Hawaii Healthcare Compliance Requirements
State-specific breach notification rules, medical records retention periods, PDMP requirements, and mandatory reporting obligations for medical practices operating in Hawaii.
Breach Notification Rules
Notification deadline
Most expedient time possible
Notification must be made without unreasonable delay, consistent with law enforcement needs and measures to determine scope of breach.
AG notification threshold
All breaches
Notify: Hawaii Office of Consumer Protection
Harm analysis required
Penalty range
Up to $2,500 per violation under consumer protection law
Medical Records Retention
| Record type | Retention period | Measured from |
|---|---|---|
| General medical | 7 years | Last treatment |
PDMP Requirements — Hawai'i PMP
Check required
All controlled substances
Check frequency
Every prescription
Delegation allowed
Penalty range
Licensing board discipline; civil penalties; possible misdemeanor charges
Exemptions
Hospice patients, cancer treatment, inpatient hospital administration, ≤3 day supply administered in office
Mandatory Reporting Obligations
Mandated reporters
Physicians, nurses, dentists, psychologists, social workers, and all healthcare professionals
Report to
Department of Human Services, Child Welfare Services
Timeline
Immediately / as soon as possible
Penalty for failure
Petty misdemeanor
Immunity provision
Good faith reporters immune from civil and criminal liability under HRS 350-3
Mandated reporters
Physicians, nurses, and all licensed healthcare professionals
Report to
Adult Protective Services, Department of Human Services
Timeline
Immediately / as soon as possible
Penalty for failure
Petty misdemeanor
Immunity provision
Good faith reporters immune from civil and criminal liability
Mandated reporters
Healthcare providers when treating injuries reasonably suspected to result from domestic abuse
Report to
Local law enforcement
Timeline
Immediately / as soon as possible
Immunity provision
Good faith reporters immune from civil liability
Mandated reporters
Physicians, laboratories, and healthcare facility administrators
Report to
Hawaii Department of Health, Disease Outbreak Control Division
Timeline
Within 24 hours
Penalty for failure
Misdemeanor, up to $1,000 fine
Immunity provision
Good faith reporters immune from civil liability
Mandated reporters
All healthcare providers treating gunshot wounds or stab wounds
Report to
Local law enforcement
Timeline
Immediately / as soon as possible
Penalty for failure
Petty misdemeanor
Immunity provision
Good faith reporters immune from civil and criminal liability
Stay compliant in Hawaii
GuardWell tracks Hawaii-specific breach deadlines, PDMP requirements, retention periods, and mandatory reporting obligations automatically.