ServicesLast updated: 2026-07-07

Controlled medical record sharing workspace

Controlled sharing means upload, preparation, review, and external access are separate decisions. A patient or authorized representative should know who receives the packet, why, for how long, and whether download or forwarding is allowed.

How sharing is separated

MedDossier keeps public education pages indexable, while private routes such as orders, downloads, previews, and hospital share paths are excluded from public crawling and require their own access controls.

Selection checklist

  • Name the recipient and purpose.
  • Set scope and duration.
  • Decide whether download or forwarding is allowed.
  • Keep a request path for correction, deletion, privacy, or authorization questions.

Parameter table

Upload

Files enter preparation, not external sharing.

Review

The patient checks packet contents and source context.

Authorize

Recipient, purpose, duration, download, and forwarding terms are set.

Revoke or narrow

Future access should be narrowed or stopped where supported.

Suitable for

  • Patient-authorized family workflows.
  • Care-team packet handoff after review.
  • Privacy-conscious record preparation.

Not suitable for

  • Public case sharing.
  • Unscoped email forwarding.
  • Any workflow that bypasses patient review.

Common mistakes

  • Treating file upload as consent to share.
  • Using public links for sensitive packets.
  • Relying on crawler rules as a privacy control.

FAQ

Does upload authorize sharing?

No. Upload and external sharing are separate steps.

Can robots.txt protect private medical records?

No. Sensitive routes need authentication, access control, and no public indexing.

Review the trust boundary

See the public trust pages before sharing any records externally.

Review Trust Center