Skip to content
Back to Blog

Is ChatGPT HIPAA Compliant? What Healthcare Practices Need to Know

·Metrovolo HQ

The Short Answer: No

ChatGPT is not HIPAA compliant. Consumer ChatGPT processes data on OpenAI's servers without a Business Associate Agreement covering user input. For healthcare practices, using it with any information that could identify a patient in connection with their health data is a HIPAA violation.

But the answer is more nuanced than a simple no. ChatGPT Enterprise exists, other AI tools are emerging, and your clinical and administrative staff are almost certainly already using AI in some form. Here is what healthcare practices actually need to understand about AI, HIPAA, and what compliance requires in practice.

What HIPAA Actually Requires for AI Tools

Before evaluating any specific AI tool, it helps to understand what HIPAA demands when a healthcare organization uses technology to process patient information.

HIPAA's Privacy Rule governs who can access protected health information and under what circumstances. The Security Rule establishes the technical and administrative safeguards required to protect that information. Both apply to any technology tool that touches PHI — including AI.

Protected health information is broader than most people realize. PHI is not just medical records or diagnoses. It includes any individually identifiable health information — names combined with dates of service, billing records, insurance details, appointment notes, prescription information, even email addresses when associated with health data. If a practice administrator pastes a patient's name and their insurance authorization details into an AI chatbot, that is PHI.

When a healthcare organization uses a third-party tool to process PHI, HIPAA requires a Business Associate Agreement. A BAA is a contract that establishes the vendor's legal obligations for safeguarding patient data. It is not optional. Any entity that processes, stores, or transmits PHI on behalf of a covered entity must sign one.

Beyond the BAA, HIPAA's Security Rule requires specific technical safeguards: encryption of data at rest and in transit, access controls that limit who can view PHI, and audit logs that track every access. It also requires administrative safeguards — written policies, staff training, and ongoing oversight of how PHI is handled across the organization.

These requirements apply whether the technology in question is an electronic health record system, an email platform, or an AI chatbot. If it touches patient data, HIPAA applies.

Why ChatGPT Does Not Meet the Standard

Consumer ChatGPT fails HIPAA's requirements on multiple fronts.

No Business Associate Agreement. OpenAI does not offer a BAA for consumer ChatGPT. Without a BAA, a healthcare organization cannot legally use the tool to process PHI. This alone is disqualifying.

Data is processed on OpenAI's infrastructure. When you type a query into ChatGPT, that data is transmitted to OpenAI's servers for processing. The practice has no control over where that data goes, how it is stored, or who at OpenAI might access it. This fundamentally conflicts with HIPAA's requirement that covered entities maintain control over PHI.

Data may be used for model improvement. OpenAI's consumer terms have historically allowed the use of input data for model training. Even with opt-out settings available on certain account types, the data still transits OpenAI's infrastructure and is processed on their servers. An opt-out toggle is not the same as the data never leaving your environment.

Conversations are stored on OpenAI's servers. Chat histories are retained on OpenAI's infrastructure, where they could be subject to a data breach or compelled disclosure through legal process. A healthcare practice cannot guarantee the security of PHI that exists on a third party's servers.

No meaningful audit trail for the practice. HIPAA requires that covered entities maintain audit logs of access to PHI. When staff use consumer ChatGPT, there is no audit trail within the practice. No record of what was entered, when, or by whom. If a patient or regulator asks whether their data was exposed to a third-party AI system, the practice may not be able to answer.

What About ChatGPT Enterprise?

This is the most common objection, and it deserves a direct answer. ChatGPT Enterprise does offer a BAA, and it includes security improvements over the consumer product — no data used for model training, encryption, access controls, and admin dashboards.

These are meaningful improvements. But they do not eliminate the fundamental concern for healthcare practices.

Client data still travels to and is processed on OpenAI's infrastructure. The practice has limited visibility into how data is handled internally within OpenAI's systems. The BAA itself contains carveouts and liability limitations that may not satisfy a practice's compliance obligations under HIPAA.

The key distinction is this: "enterprise security features" is not the same as "infrastructure you control." Enterprise features add layers of contractual and technical protection on top of someone else's infrastructure. For a healthcare practice that needs to demonstrate to regulators — and to patients — exactly where PHI is processed and who has access to it, this distinction matters.

A practice that adopts ChatGPT Enterprise is trusting OpenAI's security posture, OpenAI's compliance certifications, and OpenAI's terms of service — all of which can change. The practice's compliance position is only as strong as its vendor's current practices and commitments.

For some healthcare organizations, particularly larger systems with dedicated compliance teams that can evaluate and monitor the vendor relationship, ChatGPT Enterprise may be an acceptable approach. But for the 15 to 40 person practices that make up the majority of healthcare — the ones without a full-time compliance officer or a legal team to review BAA carveouts — the simpler and more defensible approach is to keep PHI off third-party infrastructure entirely.

What Healthcare Practices Actually Need

The alternative is private AI deployed on infrastructure the practice controls. This is not a theoretical concept — it is a deployment model that exists today.

In practical terms, this means AI models run on servers within the practice's controlled environment, not on OpenAI's servers. Patient data never leaves the practice's security perimeter. Every AI interaction — every query, every uploaded document, every generated response — is logged in an audit trail the practice owns. And the infrastructure supports BAA execution with clear, comprehensive terms.

This approach satisfies both the technical and administrative safeguard requirements of HIPAA. Encryption at rest and in transit, role-based access controls, comprehensive audit logging, and a signed Business Associate Agreement — all built into the deployment from the ground up.

The capabilities are the same ones your staff are already using consumer AI tools for: clinical documentation, prior authorization letters, medical coding assistance, patient communication drafts, record summarization, and administrative workflow automation. The difference is that all of it happens within an environment designed for regulated healthcare.

The Practical Reality

Healthcare staff are going to use AI regardless of what the practice's policy says. The productivity gains are too significant to ignore.

A clinical note that takes 30 minutes to write can be drafted in five. A prior authorization letter that requires pulling details from multiple records can be assembled in seconds. A billing team that spends hours on coding review can accelerate the process dramatically. These are not theoretical benefits — they are the reason your staff is already using ChatGPT, whether leadership knows it or not.

If this dynamic sounds familiar, you are not alone. The gap between what AI policies say and what actually happens in practice is one of the most common challenges healthcare organizations face right now.

The question for practice leadership is not whether AI gets used. It is whether the practice provides a compliant option or pretends the problem does not exist.

A practice that bans AI and has no enforcement mechanism will have staff using consumer tools on personal devices — with no audit trail, no BAA, and full HIPAA liability. A practice that deploys a private AI tool gives staff a compliant alternative that delivers the same productivity benefits within boundaries the practice controls.

The choice is not between AI and no AI. It is between controlled, compliant AI and uncontrolled, invisible use of tools that violate HIPAA every time someone enters patient information.

Moving Forward

The regulatory landscape around AI in healthcare is evolving, but HIPAA's core requirements have not changed. Any tool that processes PHI must be covered by a BAA, must meet the Security Rule's technical safeguards, and must be subject to the administrative oversight that HIPAA requires. Consumer ChatGPT fails on every count. Enterprise AI products address some of the gaps but introduce dependencies on third-party infrastructure that many practices cannot fully evaluate or monitor.

Private AI deployed on infrastructure the practice controls offers the most straightforward path to compliant AI adoption. Your staff gets the productivity gains they are already chasing. Your practice gets the data security and compliance posture that HIPAA demands.

Learn how Metrovolo deploys HIPAA-compliant private AI for healthcare practices, or book a demo to see how it works for your practice.

Ready to see private AI in action?

Book a Demo