Indiana Healthcare Compliance Requirements
State-specific breach notification rules, medical records retention periods, PDMP requirements, and mandatory reporting obligations for medical practices operating in Indiana.
Breach Notification Rules
Notification deadline
Most expedient time possible
Notification must be made without unreasonable delay. AG must be notified.
AG notification threshold
All breaches
Notify: AG
Harm analysis required
Penalty range
Up to $150,000 per deceptive act
Medical Records Retention
| Record type | Retention period | Measured from |
|---|---|---|
| General medical | 7 years | Last treatment |
| Pediatric | 7 years | Patient turns 18 |
PDMP Requirements — INSPECT
Check required
All controlled substances
Check frequency
Every prescription
Delegation allowed
Penalty range
Licensing board discipline; civil penalties; Class A infraction for willful noncompliance
Exemptions
Hospice patients, inpatient hospital administration, ≤3 day supply in ER, cancer treatment in licensed facility
Mandatory Reporting Obligations
Mandated reporters
Any person including healthcare professionals who has reason to believe a child is a victim of abuse or neglect
Report to
Department of Child Services (DCS) or local law enforcement
Timeline
Immediately / as soon as possible
Penalty for failure
Class B misdemeanor; Class A misdemeanor if person has knowledge of sexual abuse
Immunity provision
Good faith reporters immune from civil and criminal liability under IC 31-33-6-1
Mandated reporters
Any person including healthcare professionals who believes an endangered adult is a victim of abuse
Report to
Adult Protective Services, Division of Aging
Timeline
Immediately / as soon as possible
Penalty for failure
Class B misdemeanor
Immunity provision
Good faith reporters immune from civil and criminal liability
Mandated reporters
Healthcare providers treating injuries from suspected domestic violence
Report to
Local law enforcement
Timeline
Immediately / as soon as possible
Immunity provision
Good faith reporters immune from civil liability
Mandated reporters
Physicians, laboratories, and healthcare facility administrators
Report to
Indiana State Department of Health or local health department
Timeline
Within 24 hours
Penalty for failure
Class B misdemeanor
Immunity provision
Good faith reporters immune from civil liability
Mandated reporters
All healthcare providers treating gunshot wounds or wounds from criminal violence
Report to
Local law enforcement
Timeline
Immediately / as soon as possible
Penalty for failure
Class B misdemeanor
Immunity provision
Good faith reporters immune from civil and criminal liability
Stay compliant in Indiana
GuardWell tracks Indiana-specific breach deadlines, PDMP requirements, retention periods, and mandatory reporting obligations automatically.