Cosmos Governance
To maintain a high standard of security and privacy and to ensure appropriate use of the data, Cosmos is governed by an elected council of 15 members from the Cosmos community. Each organization agrees to abide by the Cosmos Rules of the Road, and each user agrees to uphold the standards of Cosmos.
Rules of the Road
Health systems that participate in Cosmos agree to a legal structure that establishes shared trust. These rules govern the appropriate use of Cosmos and support several key commitments, such as:
- Cosmos data cannot be sold, and line-level data never leaves the secure Cosmos portal.
- Data cannot be used for advertising or market comparisons.
- Violation can result in permanent loss of access.
Privacy
Patient and organizational privacy and security are of the utmost importance in governance of Cosmos. Patient identifiers are removed before any data is moved from a healthcare organization. Data protection goes beyond current HIPAA requirements.
Security
No user can access Cosmos data without attesting to their use and disclosing funding sources. Users can access only fully deidentified data, and all actions in Cosmos are audited to ensure appropriate use.
Cosmos Governing Council
The Council is made up of 15 members elected by their peers to represent the community and oversee the Cosmos Rules of the Road. Select a council member below to learn more.
Copyright © Epic Systems Corporation 2026.
This page is not viewable using Internet Explorer. Please try accessing it with an alternate browser.