Florida Healthcare Compliance Requirements
State-specific breach notification rules, medical records retention periods, PDMP requirements, and mandatory reporting obligations for medical practices operating in Florida.
Breach Notification Rules
Notification deadline
30 calendar days
Notification must be made within 30 days after determination of the breach. Florida Department of Legal Affairs must be notified if 500+ individuals affected.
AG notification threshold
500+ affected individuals
Notify: AG (Department of Legal Affairs)
Harm analysis required
Penalty range
$1,000/day for first 30 days, $50,000 after 30 days, max $500,000 per breach
Medical Records Retention
| Record type | Retention period | Measured from |
|---|---|---|
| General medical | 7 years | Last treatment |
| Pediatric | 7 years | Patient turns 18 |
PDMP Requirements — E-FORCSE
Check required
All controlled substances
Check frequency
Every prescription
Delegation allowed
Penalty range
Third-degree felony for willful noncompliance; licensing board discipline; fines up to $5,000 per occurrence
Exemptions
Hospice patients, cancer treatment in licensed oncology facility, ≤3 day supply in ER, inpatient hospital or nursing home administration
Mandatory Reporting Obligations
Mandated reporters
Physicians, nurses, dentists, psychologists, social workers, and all persons who know or have reasonable cause to suspect child abuse
Report to
Florida Abuse Hotline, Department of Children and Families
Timeline
Immediately / as soon as possible
Penalty for failure
Third-degree felony if knowingly and willfully; first-degree misdemeanor otherwise
Immunity provision
Good faith reporters immune from civil and criminal liability under F.S. 39.203
Mandated reporters
All persons including healthcare professionals who know or have reasonable cause to suspect abuse
Report to
Florida Abuse Hotline, Department of Children and Families, Adult Protective Services
Timeline
Immediately / as soon as possible
Penalty for failure
Second-degree misdemeanor; first-degree misdemeanor for subsequent offense
Immunity provision
Good faith reporters immune from civil and criminal liability under F.S. 415.1036
Mandated reporters
Healthcare providers when treating injuries from suspected domestic violence
Report to
Local law enforcement
Timeline
Immediately / as soon as possible
Immunity provision
Good faith reporters immune from civil liability
Mandated reporters
Physicians, laboratories, healthcare facilities, and infection control practitioners
Report to
Florida Department of Health, County Health Department
Timeline
Within 24 hours
Penalty for failure
Second-degree misdemeanor, up to $500 fine
Immunity provision
Good faith reporters immune from civil liability
Mandated reporters
All physicians, nurses, and healthcare providers treating gunshot or life-threatening injuries
Report to
Local law enforcement immediately by phone
Timeline
Immediately / as soon as possible
Penalty for failure
First-degree misdemeanor, up to 1 year jail and/or $1,000 fine
Immunity provision
Good faith reporters immune from civil and criminal liability
Stay compliant in Florida
GuardWell tracks Florida-specific breach deadlines, PDMP requirements, retention periods, and mandatory reporting obligations automatically.