"I just don't feel right using Gmail to communicate private information with the patient." You know what NP Mutembete, we have to agree with you 100% on that one! I have a sneaking suspicion that the United States Department of Health and Human Services does too. It's not like a HIPAA violation due to willful neglect is a big deal or anything. Just civil liability to the tune of $10,000 - $50,000 per violation, with an annual maximum of $250,000 for repeat violations, and potential federal criminal penalties as well. Generally speaking, it's a good idea to make sure your practice is HIPAA-compliant before seeing your first patient. Technically, Gmail along with other Google Workspace business products can be made HIPAA-compliant, but we're going to take a wild guess that someone asking questions like this has probably not done so. Oops!