We have 2 options to make Controlio HIPAA compliant:
Option 1:
If you want to make the Cloud-based version of Controlio HIPAA compliant, you should disable screen recording or exempt all apps containing patient data from being recorded.
Option 2:
If you implement an On-premises version of Controlio, it will meet HIPAA with all features enabled. No data will be sent out of your organization.