Filing patient charts requires following a combination of federal privacy laws, standardized naming and numbering systems, and strict documentation rules that govern how records are organized, corrected, stored, and eventually destroyed. Whether your office uses paper files, electronic health records, or both, the same core principles apply: protect patient information, file consistently so records can be retrieved without error, and maintain everything for at least seven years.
HIPAA Privacy and Security Rules
The Privacy Rule applies to all forms of protected health information, whether electronic, written, or oral. Every covered entity (hospitals, clinics, insurance plans, clearinghouses) and their business associates must put safeguards in place to prevent improper use or disclosure of patient information. That means limiting who can view and access charts, training employees on proper handling, and using the “minimum necessary” standard: only the information needed for a specific task should be accessed or shared.
The Security Rule adds a second layer specifically for electronic records. It requires administrative, physical, and technical safeguards such as password protection, encryption, and audit controls that track who opened a file and when. If your office files paper charts, locked storage areas and sign-out logs serve the same purpose. Any time a chart is disclosed to an outside party, the date of that disclosure must be logged so patients can request an accounting of who has seen their information.
Alphabetical Filing Rules
When charts are filed by patient name, standardized indexing rules prevent the confusion that comes from inconsistent spelling or formatting. These rules matter more than they might seem: a single misfiled chart can delay care or lead to duplicate records.
- Prefixes and particles: Treat prefixes like Van, De, Mac, Mc, O’, St., La, and Von as part of a single unit. “Van Damme” is alphabetized as if it were spelled “Vandamme.” Ignore variations in spacing, punctuation, or capitalization. File “St.” as though it were spelled out as “Saint.”
- Hyphenated names: Treat the entire hyphenated name as one unit. Ignore the hyphen and alphabetize by the first part of the name.
- Titles and suffixes: Ignore titles like Dr., Officer, or Reverend when they appear with a full name. A title only counts as a filing unit when it’s used with a single name (for example, “Dr. Phil” would be filed under D). Seniority terms like Jr., Sr., II, or III, along with professional designations like M.D. or Ph.D., are ignored unless two patients have otherwise identical names.
Numeric Filing Systems
Most large healthcare facilities file charts by medical record number rather than by name. The two main approaches are straight numeric filing and terminal digit filing, and they differ significantly in how they distribute workload and reduce errors.
Straight Numeric Filing
Charts are placed in strict sequential order by registration number. Records 45677, 45678, 45679, and 45680 sit side by side. The system is easy to learn, which makes training simple. The downsides become obvious in busy settings: staff must consider every digit in the number at once, raising the chance of misfiling. The heaviest activity clusters around the newest numbers, so multiple employees end up competing for the same section of shelving. Quality control is also harder because you can’t assign one person to monitor a fixed section of the file room.
Terminal Digit Filing
Terminal digit filing was developed to solve those congestion problems. Instead of reading a record number left to right, you break it into three two-digit segments and read from right to left. Record number 123456 becomes 12-34-56. The last two digits (56) are the primary filing unit and determine which of 100 main sections the chart goes into. The middle two digits (34) identify the area within that section. The first two digits (12) pinpoint the record’s exact position.
This approach distributes charts evenly across the entire filing area, which means multiple staff members can file and retrieve records simultaneously without crowding the same shelves. It’s especially valuable for facilities with long number strings and high volume. The tradeoff is a steeper learning curve, since the right-to-left reading order feels counterintuitive at first.
Electronic Filing Conventions
Digital chart systems bring their own organizational rules. While your EHR software handles much of the structure automatically, any supplemental documents you upload or export need consistent naming. A widely used convention from the Health Resources and Services Administration starts each file name with a folder number, followed by a period, then a sequential document number and a short descriptive title of 35 characters or fewer. If multiple documents fall under the same item, letters are appended (3.1a, 3.1b, and so on).
The key principle is that the same document should not be uploaded to multiple folders. If your internal file name already clearly references the document and stays within the character limit, you only need to add the numbering prefix to the existing name. Any uploaded documents containing personally identifiable information should be redacted before sharing outside the live EHR environment.
Rules for Correcting Chart Entries
Errors in patient charts are inevitable, but the method for fixing them is strictly regulated. The overriding rule is simple: never obliterate the original entry. Every correction must preserve what was originally written so that both versions remain visible.
Three types of changes are recognized:
- Late entry: Supplies information that was omitted from the original note. It carries the current date, should be added as soon as possible, and is only appropriate when the person writing it has full recall of the omitted details. The person making the entry signs it.
- Addendum: Provides information that was not available at the time of the original entry. It also carries the current date and must include the reason for the addition or clarification. The author signs it.
- Correction: Fixes an error in an existing entry. In paper records, draw a single line through the incorrect text so it remains legible. Initial and date the strikethrough, note the reason for the correction above or in the margin, and write the corrected information on the next available line with the current date and time, referencing back to the original entry.
Electronic records follow the same principles. The system must track both the original entry and the correction, along with the date, time, reason for the change, and identity of the person who made it. If a hard copy is printed from the electronic record, both versions must show the correction.
Retention Periods
Federal regulations from the Centers for Medicare and Medicaid Services require medical records to be maintained for seven years from the date of service. That applies to physicians, non-physician practitioners, hospitals, and other providers and suppliers participating in Medicare.
State laws often add longer requirements, particularly for pediatric records, which many states require to be kept until the patient reaches a certain age (often 18 or 21) plus an additional retention period. Your facility should follow whichever rule, federal or state, demands the longer retention.
Proper Destruction of Records
Once the retention period expires, records containing protected health information cannot simply be thrown away. The Department of Health and Human Services specifies approved destruction methods for both formats.
Paper records must be shredded, burned, pulped, or pulverized so that the information is unreadable, indecipherable, and impossible to reconstruct. Tossing intact pages into a dumpster, even in a bag, does not meet the standard. Shredding or equivalent destruction must happen before records reach any general waste receptacle.
Electronic media can be cleared by overwriting it with non-sensitive data using specialized software, purged by degaussing (exposing the media to a strong magnetic field that disrupts stored data), or physically destroyed through disintegration, pulverization, melting, incineration, or shredding of the media itself. The method you choose depends on the sensitivity of the data and whether you plan to reuse the storage device. If the device will be discarded, physical destruction is the most certain option.