HIPAA-compliant voice AI for healthcare: voice AI is easy, the BAA chain is the hard part

The hard part of voice AI for healthcare isn’t the voice. It’s that the moment your phone agent hears a date of birth, a symptom, or an appointment reason, it’s handling protected health information, and every service that touches that audio now needs a signed Business Associate Agreement. Miss one link in that chain and you don’t have a compliance gap, you have an unreported breach. We build real-time and AI voice software, including an automated appointment-booking voice agent for a healthcare client and HIPAA-compliant telehealth platforms, so this is the guide we’d hand our own team: what triggers HIPAA, the BAA chain, the patient call pipeline, the consent and TCPA rules that bite, the real per-minute cost, and an honest build-vs-buy call.

Key takeaways

HIPAA is a design input, not a feature you add later. The moment a call carries patient data, every processor in the path — telephony, speech-to-text, the model, text-to-speech, storage — becomes a business associate and needs a signed BAA (45 CFR 164.502(e), 164.504(e)).

The BAA chain decides your architecture. If any vendor won’t sign a BAA, or only will on an enterprise tier — you either swap it out or self-host that piece. This is the single biggest reason healthcare teams build instead of buy.

Cascade beats speech-to-speech for regulated calls. A speech-to-text → LLM → text-to-speech pipeline gives you a text transcript at every turn — the audit trail compliance and clinical review actually need.

Disclosure and consent are law now, not etiquette. California’s AB 3030 (effective 2025) requires an AI disclaimer on generative-AI patient communications; the FCC ruled in 2024 that AI voices are “artificial” under the TCPA, so outbound calls need prior express consent.

The ROI is the no-show, not the phone bill. Talk time runs a few cents a minute; outpatient no-show rates average about 23% (Dantas et al., 2018). Recovering even a slice of that dwarfs the cost of the agent.

Why Fora Soft wrote this guide

We build real-time and AI voice software, and we’ve built both halves of what this article is about: voice agents that answer the phone, and healthcare platforms that live inside HIPAA. Fora Soft has shipped 250+ projects since 2005 (that’s 20+ years), and a healthy share of them are in telemedicine and clinical software.

Two threads of that work sit directly under this guide. On the voice side, we built a fully automated AI appointment-booking voice agent for a healthcare client: it verifies the caller, checks whether they’re a new or returning patient, looks up the record, offers real slots with provider names, books, confirms, and schedules reminders — no human in the loop for the routine path. We also built a hospital phone interpreter on SIP, FreeSWITCH, Twilio, and an IVR menu, routing calls to live interpreters by queue and priority. On the compliance side, we built CirrusMED, a HIPAA-compliant direct-primary-care telehealth platform now used across 48+ US states, plus other telemedicine products handling real patient data every day.

So when we talk about the BAA chain, endpointing delay, or why a text transcript matters for clinical review, it’s from shipping these things under real compliance scope, not from a spec sheet. The general phone-agent mechanics live in our AI receptionist build guide; this page is the healthcare-specific version, where the regulation changes almost every decision. If you want the short version for your own clinic, our telemedicine engineering team does these builds.

Scoping a HIPAA-compliant voice agent?

Bring your call volume, your EHR, and the data the agent will touch. We’ll tell you honestly whether to buy, wire up a BAA-covered API, or self-host, and what each path costs.

Book a 30-min call → WhatsApp → Email us →

What “voice AI for healthcare” actually means

Voice AI for healthcare is a software agent that answers or places phone calls in a natural voice, understands what the patient wants, and completes a task — scheduling, reminders, intake, refills, benefits questions — while handling protected health information under HIPAA. It runs the loop in real time: hear speech, decide, speak back, act. You’ll also see it called a medical AI receptionist, an AI voice agent for healthcare, or a HIPAA-compliant AI phone agent — same idea, different label. The healthcare part isn’t a label itself; it’s what pulls compliance into every layer.

It is not an IVR phone tree (“press 1 for scheduling”). An IVR maps key presses to fixed branches; a voice agent understands open-ended speech and holds a conversation. And it’s not the same as a general AI receptionist. The mechanics overlap, but a general receptionist optimizes for answering and booking; a healthcare agent optimizes for doing that without leaking PHI, while satisfying a stack of rules a hair salon never thinks about. We split those intents on purpose — the general build lives in our AI receptionist guide; this page is strictly the healthcare version.

A useful mental model: a healthcare voice agent is a voice pipeline, plus a phone line, plus a BAA-covered path to your EHR, and if any of those three is missing or non-compliant, you don’t have a product you can legally ship.

The jobs a healthcare voice agent does

Scope the agent around the jobs a front desk and call center actually do, ranked by how often they justify the whole project:

1. Scheduling and reminders. The highest-value job. Book, reschedule, cancel against the practice calendar, and place outbound reminder calls. This is where the money is, because outpatient no-shows average about 23% (Dantas et al., 2018) and every recovered slot is revenue that would have evaporated.

2. Intake and triage routing. Collect the reason for the visit, capture demographics, and route by urgency — while knowing that anything resembling clinical advice raises the regulatory stakes sharply. Safe agents triage to the right queue; they don’t diagnose.

3. Routine questions and refills. Hours, location, “do you take my insurance,” prescription refill requests, and pre-visit instructions. This is retrieval against your knowledge base and EHR, spoken back in a sentence or two. Easy to demo, easy to get subtly and dangerously wrong.

4. Eligibility, benefits, and back-office calls. Some of the biggest healthcare voice-AI companies point the agent outward — calling payers for benefits verification and prior authorization, the calls that eat staff hours. Different direction, same pipeline.

5. After-hours coverage and overflow. Catch the calls that used to hit voicemail at 7 p.m. or during a lunch rush. This is the easiest ROI to feel, because the alternative is a lost patient dialing the clinic down the street.

HIPAA in one page: what actually triggers it

You don’t need to be a lawyer to build this, but you do need three definitions right, because they decide when the rules switch on. (We build software, not legal advice — run your specifics past counsel.)

PHI is protected health information: any individually identifiable health information a covered entity holds or transmits. A caller’s name tied to the fact that they’re booking a cardiology visit is PHI. Even the phone number tied to a patient record can be. A covered entity is the provider, health plan, or clearinghouse. A business associate is anyone outside the covered entity’s workforce that creates, receives, maintains, or transmits PHI to perform a service, which is exactly what your speech-to-text vendor does the instant it transcribes a patient’s words (45 CFR 164.504).

From those, the mechanics follow. Before a covered entity hands PHI to a business associate, it must get “satisfactory assurances” that the associate will safeguard it — a signed Business Associate Agreement, required under 45 CFR 164.502(e) and 164.504(e). The Security Rule (45 CFR Part 164, Subpart C) then demands administrative, physical, and technical safeguards for electronic PHI: access controls, encryption, audit logging. And the Breach Notification Rule requires notice, generally within 60 days of discovering a breach.

One escape hatch matters for AI teams: the Safe Harbor de-identification method (45 CFR 164.514(b)) says that if you strip all 18 listed identifiers, the data is no longer PHI and falls outside HIPAA. That’s the clean way to build analytics or fine-tune on call data — de-identify first. Worth noting: HHS published a proposed Security Rule update in the Federal Register on January 6, 2025, tightening operational timelines, but as of mid-2026 it’s still a proposal, and the 60-day breach rule stands.

The BAA chain is the whole design

Here’s the idea that reorganizes everything else. A patient’s voice doesn’t touch one vendor; it flows through a chain — telephony carrier, speech-to-text, the language model, text-to-speech, your orchestration, your logs and storage. Every hop that can see or hold PHI is a separate business associate, and each one needs its own signed BAA. Your compliance is only as strong as the weakest link. One vendor in the path without a BAA, and the whole call is non-compliant.

HIPAA voice AI stack: patient call through telephony, STT, LLM, TTS, EHR, each hop needs a signed BAA

Figure 1. The BAA chain. Every box that can see patient data needs its own signed agreement, and the self-host boundary is where you stop needing one.

This is why generic advice like “just use a HIPAA-compliant platform” is misleading. There’s no such thing as a compliant platform in isolation; there’s a compliant configuration where every component you chose will sign, and did sign, a BAA covering the exact service you’re using. A vendor can be “HIPAA-capable” on its enterprise plan and give you nothing on the tier you’re actually on.

The practical test: for every arrow in your diagram, can you point to a signed BAA that covers it? If a link won’t sign one, you have two moves — swap it for a vendor that will, or self-host that stage so no third party ever sees the PHI. There is no third option, and no per-minute price that makes shipping PHI to a non-BAA vendor acceptable.

How a patient call actually flows

A real call moves through a fixed set of stages. The phone network hands the call to your SIP trunk; a media server carries the audio and detects when the patient stops talking; the voice agent turns speech into a decision and back into speech; and integrations let it verify identity and touch the EHR. What makes the healthcare version different is what bookends it: a spoken disclosure at the top and a clean human handoff wherever the agent hits its limits.

Healthcare voice agent pipeline: greet, verify identity, intent, EHR action, confirm, reminder, plus human handoff branch

Figure 2. One patient call, end to end. Identity verification and the human-handoff branch are the two stages teams underinvest in and regret.

Two stages do more work than they look. Identity verification comes first for a reason: the agent must not reveal any PHI until it’s reasonably sure who’s on the line, usually by matching two identifiers (name plus date of birth, say) against the record before it says anything specific. Get this wrong and a wrong-number caller learns someone else’s appointment. And the human handoff is a first-class path, not a fallback bolted on at the end — the agent needs to know the edge of its competence and warm-transfer with context to a real person.

The orchestration that wires these together, with barge-in, retries, and timeouts — is usually built on a framework like Pipecat or LiveKit Agents, self-hosted on infrastructure you already control. In healthcare, “self-hosted” isn’t a preference; it’s often how you keep a link out of the BAA chain entirely.

Cascade vs speech-to-speech: why healthcare picks cascade

There are two ways to build the brain. In a cascade, three specialist models run in a row: speech-to-text transcribes, an LLM decides and writes a reply, text-to-speech voices it. In a speech-to-speech model like the OpenAI Realtime API, one model takes audio in and emits audio out, skipping the middle text hops. For a consumer app, speech-to-speech is tempting — fewer hops, lower latency, more natural prosody.

For regulated healthcare, we lean cascade, and the reason is the text in the middle. A cascade produces a written transcript of every turn, which is exactly what compliance review, clinical QA, and incident investigation need. It also lets you pin a specific model you’ve validated, run PII redaction on the transcript before it hits your logs, and swap any single vendor that won’t sign a BAA. Speech-to-speech collapses those three boxes into one you can’t inspect mid-stream, and today ties you to a short list of providers — a real constraint when the whole game is controlling who sees PHI. We cover the integration mechanics in our OpenAI Realtime API guide.

Reach for a cascade when: you need auditable transcripts, PII redaction, a specific validated model, or BAA-scoped components you can swap independently, which is most healthcare deployments. Reach for speech-to-speech only when latency is the binding constraint and your speech-to-speech provider will sign a BAA covering audio in and out.

The latency budget that decides quality

Compliance decides whether you can ship; latency decides whether patients will tolerate it. The number that matters is round-trip latency — the gap from the caller finishing a sentence to hearing the reply begin. Aim for under about 800 ms and treat 500 ms as the real target. Here’s why those numbers, not vibes: in natural conversation across ten languages, the average gap between turns is roughly 200 ms (Stivers et al., PNAS 2009). People notice delay past ~300 ms, feel it past ~500 ms, and past ~800 ms–1 s they start talking over the agent because they assume it didn’t hear them.

Healthcare adds a wrinkle: patients skew older and speak more slowly, with more pauses. That means endpointing — the wait to be confident the caller actually stopped, not just paused to think — is both your biggest latency lever and your biggest source of rude interruptions. Tune it patient-first: an agent that waits a beat too long feels polite; one that cuts off an 80-year-old mid-sentence feels broken. You claw back the time elsewhere with streaming everywhere: stream partial transcripts, start the LLM before the caller fully stops, and begin speaking the first words of the reply while the rest still generates.

The honest trade-off: a well-streamed cascade lands around 600–800 ms, and speech-to-speech can get you nearer 500. In most clinics, the audit trail is worth the extra beat, but measure it on your own line before you decide.

Which vendors will sign a BAA

This is where the BAA chain gets concrete. Below is where the major building blocks stood as of July 2026, taken from each vendor’s own compliance pages. Treat it as a starting map, not gospel — terms and tiers change, so confirm current status directly before you sign anything.

Vendor BAA matrix: which voice AI building blocks sign a Business Associate Agreement and on which tier, as of July 2026

Figure 3. Who signs, and on what tier. The “enterprise-only” and “paid add-on” rows are where budgets and build-vs-buy decisions get made.

Layer / vendor BAA (as of July 2026) Notes
Cloud / infra (AWS, Google Cloud, Azure) Yes AWS self-service BAA via Artifact; Azure via Product Terms; Google Cloud covers Speech-to-Text. Broadest, most mature path.
Telephony (Twilio) Yes, on request HIPAA-eligible products incl. Programmable Voice; BAA is not automatic — you must contract it.
Speech-to-text (Deepgram, AWS Transcribe Medical) Yes Deepgram signs BAAs; AWS Transcribe Medical is HIPAA-eligible under the AWS BAA.
LLM (OpenAI API) Yes, API only BAA available for the API (Enterprise not required), Zero-Data-Retention endpoints only; consumer ChatGPT tiers are not eligible.
Text-to-speech (ElevenLabs) Enterprise only HIPAA/BAA gated to the Enterprise tier — a common reason self-serve prototypes can’t go live as-is.
Managed voice platform (Vapi) Paid add-on HIPAA is a $2,000/month add-on (Zero-Data-Retention is a separate $1,000/month add-on); with either, logs and recordings aren’t stored.
Managed voice platform (Retell AI) Yes, self-serve Self-serve BAA advertised across plans; verify scope against your actual data flows.

Notice the pattern: the cloud and telephony layers are easy; the model and voice layers are where a BAA is either tier-gated or a paid add-on. That’s not a coincidence — it’s exactly the seam where healthcare teams decide to self-host. Healthcare-specific platforms like Assort Health, Hyro, and Infinitus wrap the whole chain and carry compliance for you (Assort states HIPAA plus HITRUST and SOC 2); the trade is less control and no self-hosting, which we weigh in the build-vs-buy section.

Consent, recording, and the AI-disclosure laws

HIPAA is the floor, not the ceiling. Three more rules shape the greeting your agent speaks before it does anything else.

Recording consent. Many US states require all-party consent to record a call. If you record, and for QA and audit you probably will — the greeting has to disclose it, and your logs need PII redaction before storage.

AI disclosure. California’s AB 3030, effective January 1, 2025, requires that when a health facility uses generative AI for a patient’s clinical communication, it include a disclaimer that the message was AI-generated and clear instructions for how to reach a human. For audio, that disclaimer must be spoken at the start and the end of the interaction. There’s an exemption if a licensed provider reviews the AI output. Utah’s AI Policy Act (SB 149) similarly requires disclosing AI in regulated and medical contexts, and the EU AI Act’s Article 50 transparency duty — tell people they’re talking to AI — becomes enforceable August 2, 2026 for anyone serving EU patients.

Design implication: bake the disclosures into the agent’s opening and closing lines as configuration, not copy someone remembers to add. “This call is recorded and answered by an automated assistant; say ‘agent’ anytime to reach a person” covers recording consent, AI disclosure, and the human-handoff promise in one breath.

TCPA and outbound calls to patients

Inbound calls the patient places are one thing. The moment your agent dials out — reminders, results-ready notices, recalls — the Telephone Consumer Protection Act enters the picture, and 2024 made it sharper. On February 8, 2024, the FCC ruled that calls using AI-generated voices count as “artificial or prerecorded voice” under the TCPA. In plain terms: an AI voice calling a patient’s cell phone needs prior express consent, the same as a robocall, absent an emergency or a specific exemption.

The good news is that healthcare has a real carve-out. The TCPA’s healthcare-message exemption lets a covered entity or business associate deliver messages like appointment reminders, pre-op and post-discharge instructions, and prescription notices to a number the patient provided, on prior express (not the stricter written) consent that marketing requires. The conditions are specific: the patient gave you the number, no telemarketing or billing content, tight frequency caps, and an easy opt-out. Cross that line into “come in for a checkup, we miss you” and you’re in marketing territory that needs written consent.

Practically, that means consent capture and opt-out handling are agent features, not paperwork. Log the consent basis for every outbound number, honor opt-outs immediately and permanently, and keep reminder content strictly transactional. This is one more reason a text-transcript cascade beats a black box: when a regulator asks what your agent said and on what consent, you can answer.

Not sure your call flow clears HIPAA and the TCPA?

We’ll map your BAA chain, your disclosure lines, and your consent logging against the actual data your agent touches — before a single patient call goes live.

Book a 30-min call → WhatsApp → Email us →

Build, buy, or blend: three honest paths

Three endpoints, and in healthcare the choice hinges on the BAA chain more than on price. Buy a healthcare-specific platform, assemble BAA-covered APIs, or do a custom self-hosted build.

Buy a healthcare platform when: your needs are standard scheduling, reminders, and FAQs, your volume is modest, and you’d rather a vendor carry compliance. Assort Health, Hyro, or Infinitus get you live without assembling the chain yourself — you trade control and self-hosting for speed and a single BAA.

Assemble BAA-covered APIs when: you need custom flows or a specific EHR integration a product can’t do, but you’re comfortable with cloud vendors holding PHI under their BAAs. A cascade of AWS/Deepgram + OpenAI API + a BAA-tier TTS, orchestrated by your team, is the middle path most mid-sized builds land on.

Build custom and self-host when: your policy or risk posture won’t allow PHI to leave your boundary, you’re integrating deeply with a legacy EHR, you’re white-labeling to many practices, or your volume makes owning the stack cheaper. Self-hosting an open model and TTS removes those links from the BAA chain entirely. This is where we come in.

What it costs, and the no-show math

Talk time is cheap; the value is on the other side of the ledger. Let’s do both, with the arithmetic in the open, because the gap is the whole argument. Per-minute prices below are from each vendor’s own page in July 2026.

Cost math: per-minute voice agent build-up versus conservative no-show recovery for a clinic, showing the ROI gap

Figure 4. The cost of running the agent is a rounding error next to the revenue a single recovered no-show returns. Figures are illustrative.

The per-minute build-up. Add the layers for one minute of a self-hosted cascade: SIP inbound ~$0.0085 (Twilio) + Deepgram streaming speech-to-text ~$0.0077 + a small LLM ~$0.003 + text-to-speech for the ~half-minute the agent speaks ~$0.02 + amortized compute ~$0.005 = roughly $0.045/min. A managed platform lands higher once you add its per-minute markup, and Vapi’s HIPAA add-on is a flat $2,000/month on top (Zero-Data-Retention is a separate $1,000/month). Either way, usage is cents.

Now the other side. Outpatient no-shows average about 23% (Dantas et al., 2018). Take a clinic running 4,000 visits a month with a 20% no-show rate — 800 missed slots. Suppose the agent’s reminder-and-reschedule loop recovers a conservative one in ten of those: 80 recovered visits. At a deliberately modest $100 of contribution per visit, that’s $8,000/month back. The agent’s talk time for, say, 6,000 call-minutes at $0.045 is about $270/month. The point isn’t the exact figures — plug in your own — it’s that the recovered-revenue line is one to two orders of magnitude above the run cost.

So where does building win? Not on shaving cents off a $270 phone bill. It wins when compliance forces self-hosting (there’s no per-minute price that makes a non-BAA path acceptable), when you’re white-labeling across many practices, or when a deep EHR integration is the product. We keep development estimates conservative; the honest headline is that the build is justified by control and compliance, not by usage savings.

Mini-case: a HIPAA-aware appointment voice agent

The situation. A healthcare client was losing bookings to voicemail. Front-desk staff couldn’t keep up with inbound scheduling calls, after-hours callers got nothing, and every missed call was a patient who might book elsewhere — while any solution had to handle patient data carefully enough to survive a compliance review.

The plan. We built a fully automated voice agent for appointment booking and reminders. On an inbound call it opens with the recording-and-AI disclosure, verifies the caller’s identity before revealing anything specific, checks whether they’re a new or returning patient, and locates the record. It then offers real open slots with provider names, answers questions, books, and confirms the date, time, and visit type back to the caller. After booking it delivers pre-visit instructions and schedules reminders — the full loop, no human needed for the routine path, with escalation to staff for anything unusual. Every turn is transcribed for audit, and the components sit behind BAAs or inside our own boundary.

The outcome. Routine scheduling moved off the front desk and onto an agent that never clocks out, so after-hours and overflow calls that used to hit voicemail now end in a booked, confirmed appointment, and staff time shifted to the in-person work only people can do. Want the same assessment for your practice? Grab a 30-minute call and we’ll map it.

Integrations: EHR, scheduling, RCM

A healthcare voice agent is only as useful as the systems it can touch, and in healthcare those systems are famously hard to touch. Three integrations carry most of the value, and each is a BAA-chain question as much as an engineering one.

Scheduling and the EHR. Live read/write to the practice calendar — often inside an EHR like Epic, Cerner, or athenahealth, with conflict detection so the agent never double-books. Modern EHRs expose FHIR APIs for this, but access, sandboxes, and app review vary wildly by vendor, and the integration is usually the longest pole in the project. Our telemedicine platform guide goes deep on the EHR side.

Patient records and identity. Look up the caller, verify identity against two identifiers, and read just enough to serve the call — no more. The discipline here is minimum necessary: the agent should retrieve the appointment, not the chart.

Revenue cycle and back office. Eligibility checks, benefits verification, and prior authorization are where outbound healthcare voice AI earns its keep. If you’re documenting the visit too, pair the agent with ambient capture — see our AI scribe architecture guide for that adjacent build.

When not to use voice AI in healthcare

Sometimes the right answer is don’t, and we’ll say so. Clinical triage and advice is the clearest line: an agent that routes “chest pain” to the right queue is fine, but one that decides whether chest pain is urgent is practicing medicine, and that’s a place for a licensed human and a hard escalation, not an LLM.

Crisis and behavioral-health lines are another. Emotional, high-stakes calls belong with people; AI at most handles overflow routing to a human, fast. Several 2025 laws specifically tightened disclosure for mental-health chatbots, which tells you where the regulatory nervousness lives.

And if you’re a small practice with a few hundred standard calls a month, a healthcare-specific SaaS product will beat a custom build on time-to-live, cost, and maintenance. There’s no ROI in assembling a BAA chain to replace what a compliant product already ships. Build when volume, self-hosting requirements, deep EHR work, or white-label margin justify owning the stack.

A decision framework in five questions

Answer these in order and the path tends to pick itself.

1. Does the call touch PHI? If yes, and for scheduling against a real record, it does — then every processor in the path needs a BAA, and that constraint outranks everything below.

2. Can PHI leave your boundary? If policy says no, you’re self-hosting the model and voice, which points to a custom build regardless of volume.

3. How custom is the EHR work? Standard scheduling against a supported system? A platform or APIs will do. A gnarly legacy or on-prem EHR? Budget for a build.

4. What’s your volume, and is this your product? A few hundred calls a month says buy. Tens of thousands of minutes, or reselling to many practices, turns the economics toward building.

5. Is any of it clinical? If the agent would make clinical judgments, stop — that’s a human job with an AI assist at most. Still unsure after five questions? That’s exactly the 30-minute conversation we have with clients.

KPIs once it is live

Quality KPIs. Round-trip latency (target under 800 ms at p95, not average), containment rate (calls resolved without a human), and task-success rate on the real job — did the booking actually land in the EHR correctly? Watch interruption rate as a proxy for endpointing problems, and track identity-verification failure rate closely, because that’s a privacy risk, not just a UX one.

Business KPIs. No-show rate before and after, appointments booked per 100 calls, after-hours calls captured, and cost per successful booking versus your old staffing cost. This is where the project justifies itself to a CFO.

Compliance KPIs. Disclosure-delivery rate (every call opened with the required disclaimers), consent coverage on outbound numbers, successful-handoff rate, and audit-log completeness. In healthcare, an agent that fails safe and leaves a clean record beats one that’s a hair faster.

FAQ

Is voice AI for healthcare HIPAA compliant?

It can be, if you design for it. Every processor that touches call audio containing patient data — telephony, speech-to-text, the model, text-to-speech, storage — is a business associate and needs a signed BAA (45 CFR 164.502(e)). Some vendors sign only on enterprise tiers or as a paid add-on; where one won’t sign, you self-host that piece. Add all-party recording consent and PII redaction in logs. Compliance is a day-one design input, not a later add-on.

What is a BAA and why does my voice agent need one?

A Business Associate Agreement is the contract HIPAA requires before a covered entity hands protected health information to a vendor (45 CFR 164.504(e)). Your voice agent’s speech-to-text service transcribes patient words, so it’s a business associate and needs a BAA, and so does every other service in the call path. No BAA on a link that sees PHI means that call isn’t compliant.

Which AI vendors will sign a BAA?

As of July 2026: AWS, Google Cloud, and Azure sign BAAs across their infrastructure; Twilio signs on request for HIPAA-eligible products; Deepgram and AWS Transcribe Medical cover speech-to-text; OpenAI offers a BAA for its API (Zero-Data-Retention endpoints, not consumer ChatGPT). ElevenLabs gates HIPAA to Enterprise, and Vapi offers it as a $2,000/month add-on. Terms change — confirm current status with each vendor before you sign.

Do I have to tell patients they’re talking to an AI?

Increasingly, yes. California’s AB 3030 (effective 2025) requires an AI-generated disclaimer and instructions to reach a human on generative-AI patient clinical communications — spoken at the start and end for audio. Utah’s AI Policy Act requires disclosure in medical contexts, and the EU AI Act’s Article 50 transparency duty is enforceable from August 2026. Bake the disclosure into the agent’s opening and closing lines.

Can an AI voice agent make outbound reminder calls to patients?

Yes, within the TCPA. In 2024 the FCC ruled AI-generated voices are “artificial” under the TCPA, so outbound calls need prior express consent. Healthcare has an exemption for messages like appointment reminders sent to a number the patient provided, on prior express (not written) consent, with frequency caps and easy opt-out — as long as the content stays transactional and doesn’t drift into marketing. Log the consent basis for every number.

How much does voice AI for healthcare cost?

Usage is cheap: a self-hosted cascade runs roughly $0.045 per minute (July 2026 vendor pricing), so a few thousand call-minutes is a few hundred dollars a month. Managed platforms add a per-minute markup, and Vapi’s HIPAA add-on is $2,000/month flat. The real cost is one-time engineering if you build custom, and the real payoff is on the revenue side, where recovering even a slice of a ~23% no-show rate dwarfs the run cost.

Cascade or speech-to-speech for a healthcare agent?

Cascade, for most clinics. A speech-to-text → LLM → text-to-speech pipeline produces a text transcript at every turn — the audit trail compliance and clinical QA need, and lets you redact PII, pin a validated model, and swap any non-BAA vendor. Speech-to-speech is lower latency but a black box mid-stream and ties you to a short list of providers. Choose it only if latency is binding and your provider signs a BAA covering audio.

Build in-house or buy a healthcare voice AI platform?

Buy a healthcare-specific platform (Assort Health, Hyro, Infinitus) if your needs are standard and you want a vendor to carry compliance. Assemble BAA-covered APIs if you need custom flows but can let cloud vendors hold PHI. Build and self-host when PHI can’t leave your boundary, the EHR work is deep, you’re white-labeling, or volume makes owning the stack cheaper. The BAA chain, not price, usually decides.

Voice AI

How to Build an AI Receptionist: Stack, Cost, Build vs Buy

The general phone-agent mechanics behind this healthcare-specific guide.

Clinical AI

AI Scribe Architecture: Ambient Clinical Documentation

The adjacent build — capturing the visit, not the phone call.

Telemedicine

Telemedicine Platform Development: A 2026 Guide

HIPAA, EHR integration, and the platform your agent plugs into.

Speech-to-speech

Integrating OpenAI Realtime API with WebRTC, SIP, WebSockets

If latency wins the trade-off, this is the lower-latency path.

Ready to answer every patient call?

Voice AI for healthcare is a normal voice pipeline wrapped in one non-negotiable: the BAA chain. Get every link covered or self-hosted, pick a cascade for the audit trail, tune endpointing for real patients, bake HIPAA, AB 3030, and TCPA into the greeting and the logs, and point it at scheduling and reminders where the no-show math pays for the whole thing. Buy a healthcare platform if your needs are standard, assemble BAA-covered APIs if you need custom flows, and build to self-host when compliance, deep EHR work, or white-label margin make owning the stack the honest answer.

We’ve shipped the appointment-booking voice agent, the SIP call routing, and the HIPAA telehealth platforms this guide is built from. If you’re weighing your own front desk or call center, the fastest way to the right call is 30 minutes with someone who’s built all three.

Let’s build a voice agent your compliance team will sign off on

Tell us your call volume, your EHR, and the data the agent touches. We’ll map the BAA chain, the disclosure lines, and the real cost, and tell you straight whether to build, assemble, or buy.

Book a 30-min call → WhatsApp → Email us →

Fora Soft builds real-time and AI software — 250+ projects since 2005, including HIPAA-compliant telehealth and voice systems. Explore our telemedicine learning hub or our AI integration services to go deeper.

  • Technologies
    Development
    Services