TABLE OF CONTENTS
This checklist provides a high-level compliance framework for U.S. med spas, organized around six regulatory pillars commonly examined by medical boards, auditors, and enforcement agencies. It is designed as a self-assessment tool to help identify structural and operational risk areas, not as legal advice.
1. Ownership & CPOM Compliance
2. Licensing & Scope of Practice
Ownership structure has been reviewed and approved by healthcare counsel
MSO / PPMC agreements are properly executed and current
Physician entity retains full authority over clinical decisions
Non-physician owners do not exercise clinical control
Med spa operations comply with all applicable state-specific medical spa and aesthetic medicine laws
Licensure and scope-of-practice requirements are reviewed for estheticians and all non-physician service providers
All clinical staff are properly licensed and practicing within scope
3. Medical Director & Physician Supervision
Medical director duties are clearly defined and actively performed
Physician supervision requirements meet state-specific standards
4. Clinical Documentation & Informed Consent
Patients receive and acknowledge written disclosure of procedure risks and limitations
Treatment expectations and aftercare requirements are reviewed before consent
Medical records document patient understanding prior to consent
Executed consent forms are securely retained and audit-ready
5. HIPAA & Data Privacy
Patient data handling complies with HIPAA and state privacy laws
Staff are trained on HIPAA and data privacy requirements
Access to PHI is restricted, monitored, and regularly reviewed
Data security policies are reviewed and updated as risks evolve
6. Financial, Tax & Fee-Splitting Compliance
Patient data handling complies with HIPAA and state privacy laws
Staff are trained on HIPAA and data privacy requirements
Access to PHI is restricted, monitored, and regularly reviewed
Data security policies are reviewed and updated as risks evolve
Advertising and marketing claims comply with medical advertising rules
Frequently Asked Questions
Med Spa Compliance Survival Checklist: A Regulatory Risk Framework
The following framework provides a comprehensive roadmap for navigating the complex regulatory environment governing the medical aesthetic industry. By prioritizing clinical integrity and administrative adherence, practitioners can effectively mitigate liability and ensure long-term operational sustainability. This checklist serves as a strategic instrument for aligning your business objectives with the highest standards of patient safety and state-specific legal mandates.
Legal Disclaimer
This content is for general informational purposes only and does not constitute legal, medical, or financial advice. Laws and regulations vary by state, and readers should consult qualified legal and healthcare professionals before making business or clinical decisions.
Published on January 29th, 2026 | Written by Marc Pamatian
Schedule a Consultation
Ready to find out how your business having its own Chief Bookkeeping Officer can help?