hi @DAVID_JOHNSON, hipaa compliance is a moving target and some versions of openemr are hipaa eligible, https://www.open-emr.org/wiki/index.php/AWS_Cloud_Packages_Comparison
if you document your approach and use the security risk assessment tool you’ll be well on your way