OpenEvidence is now HIPAA compliantHealth care professionals using OpenEvidence can securely upload PHI
CAMBRIDGE, MA, April 25, 2025 – We are announcing that OpenEvidence is now fully HIPAA compliant. Now, U.S. covered entities can securely input protected health information (PHI) in accordance with HIPAA’s privacy and security standards.
U.S. covered entities who choose to input PHI on OpenEvidence agree that such information will be handled in accordance with our Business Associate Agreement (BAA). All OpenEvidence users are responsible for ensuring that their inputs comply with applicable laws, including HIPAA and other privacy regulations.
To protect sensitive information, user conversations on OpenEvidence are private by default. Users have full control over access to their conversations by using the “Share” button, which gives users the ability to:
  • Securely share a conversation with others via email invitation
  • Make a conversation publicly accessible to anyone with the link (for conversations that do not contain PHI)
  • If you have any questions, please reach out to us at hipaa-feedback@openevidence.com.
    ← See all announcements