Loading…
Loading…
Most free HIPAA form templates you find online are PDFs you print and hand to patients. That defeats the purpose. These are Jotform templates you import, customize, and deploy as online forms. Encrypted submission storage, e-signature, and a path to a signed BAA. Free to import; the Jotform HIPAA plan is where compliance actually lives.
Yes: the templates on this page are free to import into Jotform. The forms themselves enforce HIPAA-safe defaults (encrypted storage, PHI field controls, stripped email notifications). The HIPAA compliance layer requires a Jotform HIPAA-tier account with a signed BAA (Silver plan, $39/month). The templates save you the build time; the plan gives you the compliance.
Source: WorkflowKits /hipaa/free-hipaa-forms : by Buri (Mustafa Burak Ilter), former Jotform engineer (2020-2025).
Each kit deploys into your own Jotform HIPAA account. No middleware, no platform fees, no vendor lock-in. Pricing covers the build and a window of support.
General HIPAA patient intake: identity, history, insurance, consent, e-signature.
View the kitTherapy intake with screening, telehealth preference, sliding-scale fees, consent.
View the kitPre-visit telehealth: identity, tech check, screening, e-consent.
View the kitWellness intake: health history, treatment consent, photo release.
View the kitThe Jotform HIPAA plan covers the platform side. The other three pillars are on you - and they are where almost every audit finding comes from.
If you handle protected health information, Jotform's HIPAA plan is the right starting point, but the plan alone doesn't make your workflow compliant. Here's what the plan covers, what it doesn't, and what most teams still get wrong.
Read the noteThe Jotform HIPAA plan covers Jotform. It does not cover what happens to a submission once it lands in Zapier, Google Sheets, Slack, or your CRM. Here is the integration-by-integration verdict from a Jotform HIPAA expert who built the integration codepath.
Read the noteTwelve items to check before any Jotform form that handles PHI goes live. If any of these are unchecked, the workflow is not ready. Save the page or copy the list into your decision log.
Read the noteThe Jotform BAA is a 10-minute task once you know which screen to click. Here is the exact path: what to enable, what to ask for, and how to verify it actually got signed.
Read the noteThe templates are free to import and customize. The Jotform HIPAA plan (Silver, $39/month and up) is where the compliance layer lives: encrypted storage, BAA, PHI controls. Without the HIPAA plan, the forms still work as regular Jotform forms, but they are not HIPAA-compliant. The template saves build time; the plan delivers compliance.
You can import and customize them on any Jotform plan. But if you collect protected health information, you need the HIPAA plan with a signed BAA. There is no compliant workaround for that.
Yes: every template includes an e-signature field for consent. Jotform's e-signature widget captures a drawn signature, a typed signature, or a click-to-sign agreement, all timestamped. The signature is stored with the submission under the HIPAA plan's encryption.
Yes. Import the template, then add, remove, or reorder fields. Add conditional logic for specialty-specific questions. Change branding. The structure is a starting point, not a constraint.
The BAA is available inside your Jotform account once you upgrade to a HIPAA-tier plan. You sign it digitally; Jotform countersigns. The process takes about five minutes. WorkflowKits walks you through it as part of any engagement.
Free 20-minute call. Bring your current Jotform setup (or a blank account); leave with a straight answer about what compliance actually requires for your practice.