The United States does not have a single national medical record database. Instead, your health records are scattered across every doctor’s office, hospital, lab, and pharmacy you’ve ever visited, each storing data in its own system. What exists in place of a centralized database is a patchwork of regional and vendor-specific networks that try to connect these separate systems so your information can follow you from one provider to the next. That patchwork is improving, but it still has major gaps.
Why the U.S. Doesn’t Have a Centralized System
American healthcare developed around private hospitals, independent practices, and competing insurance companies, each choosing their own technology. There was never a single government mandate to build one unified database the way a country might build a national ID system. Privacy concerns under HIPAA, the sheer number of providers (over a million), and the cost of standardizing records across thousands of software platforms all made centralization politically and technically impractical.
The result, as described in the Yearbook of Medical Informatics, is that “whether a patient’s data follows them as they transition across care providers is determined more by whether their organizations are on the same EHR vendor or participate in the same method of health information exchange.” If your new doctor uses the same electronic records software as your old one, your data might transfer smoothly. If not, it may require a fax, a phone call, or a patient portal download.
What Exists Instead: Health Information Exchanges
Rather than one national database, the U.S. relies on a layered system of health information exchanges (HIEs). These are networks that allow hospitals and clinics to share patient data electronically. Some are run by states, some by regional coalitions, and some by the electronic health record (EHR) vendors themselves. They vary widely in size, technology, and participation.
The largest private network comes from Epic Systems, whose “Care Everywhere” tool links hospitals that use Epic’s software. When you visit a new hospital on the Epic network, the system searches for your records at other Epic sites using your name, date of birth, and phone number, then pulls in your history. CommonWell Health Alliance, another major network, reports connections to over 50,000 provider sites and records for more than 104 million unique individuals. These networks are substantial, but they don’t cover everyone, and they don’t always talk to each other.
TEFCA: The Closest Thing to a National Network
The federal government is building a framework called TEFCA (the Trusted Exchange Framework and Common Agreement) that aims to be the closest thing the U.S. has ever had to a unified records network. Envisioned by the 21st Century Cures Act, TEFCA doesn’t create a single database. Instead, it designates certain large networks as Qualified Health Information Networks (QHINs) and requires them to exchange data with each other using common rules.
As of 2024, seven organizations have been officially designated as QHINs, including CommonWell Health Alliance and Kno2. The idea is that if your doctor’s system connects to any one of these QHINs, it can reach records held in any of the others. TEFCA is still in its early stages, and participation isn’t yet universal, but it represents the most significant federal push toward nationwide interoperability.
Laws That Force Providers to Share Records
The 21st Century Cures Act also introduced rules against “information blocking,” which is any practice that unreasonably interferes with the access, exchange, or use of electronic health information. These rules apply to healthcare providers, health IT developers, and health information networks alike.
For health IT companies and networks that violate these rules, the penalties can reach up to $1 million per violation. For healthcare providers, the Department of Health and Human Services has established separate disincentives for those found to have knowingly and unreasonably blocked information sharing. The intent is clear: providers and software companies can no longer use data as a competitive advantage by locking patients into their systems.
Your Right to Access Your Own Records
Even without a national database, federal law gives you the right to obtain copies of your medical records from any provider. Under HIPAA, providers can charge you only for the direct cost of copying and mailing. For electronic copies of records already stored digitally, the maximum allowable charge is a flat fee of $6.50, covering all labor, supplies, and postage. Providers cannot charge you for searching, retrieving, or maintaining the systems that store your data.
If your provider offers a patient portal with view, download, and transmit features, they cannot charge you anything at all to access your records through it. Per-page fees are only permitted when paper records are being copied from paper originals. In practice, this means your fastest and cheapest option is almost always to download records through your provider’s online portal.
How the VA Handles Military and Veteran Records
The one area where the U.S. comes closest to a centralized system is military and veteran healthcare. The Veterans Health Information Exchange (VHIE) links Department of Defense records, VA records, and participating civilian hospitals through a joint gateway. If you’re a veteran, your health information from active duty can follow you into VA care and out to private doctors who participate in the exchange. Your care team can see medications, allergies, lab results, and clinical notes, helping avoid duplicate tests and treatment delays.
This system works because the VA and DoD are both government-run, making it far easier to mandate participation and standardize technology. It’s essentially a proof of concept for what a broader national system could look like, but extending that model across the entire private healthcare industry has proven far more difficult.
How Other Countries Compare
Several countries have moved further toward centralized records than the U.S. Israel’s healthcare system, which covers its population through four health maintenance organizations, adopted a national health information exchange called EITAN. Clinical data stays stored locally within each provider organization, but all systems connect through a national network with its hub at the Ministry of Health. Patients are automatically enrolled with the option to opt out.
England’s National Health Service uses a National Record Locator that works like a search engine for patient records. Rather than storing all data in one place, it maintains “pointers” that tell healthcare workers where a patient’s records are held and how to access them, using each patient’s NHS number as a universal identifier. The records themselves stay with the original provider, but any authorized care worker across the country can find and request them. Portugal built a similar hybrid system that layers local, shared, and centralized data.
The common thread in countries with more unified systems is either a single-payer structure or strong government authority over healthcare IT. The U.S. has neither, which is why its approach relies on incentives, penalties, and voluntary frameworks rather than a top-down mandate.
What This Means for You in Practice
If you’re switching doctors, moving to a new city, or visiting a specialist, don’t assume your records will follow you automatically. Your best options right now are to download records from each provider’s patient portal and bring them to new appointments, ask your current provider to send records electronically to your new one (they’re legally required to cooperate), and check whether both providers use the same EHR system, which makes transfers much smoother.
The system is moving toward better connectivity, and TEFCA may eventually make seamless record-sharing the norm rather than the exception. But for now, the most reliable national medical record database is the one you build yourself by keeping copies of your own records in one place.