Minnesota Healthcare Compliance Requirements
State-specific breach notification rules, medical records retention periods, PDMP requirements, and mandatory reporting obligations for medical practices operating in Minnesota.
Breach Notification Rules
Notification deadline
Most expedient time possible
Notification must be made in the most expedient time possible and without unreasonable delay, no later than 60 days. AG must be notified if 500+ Minnesota residents affected.
AG notification threshold
500+ affected individuals
Notify: AG
Harm analysis required
Penalty range
Enforceable by AG under consumer protection statutes; private right of action available
Medical Records Retention
| Record type | Retention period | Measured from |
|---|---|---|
| General medical | 7 years | Last treatment |
PDMP Requirements — MN PMP
Check required
All controlled substances
Check frequency
Every prescription
Delegation allowed
Penalty range
Licensing board discipline; civil penalties up to $10,000; possible misdemeanor
Exemptions
Hospice patients, cancer treatment, ≤3 day supply in ER, inpatient hospital or long-term care administration, medication-assisted treatment
Mandatory Reporting Obligations
Mandated reporters
Healthcare professionals including physicians, nurses, dentists, psychologists, social workers, and all persons in healing arts
Report to
Local welfare agency, county child protection, or local law enforcement
Timeline
Immediately / as soon as possible
Penalty for failure
Gross misdemeanor for knowing failure to report; misdemeanor otherwise
Immunity provision
Good faith reporters immune from civil and criminal liability under Minn. Stat. 626.556
Mandated reporters
Healthcare professionals and all persons working in healthcare settings
Report to
Common Entry Point, Adult Protective Services, local law enforcement
Timeline
Immediately / as soon as possible
Penalty for failure
Gross misdemeanor
Immunity provision
Good faith reporters immune from civil and criminal liability
Mandated reporters
Healthcare providers are not mandated to report domestic violence in adults; encouraged to assess and refer
Report to
Local law enforcement (voluntary reporting permitted)
Timeline
Immediately / as soon as possible
Immunity provision
Good faith reporters immune from civil liability
Mandated reporters
Physicians, laboratories, infection control practitioners, and healthcare facility administrators
Report to
Minnesota Department of Health
Timeline
Within 24 hours
Penalty for failure
Misdemeanor, up to $1,000 fine
Immunity provision
Good faith reporters immune from civil liability
Mandated reporters
All healthcare providers treating gunshot wounds or injuries from criminal violence
Report to
Local law enforcement
Timeline
Immediately / as soon as possible
Penalty for failure
Misdemeanor
Immunity provision
Good faith reporters immune from civil and criminal liability
Stay compliant in Minnesota
GuardWell tracks Minnesota-specific breach deadlines, PDMP requirements, retention periods, and mandatory reporting obligations automatically.