Pioneering Patient Access to Data

Patient Access enables patients to retrieve medical records electronically from most major EMRs and share results with trusted organizations.

Value

Consumer-mediated data collection

Health Gorilla allows consumers to collect their own electronic health records in real-time, and lets developers embed this workflow in their products.

Empower your patients

Provide tools for patients to retrieve, control, and store their medical records.

Reduce your costs

Eliminate the hassle of manually retrieving records over fax, or developing complex integrations.

Derive insights

Collect consent and derive clinical insights from patients who choose to share their medical records.

Capabilities

Retrieve data seamlessly

Consumers can collect their records through our mobile app or directly within your product.

Validate patient identity

Securely validate the identity of each patient using IAL-2 compliant methods, which involves entering basic demographic information, scanning a driver’s license, and taking a selfie.

Retrieve medical records

Instantly retrieve all electronic health records that exist among care sites and EMRs in our data network, which currently spans over 17,000 clinics.

Authorize sharing

Share electronic health records with providers or trusted organizations via our mobile app or API-integrated product.

Use-cases

Powering use-cases across the healthcare industry

Patient Access provides a way for organizations to collect clinical data without asking patients to recall their patient portal credentials.

Life Insurance

Power risk assessment and underwriting to easily aggregate structured medical records electronically.

Clinical trials

Analyze real world evidence and validate patient reported outcomes by collecting structured medical records directly from participating patients.

Digital Health

Retrieve data directly from patients to derive insights, or power your personal health record app with automated data retrieval functionality.

Designed for developers

Integrate Patient Access natively into your application with our FHIR-based API and production-ready integrations.

  • Software + API
  • Sample code and examples
  • Sandbox for development and testing
  • Versioned API changes
  • Workflow diagrams
  • Metadata support
View API Docs
cURL
	
    const fetch = require('node-fetch');

    let url = 'https://sandbox.healthgorilla.com/fhir/Patient';

    let options = {
      method: 'POST',
      headers: {'Content-Type': 'application/json'},
      body: '{"resourceType":"Patient","name":{"use":"usual"}}'
    };

    fetch(url, options)
      .then(res => res.json())
      .then(json => console.log(json))
      .catch(err => console.error('error:' + err));
   
	
    require 'uri'
    require 'net/http'
    require 'openssl'

    url = URI("https://sandbox.healthgorilla.com/fhir/Patient")

    http = Net::HTTP.new(url.host, url.port)
    http.use_ssl = true
    http.verify_mode = OpenSSL::SSL::VERIFY_NONE

    request = Net::HTTP::Post.new(url)
    request["Content-Type"] = 'application/json'
    request.body = "{\"resourceType\":\"Patient\",\"name\":{\"use\":\"usual\"}}"

    response = http.request(request)
    puts response.read_body
   
	
    fetch("https://sandbox.healthgorilla.com/fhir/Patient", {
      "method": "POST",
      "headers": {
        "Content-Type": "application/json"
      },
      "body": "{\"resourceType\":\"Patient\",\"name\":{\"use\":\"usual\"}}"
    })
    .then(response => {
      console.log(response);
    })
    .catch(err => {
      console.error(err);
    });
   
	
    import requests

    url = "https://sandbox.healthgorilla.com/fhir/Patient"

    payload = {
        "resourceType": "Patient",
        "name": {"use": "usual"}
    }
    headers = {"Content-Type": "application/json"}

    response = requests.request("POST", url, json=payload, headers=headers)

    print(response.text)
   
Security

Secure and trusted

Health Gorilla’s platform meets the highest certification standards for data security, privacy, and integrity, keeping your data safe.

Certified

We’re SOC-2 certified, HIPAA-certified, and independently audited on a routine basis.

Compliant

Our platform is compliant with FHIR STU-3 & IHE profiles, and we’re a trusted partner to most major EMRs.

Vetted

We’ve gone through rigorous security certifications from government agencies and other leading healthcare organizations.

Get started today

Ready for keys or need access to our sandbox? Contact our sales team and tell us about your use-case.