and analyze your business.

This is taxonomy-driven, not field-driven, which means stages are flexible and you can add new ones without schema migrations.

REST API Powers Real CRM Views

WordPress REST API exposes your custom post types as JSON endpoints. This means you can build a custom dashboard, mobile app, or reporting layer that queries your CRM data without touching the WordPress admin interface.

A simple API call like GET /wp-json/wp/v2/deals?deal_stage=proposal&orderby=deal_size&order=desc returns every proposal-stage deal sorted by size—your weighted pipeline in one request. You can build a React dashboard that shows:

• Total pipeline by stage
• Deals due to close this week
• Activities logged by team member
• Win rate by source
• Days-to-close metrics

None of this requires Salesforce. It’s native WordPress querying.

AI Transforms Your CRM from Manual to Intelligent

Here’s where a custom CRM becomes genuinely superior: you can integrate AI at every level without vendor lock-in.

Auto-populate client records: When a new contact is created, call an AI API to enrich the data. Ask for company industry, annual revenue, likely budget based on company size, and suggested next steps. Your sales team starts with a complete profile, not a blank form.

Lead scoring: Run a daily cron job that scores all open deals using an AI model. Analyze engagement (email opens, website visits, proposal views), client attributes (company size, revenue), and historical win rates. Surface high-probability deals to your sales team in a dashboard. No Salesforce lead scoring; you own the algorithm.

Smart follow-up reminders: An AI system can analyze the last contact date and deal stage, then suggest when and how to follow up. “This proposal was sent five days ago—send a check-in email today.” Automatically create activity records with suggested messages. Your team stays on top of deals without manual task creation.

Conversation summaries: When a salesperson logs a call or meeting in the activities section, send the notes to an AI summarizer. Extract action items, next steps, and sentiment. Store structured data alongside raw notes. Suddenly, your CRM is actually capturing intelligence, not just logging events.

All of this runs on your server, uses your API keys to your preferred AI provider, and stores data in your database. You’re not renting intelligence—you’re building it.

One Platform, One Login, One Database

Here’s the underrated advantage of a WordPress CRM: convergence.

Your website runs on WordPress. Your blog runs on WordPress. Your team portal or help center might run on WordPress. Now your CRM runs on WordPress too. Your team logs in once. Sales reps can see recent blog posts from clients, pull website analytics for accounts, and coordinate marketing and sales activities on the same platform.

A fragmented tech stack—separate CRM, website, help desk, blog, analytics—creates silos. Data doesn’t flow. Context is lost. A salesperson can’t see that a prospect just downloaded a white paper without toggling between three systems.

WordPress as a unified platform eliminates that friction. Your CRM isn’t an island; it’s part of your operational infrastructure.

Data Ownership and Long-Term Economics

Here’s the existential difference: with a custom WordPress CRM, you own your data.

If Salesforce changes pricing, removes a feature you depend on, gets acquired, or shuts down, your data walks with you. If you need to leave, you export everything—client records, deal history, activity logs—in a standard format and import to another system. No vendor lock-in. No holding your data hostage.

Over 10 years, a 15-person team using a major CRM will pay roughly $540,000. Over the same period, a WordPress CRM costs your hosting bill plus developer time for maintenance and updates. Even if you hire a developer for 20 hours per quarter at $150/hour, you’re spending $12,000 per year—$120,000 over 10 years. You’ve saved $420,000.

That’s not just an economic win. It’s strategic autonomy.

Building Thoughtfully

A custom WordPress CRM isn’t “free.” You need either a developer on staff or a budget to build it right. But “right” doesn’t mean complicated. Start with clients and deals. Get your team using it for two weeks. Then add activities, follow-up reminders, and reporting. Iterate.

Use plugins where they make sense—ACF for custom fields, maybe a charting plugin for dashboards. Write custom code for workflow automation and AI integrations. Keep it simple. A 500-line codebase beats a 50,000-line SaaS platform if it does exactly what you need.

The key is this: You are no longer a customer begging for features. You are a builder, in control of your tooling.

The CRM You Actually Want

Most businesses don’t want a CRM. They want to track relationships and close deals faster. A major CRM platform forces you to adopt their definition of a relationship, their sales process, and their data model. You adapt your business to the software.

A custom WordPress CRM works the other way. Your software adapts to your business.

You don’t pay $150 per user per month for features you’ll never use. You don’t wait for vendor product teams to ship functionality you need. You don’t lose sleep over security, pricing changes, or acquisition by a hostile company.

You own it. It’s yours. And it costs you nearly nothing to run.

If you’re ready to take back control of your customer relationships—and your budget—it’s time to stop renting and start building. A bespoke WordPress CRM isn’t just cheaper than Salesforce. It’s smarter.

{
“@context”: “https://schema.org”,
“@type”: “Article”,
“headline”: “You Dont Need Salesforce: Building a Custom CRM Inside WordPress”,
“description”: “Your team just crossed 15 people. Suddenly, managing client relationships feels chaotic—spreadsheets are everywhere, emails disappear into inboxes, and nobody k”,
“datePublished”: “2026-04-03”,
“dateModified”: “2026-04-03”,
“author”: {
“@type”: “Person”,
“name”: “Will Tygart”,
“url”: “https://tygartmedia.com/about”
},
“publisher”: {
“@type”: “Organization”,
“name”: “Tygart Media”,
“url”: “https://tygartmedia.com”,
“logo”: {
“@type”: “ImageObject”,
“url”: “https://tygartmedia.com/wp-content/uploads/tygart-media-logo.png”
}
},
“mainEntityOfPage”: {
“@type”: “WebPage”,
“@id”: “https://tygartmedia.com/building-custom-crm-inside-wordpress/”
}
}

Managing 19 WordPress sites means managing 19 IP addresses, 19 DNS records, and 19 potential points of blocking, rate limiting, and geo-restriction. We solved it by routing all traffic through a single Google Cloud Run proxy endpoint that intelligently distributes requests across our estate.

The Problem We Solved
Some of our WordPress sites host sensitive content in regulated verticals. Others are hitting API rate limits from data providers. A few are in restrictive geographic regions. Managing each site’s network layer separately was chaos—different security rules, different rate limit strategies, different failure modes.

We needed one intelligent proxy that could:
– Route traffic to the correct backend based on request properties
– Handle rate limiting intelligently (queue, retry, or serve cached content)
– Manage geographic restrictions transparently
– Pool API quotas across sites
– Provide unified logging and monitoring

Architecture: The Single Endpoint Pattern
We run a Node.js Cloud Run service on a single stable IP. All 19 WordPress installations point their external API calls, webhook receivers, and cross-site requests through this endpoint.

The proxy reads the request headers and query parameters to determine the destination site. Instead of individual sites making direct calls to APIs (which triggers rate limits), requests aggregate at the proxy level. We batch and deduplicate before sending to the actual API.

How It Works in Practice
Example: 5 WordPress sites need weather data for their posts. Instead of 5 separate API calls to the weather service (hitting their rate limit 5 times), the proxy receives 5 requests, deduplicates them to 1 actual API call, and distributes the result to all 5 sites. We’re using 1/5th of our quota.

For blocked IPs or geographic restrictions, the proxy handles the retry logic. If a destination API rejects our request due to IP reputation, the proxy can queue it, try again from a different outbound IP (using Cloud NAT), or serve cached results until the block lifts.

Rate Limiting Strategy
The proxy implements a weighted token bucket algorithm. High-priority sites (revenue-generating clients) get higher quotas. Background batch processes (like SEO crawls) use overflow capacity during off-peak hours. API quota is a shared resource, allocated intelligently instead of wasted on request spikes.

Logging and Observability
Every request hits Cloud Logging. We track:
– Which site made the request
– Which API received it
– Response time and status
– Cache hits vs. misses
– Rate limit decisions

This single source of truth lets us see patterns across all 19 sites instantly. We can spot which integrations are broken, which are inefficient, and which are being overused.

The Implementation Cost
Cloud Run runs on a per-request billing model. Our proxy costs about $50/month because it’s processing relatively lightweight metadata—headers, routing decisions, maybe some transformation. The infrastructure is invisible to the cost model.

Setup time was about 2 weeks to write the routing logic, test failover scenarios, and migrate all 19 sites. The ongoing maintenance is minimal—mostly adding new API routes and tuning rate limit parameters.

Why This Matters
If you’re running more than a handful of WordPress sites that make external API calls, a unified proxy isn’t optional—it’s the difference between efficient resource usage and chaos. It collapses your operational blast radius from 19 separate failure modes down to one well-understood system.

Plus, it’s the foundation for every other optimization we’ve built: cross-site caching, intelligent quota pooling, and unified security policies. One endpoint, one place to think about performance and reliability.

{
“@context”: “https://schema.org”,
“@type”: “Article”,
“headline”: “The WP Proxy Pattern: How We Route 19 WordPress Sites Through One Cloud Run Endpoint”,
“description”: “How we route all API traffic from 19 WordPress sites through a single Cloud Run proxy—collapsing complexity and eliminating rate limit chaos.”,
“datePublished”: “2026-03-30”,
“dateModified”: “2026-04-03”,
“author”: {
“@type”: “Person”,
“name”: “Will Tygart”,
“url”: “https://tygartmedia.com/about”
},
“publisher”: {
“@type”: “Organization”,
“name”: “Tygart Media”,
“url”: “https://tygartmedia.com”,
“logo”: {
“@type”: “ImageObject”,
“url”: “https://tygartmedia.com/wp-content/uploads/tygart-media-logo.png”
}
},
“mainEntityOfPage”: {
“@type”: “WebPage”,
“@id”: “https://tygartmedia.com/the-wp-proxy-pattern-how-we-route-19-wordpress-sites-through-one-cloud-run-endpoint/”
}
}