Simplify data collection with HIPAA-compliant digital forms

Securely capture patient information with HIPAA-compliant online forms. Phreesia’s HITRUST CSF-certified patient intake platform lets patients fill out forms via mobile, tablet or desktop and stores their responses directly in your EHR.

Closeup of HIPAA compliant form on mobile device

Trusted by 4,000+ healthcare organizations nationwide

The Jackson Clinic
Houston ENT
Chesapeake Urology
Memorial Health logo
ENT and Allergy Associates logo
Einstein Healthcare Network logo
Boston Children's Health Physicians logo
Northside Hospital logo
Peconic Bay Medical Center Northwell Health logo
Grady logo

Key features of Phreesia’s HIPAA-compliant forms

Phreesia takes pride in offering a range of HIPAA-compliant forms for healthcare—including appointment requests, consents and HIPAA-compliant intake forms—that organizations of all sizes rely on. Our forms let you:

Offer online self-scheduling

We let patients easily book an appointment directly from your online form. Better yet, patients can request a visit at their preferred date and time for staff to review and approve. 

Learn more >

Collect consents and e-signatures

Our logic-driven forms capture patients’ digital signatures and send them directly to your PM/EHR. We even offer enterprise forms management for hospitals and other large groups. 

Learn more >

Capture patients’ photo ID

During check-in, we ask patients to enter or update their information, including their demographics, clinical history and health risks, plus copies of their insurance card(s) and photo ID.

Learn more >

Provide support for mobile users

Phreesia lets patients submit HIPAA-compliant web forms from any internet-connected device. Patients can use in-office hardware, like a tablet or kiosk, or use their mobile phone. 

Learn more >

Phreesia also helps you…

Closeup of HIPAA-compliant form on mobile device

Easily create HIPAA-
compliant forms

Our forms are templated based on best-practice expertise learned across thousands of go-lives—and we can customize them as needed! 

Elderly lady using phone to view HIPAA-compliant form

Use conditional form logic

Phreesia uses custom logic to prompt relevant HIPAA-compliant forms based on timing, provider, location, visit type, demographic data and more. 

Nurse using computer to do work

Integrate forms with your EHR

We can support unique data flows into your EHR, HIE, data warehouse or data lake. Our integrations team is skilled in HL7v2, FHIR, proprietary APIs and more. 

Photo showing HIPAA compliance

Keep patients’ data secure

We foster a culture of safeguarding patient data. Our HIPAA-compliant online forms reflect our lasting commitment to privacy and security. 

Collect the patient information you need with Phreesia’s forms

HIPAA-compliant online forms are the most efficient, secure way to collect the pre-visit information you need from patients during intake, including: 

  • Demographics 
  • Consents 
  • Insurance eligibility 
  • Clinical history 
  • And more! 

With digital HIPAA-compliant forms, there’s no need to print or scan paper documents. Your organization can capture patients’ details without pens or clipboards—and send required information directly to your PM or EHR. 

Explore Phreesia’s HIPAA-compliant online forms

HIPAA-compliant intake forms help facilitate every step of the patient journey—appointment scheduling, registration, clinical screenings and more. Here are some examples of HIPAA-compliant forms powered by Phreesia:

  • Scheduling form
  • Demographics form
  • Insurance form
  • Consent form
  • Screening form
  • Survey form

The appointment request form lets patients request an appointment directly from a healthcare organization’s website—anytime, anywhere. 

Appointment Request scheduling form

The demographics form lets patients verify who they are and confirm their information—including their street address, phone number and email. 

Filling out patient demographics intake form

The insurance verification form lets patients confirm or update their health insurance provider(s), as well as their policy number and/or policy ID. 

Filling out insurance information on mobile phone

Consent forms are automatically presented to the right patients at whatever cadence your healthcare organization chooses.

Patient privacy consent form being signed on mobile phone

Clinical screening forms allow patients to self-report information about their health. Phreesia supports a range of screening forms, including the GAD, PHQ-9 (pictured), SDOH questionnaires and more. 

Health screening screen

The survey form allows patients to rate their experience after their visit ends. Satisfied patients are encouraged to leave an online review as well. 

Survey form

Seamlessly integrate online forms with your EHR system

Phreesia collaborates closely with PM and EHR vendors—as well as registration, scheduling, billing and document management systems—to build robust, responsive interfaces that help practices save time and have more meaningful patient encounters. 

Phreesia’s HIPAA-compliant online forms integrate with leading PM/EHR systems, including athenahealth, eMDs, Veradigm and more. 

Female doctor on computer

Success stories

No matter your size, specialty or patient demographic, Phreesia can help your healthcare organization drive outcomes that matter. 

View more success stories >

Book a free demo

Frequently asked questions about HIPAA-compliant forms

What is HIPAA? 

HIPAA stands for the Health Insurance Portability and Accountability Act—a federal law enacted in the United States in 1996.  

HIPAA aims to protect the privacy and security of individuals’ health information. It establishes standards for the electronic exchange, privacy and security of health information, including medical records and other personally identifiable health information.  

HIPAA applies to healthcare providers, health plans, and healthcare clearinghouses, as well as their associates who handle protected health information (PHI). 

What is a HIPAA-compliant form? 

A HIPAA-compliant form is a document or electronic form that adheres to the privacy and security requirements outlined in the Health Insurance Portability and Accountability Act. HIPAA-compliant forms are designed to collect and handle PHI in a way that ensures the data’s confidentiality, integrity and availability.

If the form is used by a business associate—a third-party entity that handles PHI on behalf of a covered entity—then a business associate agreement (BAA) should be in place to ensure the business associate also complies with HIPAA requirements.

Who needs HIPAA-compliant forms? 

The following entities may require HIPAA-compliant forms: 

  • Healthcare providers, including doctors, hospitals, clinics, dentists, psychologists, chiropractors, nursing homes, and other healthcare professionals who collect and maintain PHI. 
  • Health plans, such as health insurance companies, HMOs, Medicare, Medicaid and other entities that provide or pay for healthcare services. 
  • Healthcare clearinghouses, which are entities that process nonstandard health information into standard formats, such as billing services or claims processing companies. 
  • Business associates, or third-party entities that handle PHI on behalf of a covered entity. 

Not all forms used by these entities need to be HIPAA-compliant. Only forms that collect, transmit or store PHI need to adhere to HIPAA requirements. 

Do online healthcare forms need to be HIPAA-compliant? 

Yes. Any forms that collect, transmit or store PHI must comply with HIPAA, including online healthcare forms. 

Before implementing online healthcare forms, organizations must ensure their forms vendor has appropriate safeguards in place to protect the confidentiality, integrity and availability of PHI. 

Request a demo

Let us show you how Phreesia provides the modern, convenient healthcare experience your patients want and your staff expect.

If you are a patient trying to check in or cancel an appointment, please contact your healthcare provider's office directly.

En español >

Phreesia cannot accept any sensitive personal or health information. Please contact your healthcare provider directly.

Have questions about Phreesia? Click here for an FAQ about who we are, what we do and how we support healthcare organizations nationwide.

By submitting this form, you agree to Phreesia’s Privacy Policy