District of Columbia Healthcare Compliance Requirements
State-specific breach notification rules, medical records retention periods, PDMP requirements, and mandatory reporting obligations for medical practices operating in District of Columbia.
Breach Notification Rules
Notification deadline
Most expedient time possible
Notification must be made in the most expedient time possible and without unreasonable delay. AG must be notified along with affected individuals.
AG notification threshold
All breaches
Notify: AG
Harm analysis required
Penalty range
Up to $100 per notification failure, max $25,000
Medical Records Retention
| Record type | Retention period | Measured from |
|---|---|---|
| General medical | 3 years | Last treatment |
| Pediatric | 3 years | Patient turns 18 |
PDMP Requirements — DC PMP
Check required
All controlled substances
Check frequency
Every prescription
Delegation allowed
Penalty range
Licensing board discipline; civil fines up to $5,000 per violation
Exemptions
Hospice patients, cancer treatment, inpatient hospital administration, ≤7 day supply in emergency
Mandatory Reporting Obligations
Mandated reporters
Physicians, nurses, dentists, psychologists, social workers, and all licensed healthcare professionals
Report to
Child and Family Services Agency (CFSA) Hotline or Metropolitan Police Department
Timeline
Immediately / as soon as possible
Penalty for failure
Misdemeanor, up to $1,000 fine and/or 180 days jail
Immunity provision
Good faith reporters immune from civil and criminal liability
Mandated reporters
Physicians, nurses, and all healthcare professionals
Report to
Adult Protective Services, Department of Disability Services
Timeline
Within 24 hours
Penalty for failure
Misdemeanor, up to $1,000 fine
Immunity provision
Good faith reporters immune from civil and criminal liability
Mandated reporters
Healthcare providers treating injuries reasonably believed caused by domestic violence
Report to
Metropolitan Police Department
Timeline
Immediately / as soon as possible
Immunity provision
Good faith reporters immune from civil liability
Mandated reporters
Physicians, laboratories, healthcare facilities, and infection control professionals
Report to
DC Department of Health, Division of Epidemiology
Timeline
Within 24 hours
Penalty for failure
Up to $5,000 fine per violation
Immunity provision
Good faith reporters immune from civil liability
Mandated reporters
All healthcare providers treating gunshot or stab wounds
Report to
Metropolitan Police Department
Timeline
Immediately / as soon as possible
Penalty for failure
Misdemeanor, up to $1,000 fine
Immunity provision
Good faith reporters immune from civil and criminal liability
Stay compliant in District of Columbia
GuardWell tracks District of Columbia-specific breach deadlines, PDMP requirements, retention periods, and mandatory reporting obligations automatically.