Self-serve HIPAA BAA on every paid plan
Healthcare document collection
HIPAA-ready document collection with a self-serve BAA
Collect intake forms, IDs, insurance cards, referrals, and other sensitive documents through secure upload links.
Inside the request builder
A patient intake packet sent under your BAA
Insurance, personal information, and supporting items grouped for a clean pre-visit intake. Per-request retention clears files on the schedule you choose.
- Insurance card (front and back) up top
- Personal info: legal name, DOB, address, emergency contact
- Per-request retention windows (30, 60, 90 days, custom)
For business associates and back-office teams handling PHI
SendMeDocs is built for the firms that receive PHI on behalf of a provider: medical billing, credentialing, RCM, audit support, and prior authorization services. The clinical record stays in whatever EHR your providers use; the document-request and upload piece happens here, under a BAA.
A self-serve BAA is included on every paid plan, including the $12 per month tier. Uploads are encrypted at rest with AES-256, file links are scoped per request, and retention rules clear old files on a schedule you choose so PHI does not accumulate. The security page covers the controls in detail; the BAA terms are linked from the dashboard.
AES-256 encryption at rest, TLS in transit
Per-request retention controls (30, 60, 90 days, custom)
No recipient account required for upload
Keep the recipient experience simple
The recipient gets a link, sees a named checklist, and uploads from any browser. Your team sees what arrived in the dashboard.
No app, no account, no password reset. Provider contacts, billers, and patient guarantors all use the same flow. For one-off asks, send a request. For repeat work like provider credentialing or quarterly audits, save the checklist as a template once and reuse it. The for medical billing & credentialing page describes the back-office workflows in more detail.
Provider credentialing and payer enrollment packets
Prior authorization and records requests
Patient intake forms for outsourced services
Signed forms, attestations, and audit responses
Starter checklist
Before the request
List exactly what you need: IDs, license numbers, packets, signed forms.
After upload
Review on the dashboard, download to your file system, mark the request complete.
Retention
Use auto-delete windows so old PHI does not sit indefinitely.
Questions
Does SendMeDocs offer a BAA?
Yes. A self-serve BAA is available on every paid plan, including the $12 per month tier. No upcharge.
Do recipients need to create an account?
No. They upload through the secure link without signing up. Same for providers, patients, and payer contacts.
Is this an EHR?
No. SendMeDocs collects documents under a BAA. The clinical record stays in whatever EHR your providers use.
How does retention work?
Set the window per request: 30, 60, 90 days, or custom. Files auto-delete on schedule, which reduces the amount of PHI sitting in storage at any one time.
Will this satisfy our security questionnaire?
For small-firm and back-office buyers, yes. SendMeDocs is not yet pursuing SOC 2 Type II or HITRUST, so enterprise procurement teams with those requirements should evaluate accordingly.