A medical-record disclosure is the copy of a health file you release to a third party. HIPAA Safe Harbor (45 CFR §164.514(b)) lists 18 identifiers to remove so the data is de-identified. anonym.plus marks them on your own device, so the health file never reaches the cloud.
When this applies
A request asks for a health file for research or audit. It names the patient and carries the record number, dates, and address.
How anonym.plus handles it
- Open the health file in anonym.plus on your device.
- Local OCR reads scanned charts and forms.
- The tool flags the 18 Safe Harbor identifiers.
- Check the flags and fix any clinical term caught wrongly.
- Swap each ID for a label, or black it out.
- Save the de-identified file on your machine.
What you need to provide
- The health file (PDF, DOCX, TXT, or scan).
- An operator: Replace keeps the text readable.
- Optional name map if you must re-link later.
PII entity types detected
| Category | anonym.plus entity type | Example |
|---|---|---|
| Names | PERSON | patient name → [PATIENT] |
| Record IDs | MEDICAL_RECORD_NUMBER | MRN 884213 → [MRN] |
| Dates | DATE_TIME | admitted 03/11 → [DATE] |
| Contact | PHONE_NUMBER | +1 415 555 0147 → [PHONE] |
| Location | LOCATION | 12 Oak St → [ADDRESS] |
| Identifiers | US_SSN | 078-05-1120 → [SSN] |
Compliance achieved
- Strips all 18 IDs for HIPAA Safe Harbor (45 CFR §164.514(b)).
- Runs offline, so the tool itself needs no BAA.
- Working files are guarded with AES-256-GCM at rest.
- Local OCR reads scanned charts before the check.
Anonymize medical records offline — see plans & start free →
Limitations & cautions
Safe Harbor also needs you to have no reason to think the rest could re-identify the patient. The tool removes the 18 ID types; you still judge rare free-text clues, like a rare illness plus a small town. For those, use Expert Determination.
Frequently asked questions
What are the 18 Safe Harbor identifiers?
Names, small geographic areas, all dates tied to a person, phone and fax, email, SSN, MRN, plan and account numbers, license, vehicle and device IDs, URLs, IPs, biometrics, photos, and other unique codes.
Does this disclosure need a BAA?
No. The app runs on your own device with no cloud step, so no outside party touches the health data and the tool needs no BAA.
Will the file still read after the swap?
Yes. The Replace operator puts a steady label in place of each ID, so the clinical text still flows and names no real person.