HIPAA-compliant PDF tools
Healthcare-friendly PDF tools with BAA, audit logs, encryption at rest, and custom retention. Process patient records, lab results, and PHI compliantly.
Healthcare organizations handling protected health information (PHI) under HIPAA need their software stack — including PDF tools — to support a Business Associate Agreement (BAA), encryption at rest and in transit, audit logging, and demonstrable access controls. Most free and consumer PDF websites can't sign a BAA and shouldn't be used with PHI, full stop.
PDFOnly's Enterprise tier is built for HIPAA workflows. We sign a BAA, encrypt data at rest with customer-managed keys (optional), provide audit logs of every access, and support custom retention windows down to 'delete on processing complete' for the most sensitive material. The tooling itself is unchanged from the standard tier — same merge, OCR, redact, sign, compress — but the operational controls around it are HIPAA-aligned. For organizations already running on AWS, GCP, or Azure with HIPAA-eligible services, we also offer a self-hosted deployment that keeps all PHI inside your existing boundary.
Frequently asked questions
Is the free tier HIPAA-compliant?
No. The free and Pro tiers do not include a BAA and shouldn't be used with PHI. For PHI workflows, Enterprise is the only compliant option. We're explicit about this because some PDF sites quietly market 'HIPAA features' on free tiers without the legal underpinning — that's not real HIPAA compliance.
What does the BAA cover?
Standard HIPAA Business Associate obligations: appropriate safeguards for PHI we process, breach notification within required windows, restrictions on use and disclosure, support for audit requests, and the right to terminate the relationship if we materially breach. The BAA we offer is reviewable by your privacy/security team before signing.
Can we self-host so PHI never leaves our network?
Yes — Enterprise includes a self-hosted Docker-based deployment. The entire PDFOnly stack (web, worker, MinIO, Redis) runs inside your network. Files never leave your infrastructure. Suitable for organizations with strict HIPAA, internal data residency, or regulatory requirements.