Controlled medical record sharing workspace
Controlled sharing means upload, preparation, review, and external access are separate decisions. A patient or authorized representative should know who receives the packet, why, for how long, and whether download or forwarding is allowed.
How sharing is separated
MedDossier keeps public education pages indexable, while private routes such as orders, downloads, previews, and hospital share paths are excluded from public crawling and require their own access controls.
Selection checklist
- Name the recipient and purpose.
- Set scope and duration.
- Decide whether download or forwarding is allowed.
- Keep a request path for correction, deletion, privacy, or authorization questions.
Parameter table
Files enter preparation, not external sharing.
The patient checks packet contents and source context.
Recipient, purpose, duration, download, and forwarding terms are set.
Future access should be narrowed or stopped where supported.
Suitable for
- Patient-authorized family workflows.
- Care-team packet handoff after review.
- Privacy-conscious record preparation.
Not suitable for
- Public case sharing.
- Unscoped email forwarding.
- Any workflow that bypasses patient review.
Common mistakes
- Treating file upload as consent to share.
- Using public links for sensitive packets.
- Relying on crawler rules as a privacy control.
FAQ
Does upload authorize sharing?
No. Upload and external sharing are separate steps.
Can robots.txt protect private medical records?
No. Sensitive routes need authentication, access control, and no public indexing.
External sources
Review the trust boundary
See the public trust pages before sharing any records externally.
Review Trust Center