Free for a week, then $19 for your first month
Expert Advice

Can You Trust Your AI Tool With Patient Privacy? A Real-World Checklist

Use our real-world HIPPA checklist to vet your AI tool. Ensure your patient data is secure and your practice stays compliant.

Gal Steinberg's profile picture
By  Gal Steinberg Gal Steinberg profile pictureGal SteinbergCo-founder

Gal is a health tech expert focused on integrating cutting‑edge technologies to improve patient care and operational workflows.

 , Co-founder
4 min read Expert Verified How is this page expert verified? At Twofold Health, we take the accuracy of our content seriously. "Expert verified" means our Clinical Advisory Board — practicing clinicians and industry experts — has thoroughly evaluated the article for accuracy, clarity, and relevance. They hold us accountable for delivering trustworthy resources clinicians can rely on. About our Review Board
Reviewed by  Dr. Dora Matis Dr. Dora Matis profile pictureDr. Dora MatisLicensed Medical Doctor

Dr. Dora Matis is a licensed medical doctor currently working as a psychiatrist and psychotherapist at a leading clinic in Germany. With a strong passion for mental health and holistic care, she combines clinical expertise with a compassionate approach to patient well‑being. Beyond her clinical practice, Dr. Matis is actively involved in medical research and has published several articles across various fields of medicine, reflecting her dedication to advancing medical knowledge and improving patient outcomes.
Can You Trust Your AI Tool With Patient Privacy? A Real-World Checklist Hero Image

The integration of AI into healthcare represents a paradigm shift in efficiency and clinical insight. But this powerful tool introduces a critical vulnerability: the security of your patients’ most sensitive data. Entrusting session transcripts to a third‑party platform isn't a decision to be taken lightly. Vague promises of “compliance” are not enough.

How can you, as a practitioner, move beyond marketing buzzwords to verify that an AI tool meets the rigorous technical and legal standards required to protect patient privacy and your practice’s compliance? This real‑world checklist provides the technical questions you need to ask to ensure your trust is well‑placed.

The Foundation of HIPAA-Compliant AI Notes

Before delving into some of the technical specifics of AI data security, two foundational items separate compliant vendors from the rest. Consider these your first and most critical filters.

Checklist Item 1: Is the Vendor Willing to Sign a Business Associate Agreement (BAA)?

  • Why it Matters: This is the legal bedrock of HIPAA compliance. Any vendor that handles, stores, or processes your patients’ Protected Health Information (PHI) is legally considered a Business Associate. A BAA for AI notes is a non-negotiable contract that outlines its specific responsibilities for safeguarding that data and makes it legally liable for protecting it. A vendor's refusal or hesitation to sign a BAA is an immediate and absolute deal-breaker.

Checklist Item 2: Does the Vendor Have Independent, Third-Party Security Attestations?

  • Why it Matters: Anyone can claim their platform is ‘secure’. Independent audits provide the proof.
  • Example: When vetting a vendor, look for a SOC 2 type II report. Unlike a simple checklist or a SOC 2 Type I (which checks controls at a single point in time), a Type II report is an extensive audit that proves the vendor's security controls (like encryption, access management, and risk mitigation) have been consistently operating effectively over a period of time, typically 6-12 months. 

Data Encryption and Anonymization

Once the legal and audit frameworks are confirmed, you must understand how data is protected at a technical level.

Checklist Item 3: How Is My Data Encrypted, Both In Transit And At Rest?

  • Why it Matters: Encryption scrambles data so it's unreadable without a key. It must be applied while data is moving to the vendor's servers and while it is stored there.
  • Example: Demand specifics. Acceptable answers include:
    • In-transit: TLS 1.2 or 1.3. This is the same encryption protocol that secures your online banking, creating a secure tunnel between your browser and server.
    • At-Rest: AES-256 encryption. This is the global standard for encrypting stored data and is considered a military-grade standard. It ensures that even if someone gains unauthorized access to the physical servers, the data files themselves remain unintelligible.

Checklist Item 4: Is Patient Data Anonymized or Pseudonymized Before Processing?

  • Why it Matters: This is a critical privacy-by-design feature. The AI does not need to know the patient's name to analyze the clinical content of a session.
  • Example: A secure system should not process raw, identifiable transcripts. Instead, it should automatically replace direct identifiers (like name, medical record number, date of birth) with a unique random token. This process, known as pseudonymization, drastically limits the exposure and usability of data in the event of a breach.

Operational Safeguards

These operational questions are critical for maintaining the day‑to‑day integrity of your HIPAA-compliant AI notes system.

Checklist Item 5: Is My Data Used to Train the AI model?

  • Why it Matters: Your patient sessions are your intellectual property and contain intensely private information. They must not be used to improve a vendors general-purpose AI model, which could potentially expose sensitive information.
  • What to Listen For: The answer must be an unambiguous ‘No’. Your data should be logically siloed and used solely for processing your notes and generating insights for your practice alone.

Checklist Item 6: Do I Have Full Control Over Data Deletion?

  • Why It Matters: HIPAA grants patients rights over their data, and your practice is responsible for honoring requests to amend or delete records. You cannot be dependent on the vendor’s complicated process or reluctance.
  • Example: You must have a guaranteed, straightforward process in place to permanently delete all traces of a patient's data, including raw transcripts, analyzed outputs, and notes, from the vendor's systems. This is essential for complying with HIPAA’s “Right of Access” and is a core principle of data minimization.

Conclusion

Trust in a clinical AI tool is not given; it is earned through demonstrable, verifiable security practices. This checklist moves you from hoping a vendor is compliant to knowing they are.

Use these questions in your conversation with AI vendors. A trustworthy provider will have clear, confident, and technically specific answers. They will welcome your diligence. Remember, protecting patient privacy with these tools isn't just a box to check for compliance; it is the digital extension of the confidentiality and fundamental trust that form the very foundation of the therapeutic relationship.


References

Alder, S. (2024, January 15). What is SOC 2 in Healthcare? The HIPAA Journal.

Alder, S. (2025). HIPAA Business Associate Agreement - 2025 Update. The HIPAA Journal.

Attiteh, H. A., Müller, A., Wirth, F. N., & Prasser, F. (2025, March). Pseudonymization tools for medical research: a systematic review. BMC Medical Informatics and Decision Making, 128.

Censinet. (2025, July). How Encryption Protects Vendor Data in Healthcare.

Isola, S., & Al‑Khalili, Y. (2023). Protected Health Information - StatPearls - NCBI Bookshelf.

Jain, S. (2025, January). Understanding TLS 1.2 and TLS 1.3.

FAQ

Frequently asked questions

  • Is a signed BAA enough to guarantee my patient data is secure?

    No, a BAA sets the legal expectations, but real security depends on the vendor’s technical safeguards, internal controls, and ongoing compliance practices.

    • Confirm the vendor uses encryption in transit and at rest, plus zero-data-retention or minimal-retention policies.
    • Ask how access is restricted internally (e.g., role-based access, audit logs, breach-response protocols).
    • Verify whether PHI ever trains their models and whether third-party subprocessors also meet HIPAA requirements.
    • Review their security documentation at least annually to ensure controls haven’t changed.

    To understand what full HIPAA‑aligned safeguards look like in practice, explore Twofold's HIPAA compliant AI Notes.

  • What's the practical difference between data anonymization and pseudonymization?

    Anonymization is permanent and irreversible. Pseudonymization replaces identifiers with a reversible token. For AI therapy notes, pseudonymization is more common because it allows the system to link data back to a specific patient's record for your use, while still protecting identity from unauthorized parties.


  • If a vendor says “yes” to all these checklist items, what's the next step?

    The next step is to request their documentation. Ask for a copy of the BAA template, a summary of their SOC 2 report, and their data processing policy. A trustworthy vendor will provide these.


More

Continue reading