As part of HIPAA requirements, dentists who transmit electronic health records must comply with the Security Rule, which requires them to adopt adequate means for safeguarding the confidentiality, integrity, and availability of patients’ protected health information. Examples of security measures in a dental office include: restricting access to computer workstations, controlling facility access, locking up patient records, installing firewalls, passwords, data encryption, data back-up plans, and training.
All covered entities should perform a risk analysis to assess vulnerabilities and the mechanisms currently in place to mitigate them. Additional controls should be implemented as needed.
For our OSHA Review Subscribers: The January/February 2012 issue of OSHA Review includes a HIPAA checklist to help dentists conduct a risk analysis. The checklist can also be downloaded from OSHA Review’s website in the restricted section under Documents.
Since 1992, OSHA Review, Inc. has provided dental professionals with comprehensive programs to support regulatory compliance and infection control. We are a registered continuing education provider in the state of California, specializing in Dental Practice Act, infection control, and OSHA training.