The law states that all entries into a patient’s medical record must either be signed or electronically authenticated by the treating physician or practitioner. If the hospital uses electronic means to generate a medical record, each user must have a security password that is known only to that individual in order to authenticate the record.1 Hospitals are also required to store all patient records securely and protect against unauthorized use.2
| Subtopic | Statute/Regulation | Description |
|---|
| Security of Health Information | Authentication of Hospital Medical Records - 10-144-112 Me. Code R. § XII.F | All entries into a patient’s medical record must either be signed or electronically authenticated by the treating physician or practitioner.... |
| Patient Record Retention for Hospitals - 10-144-112 Me. Code R. § XII.B | All patient records must be kept for a period of 7 years. If the patient is a minor, the records must be retained for at least 6 years after... |
Please consider making a donation to keep this project's resources available at no cost to the public. Your donation will support new research, updates to current resources, and website maintenance for HealthInfoLaw.org.
.png)