Data from mail and telephone surveys of registries in 41 States and the District of Columbia and site visits in 9 States found greater variety in recordkeeping, safeguards, and uses of data than was anticipated. Moreover, every registry was in the process of changing some aspect of its operations, especially in the way records were kept, risk assessment was conducted, the hotline was operated, or the computer system was configured. Changes were not consistently in one direction. For example, some registries were removing unsubstantiated cases from the register, while others were modifying their programs to add unsubstantiated cases to the record. The original goals for which registries were initially established -- diagnosis, tracking, research and case management -- all have undergone change. Most registries are not organized to accomplish diagnosis and tracking, and registry data are underutilized for research. All registries use data for case management and planning to some extent. Given the uses of data, the legal requirements for recordkeeping, due process, record confidentiality, and expungement of data are no different than those required for managing child protective services data or other Government records. Registries that perform a screening function (e.g., licensing, employment) will require more stringent safeguards. Supplemental data and information are appended. 89 references. (Author abstract modified)