From April 29, 2025, the electronic patient file (ePA) will be available to all 73 million people with statutory health insurance in Germany, initially in selected model regions in Germany and after a trial phase. The health insurance companies will automatically set up the ePA for their policyholders. Insured persons have the option of objecting to the electronic patient file at any time.

The ePA brings numerous advantages for healthcare. It improves the exchange and use of health data between treating physicians and other service-providing institutions in the healthcare sector in order to make patient care more efficient and targeted.

Important documents such as doctor's letters, laboratory results and medication plans are stored securely and are available at all times. Data protection remains the top priority: Only authorized persons and institutions are granted access and insured persons always retain control over who is allowed to view their data.

The ePA is a major step towards modern, networked and patient-centered healthcare.

Use of the electronic patient file

The ePA enables insured persons to view their health data, which is securely stored in the file, at any time. Each health insurance company provides an app for this purpose, which policyholders can use to view and manage their data. Insured persons also retain full control via the app: they can see who has access to their data, change access rights or deny access to individual institutions. If necessary, they can also authorize a deputy - such as a family member, a trusted person or a legal representative - to manage the ePA.

The EPR makes managing your own health data simple, transparent and flexible.

Data security of the electronic patient file

The security of the data in the electronic patient file is guaranteed by a comprehensive security architecture. Sensitive health data is stored in encrypted form in certified data centers in Germany. BSI-certified connectors, card terminals and smart cards ensure secure access to the telematics infrastructure in the service-providing institutions.

Insured persons log in via the ePA app using their electronic health card (eGK) or their ID card and the corresponding PIN. This combination ensures that only authorized persons have access to the file via the app.

Data is exchanged with the ePA servers via encrypted channels. This ensures that health data is protected during transmission.

With this security concept, the ePA meets the highest security requirements according to the current state of the art and at the same time offers a modern and reliable basis for digital healthcare.