CPSA Portal will be unavailable from Dec. 13 – 15 due to a scheduled outage. Please complete your annual renewal and/or access documents and other applications outside of these dates. We apologize for the inconvenience.

Patient Record Retention

Standard of Practice

Under Review: No
Issued by Council (Patient Records): January 1, 2010
Reissued by Council: July 1, 2011
Reissued by Council (Patient Record Retention): January, 2016
Reissue included both Patient Record Content and Patient Record Retention.

The Patient Records standard was split into Patient Record Content and Patient Record Retention in January 2016. Please refer to both standards for all expectations related to patient records.


  1. A regulated member must ensure a patient record1:
    1. is compliant with relevant legislation;
    2. is stored in a manner that protects patient confidentiality through administrative, technical and physical safeguards;
    3. is under the custody and control of a custodian as defined in the Health Information Act (HIA);
    4. is retrievable and available for authorized sharing within a reasonable time period to facilitate continuity of patient care; and
    5. facilitates the:
      1. collection of data for quality improvement activities; and
      2. sharing of standardized data sets to the Alberta Electronic Health Record (Netcare) or equivalent.
  2. A regulated member acting as a custodian2 must have policies and procedures in place in accordance with the HIA that:
    1. includes an information manager agreement, if an information manager has been identified;
    2. establishes processes for the retention, protection, access, disclosure and secure destruction of patient health information; and
    3. clarifies roles, expectations and accountabilities of all parties.
  3. A regulated member acting as a custodian who shares patient information with other custodian(s) must have an information sharing agreement that clarifies access, transfer and return of patient records.
  4. A regulated member acting as a custodian must designate a successor custodian3 to ensure the retention and accessibility of patient records in the event the regulated member is unable to continue as custodian.
  5. A regulated member must complete a privacy impact assessment4 prior to changing or implementing any administrative practice or information system relating to the collection, use and disclosure of individually identifiable patient health information.
  6. A regulated member must ensure patient records are retained and accessible for a minimum of:
    1. ten (10) years from the date of last record entry for an adult patient; and
    2. ten (10) years after the date of last record entry for a minor patient, or two years after the patient reaches or would have reached the age of eighteen (18), whichever is longer.
  7. At the request of a patient, a regulated member must provide the patient with timely access to the patient’s record in accordance with the HIA.
  8. A regulated member may charge a fee in accordance with the HIA for providing a patient with a copy of the patient’s record.
  9. A regulated member must not charge a fee for providing another healthcare provider with limited patient information.

  1. Refers to either a paper-based or electronic record.
  2. Regulated members are designated custodians under the Health Information Regulation.
  3. Reference: Health Information Act Section 35(1)(q)
  4. Reference:  Health Information Act Section 64

About the Standards of Practice

The CPSA Standards of Practice are the minimum standards of professional behaviour and ethical conduct expected of all physicians registered in Alberta. Standards of practice are enforceable under the Health Professions Act and will be referenced in the management of complaints and in discipline hearings.

Questions?

For questions or archived standards, policies and guidelines contact our Standards of Practice Advisor.

  • This field is for validation purposes and should be left unchanged.