Health information exchange, commonly called HIE, is the electronic sharing of medical records between doctors, hospitals, labs, and other healthcare providers. Instead of relying on faxes, phone calls, or patients carrying paper records from one appointment to the next, HIE lets your health data travel digitally, so every provider involved in your care can see the same information. The goal is straightforward: fewer repeated tests, fewer medication errors, and faster, more coordinated treatment.
How HIE Works in Practice
Think of what happens when you visit an urgent care clinic while traveling. Without HIE, that clinic has no access to your medication list, allergies, or recent lab results. They’re working blind, which means they may order tests you already had or prescribe something that interacts with a drug you’re already taking. With HIE, the clinic can pull up relevant pieces of your medical history electronically, even though they’ve never seen you before.
The same principle applies closer to home. When your primary care doctor refers you to a specialist, HIE allows the specialist to receive your records directly rather than waiting for a fax or asking you to bring a printed summary. When a hospital discharges you, your regular doctor can immediately see what happened during your stay, what medications were prescribed, and what follow-up is needed.
Three Types of Exchange
HIE isn’t a single system. It describes a set of approaches, and there are three main types used across the U.S. healthcare system.
Directed exchange works like secure email. A provider sends specific patient information, such as lab results, referral notes, or a discharge summary, directly to another provider they already know and trust. The data is encrypted and sent over the internet. This is the most common form of HIE and covers routine situations like sending a referral to a specialist or forwarding lab results to the ordering physician.
Query-based exchange is more like a search. A provider looks up a patient’s records across connected systems, pulling information from hospitals, clinics, or labs the patient has visited. This is especially useful in unplanned care situations, like an emergency room visit, where the treating physician needs to quickly find out what medications you take or what conditions you have.
Consumer-mediated exchange puts patients in control of gathering and sharing their own records. Through patient portals and apps, you can access your health data from multiple providers and decide who sees what. This type is less widely adopted but gives patients a more active role in managing their care.
The Technology Behind It
For health data to move between systems built by different software companies, everyone needs to speak the same language. That’s where interoperability standards come in. The most important one today is FHIR (Fast Healthcare Interoperability Resources), maintained by the standards organization HL7. FHIR uses the same web-based technology that powers everyday apps and websites, which makes it faster and more flexible than older data-sharing methods.
At its core, FHIR breaks a patient’s record into modular pieces called “resources,” each representing a specific type of data: a medication, a lab result, an allergy, a diagnosis. These standardized building blocks can be exchanged between any system that supports the standard, regardless of which electronic health record software a hospital or clinic uses. This is what makes it possible for, say, a small rural clinic’s system to communicate with a large academic medical center’s system.
Does HIE Actually Improve Care?
The clearest evidence comes from hospital readmissions, one of the most closely tracked quality metrics in healthcare. A study of Florida hospitals published in Health Affairs found that hospitals participating in HIE saw 30-day readmission rates drop by 1.3 percentage points more than non-participating hospitals. That may sound modest, but applied across thousands of patients, it translates to a meaningful number of people who avoid an unnecessary return trip to the hospital. The effect held up at 45 and 60 days as well, suggesting the benefit isn’t a short-term blip.
Beyond readmissions, the practical benefits are intuitive. When an emergency physician can see that you had a CT scan two days ago, they don’t need to order another one. When a new doctor can see your full medication list, they’re far less likely to prescribe something that conflicts with what you’re already taking. Before electronic exchange became widespread, providers relied on phone, fax, and mail to share records, and studies consistently found those methods led to delays, lost information, and unnecessary duplicate testing.
Where Adoption Stands Today
HIE has grown significantly over the past several years, though full adoption is still a work in progress. As of 2023, 70% of non-federal acute care hospitals in the U.S. engaged in all four domains of interoperable exchange (sending, finding, receiving, and integrating outside data) at least sometimes. The share of hospitals doing this routinely, not just occasionally, reached 43% in 2023, up from 28% in 2018. That’s a 54% increase in routine exchange over five years, which represents real momentum, but it also means more than half of hospitals still aren’t exchanging data as a consistent part of their workflow.
TEFCA and the Push for National Connectivity
One of the biggest challenges with HIE has been fragmentation. Regional and state-level exchanges don’t always connect to each other, which creates gaps when patients cross geographic boundaries. The federal government’s answer to this is TEFCA, the Trusted Exchange Framework and Common Agreement, a nationwide framework designed to create a universal baseline for health data sharing across the country.
TEFCA was formally announced in 2022 and hit a major milestone in December 2023, when the first Qualified Health Information Networks (QHINs) were designated. Within days, health data began flowing among these networks. The framework is designed to support exchange for treatment, payment, healthcare operations, public health activities, government benefits determination, and individual patient access. In practical terms, TEFCA aims to make it so that any provider, payer, or public health agency connected to the framework can share data with any other participant, regardless of which network or software they use.
Privacy and Security Protections
Because HIE involves sensitive medical records moving between organizations, it operates under strict security requirements. All electronically exchanged health information falls under HIPAA’s Security Rule, which requires administrative, physical, and technical safeguards to protect confidentiality and integrity. In practice, this means data is encrypted during transmission, access is limited to authorized users, and systems maintain audit trails that track who viewed or shared a record.
Patient consent is another layer of protection, though how it works varies by state. Some states use an “opt-in” model, where your data isn’t shared through an exchange unless you give explicit permission. Others use “opt-out,” meaning your data is included by default but you can withdraw consent. This patchwork of state rules is one of the legal complexities that has slowed national adoption.
Why Full Adoption Has Been Slow
Despite clear benefits, several obstacles have kept HIE from reaching its full potential. Financial barriers consistently rank as the top concern. Building and maintaining the technical infrastructure is expensive, and for many healthcare organizations, particularly smaller practices, the return on investment isn’t immediately obvious. Fee-for-service payment models, which reimburse providers for individual services rather than overall outcomes, don’t naturally reward the kind of care coordination that HIE enables.
Technical barriers remain significant too. Many healthcare organizations still run older electronic health record systems that weren’t designed for easy data sharing. Even when systems technically support exchange, differences in how data is formatted or categorized can make incoming records difficult to integrate into a provider’s workflow. Organizational culture plays a role as well: some providers are reluctant to share data with competitors or unfamiliar organizations, and fragmented workflows make it hard to fit data exchange into already-packed clinical schedules. Patient engagement is another gap. Many people don’t know HIE exists, which limits participation in consumer-mediated exchange and can make consent processes confusing.
These barriers are real, but they’re gradually shrinking as standards like FHIR mature, federal frameworks like TEFCA expand, and payment models increasingly tie reimbursement to care quality rather than volume.

