Remove Embedded Metadata from Patient Photos Before EHR Storage
Patient-submitted photos — wound documentation, telehealth intake images, dermatology follow-ups — arrive from personal smartphones carrying GPS coordinates, device serial numbers, and timestamps embedded in the file. That metadata is PHI-adjacent under HIPAA and has no clinical value once the image is in the patient record. Deliteful strips all embedded EXIF from medical images by rebuilding them from pixel data, leaving clinical visual content intact.
Telehealth adoption has normalized patients photographing symptoms on personal devices and submitting images through patient portals, secure messaging apps, or email. A photo taken at home on an Android or iPhone embeds GPS coordinates that effectively record the patient's home address in the file — data your EHR or document management system then stores without it appearing in any structured field. Under HIPAA, covered entities must protect all PHI, including information that could identify a patient's location. Embedded GPS in a stored medical image is a non-obvious PHI vector that warrants a defined mitigation step.
Deliteful supports PNG, JPG, JPEG, and WebP — the formats produced by all major smartphone platforms — and processes images by full pixel-data reconstruction rather than header editing, ensuring no residual metadata fields remain. The clinical content of the image is unchanged. Stripping metadata at intake, before images are written to the EHR, is cleaner than retroactive cleanup and easier to document as a standard operating procedure.
How it works
- 1
Sign up with Google
Create your free Deliteful account in under a minute — no credit card required.
- 2
Upload patient-submitted images
Add JPG, JPEG, PNG, or WebP photos from your intake queue or secure messaging platform.
- 3
Strip all embedded metadata
Deliteful removes GPS coordinates, device identifiers, timestamps, and all EXIF fields by reconstructing the image from pixel data.
- 4
Store clean images in the EHR
Download metadata-free images and add them to the patient record without embedded location or device data.
Frequently asked questions
- Is GPS data embedded in patient photos considered PHI under HIPAA?
- GPS coordinates that can identify a patient's location are considered PHI under HIPAA if they are associated with a patient record. The HIPAA Safe Harbor de-identification method specifically requires removal of geographic data smaller than state level.
- Does stripping metadata affect the clinical usability of the image?
- No. Pixel data, resolution, and visual content are fully preserved. The image will display identically in any EHR viewer or image management system.
- What formats are supported?
- PNG, JPG, JPEG, and WebP — covering all formats produced by iOS and Android devices used for patient photo submission.
- Should metadata be stripped before or after uploading to the EHR?
- Before. Stripping at intake prevents PHI from being written to the EHR in the first place, which is cleaner from a data governance standpoint and easier to document as a standard intake procedure.
Create your free Deliteful account with Google and add EXIF stripping to your patient image intake process to reduce PHI exposure at the source.