ADA News

Nearly 2.5 million people nationwide have had their health information breached since September, according to a report from the U.S. Department of Health and Human Services, and the numbers alone underline why dentists should be cognizant about protecting their patients' confidential information.

The breaches, each of which affected 500 or more individuals, were reported by nearly 80 individuals and organizations that are covered under the Health Insurance Portability and Accountability Act. HIPAA-covered entities are required to report the information to the federal government as part of the Health Information Technology for Economic and Clinical Health Act.

"It's not only a fact that it's the law, but it's also the fact that we're all patients ourselves, so we all have an interest in having our own information being secure, and we certainly want to treat all of our patients with that same kind of concern and respect," said Dr. Stephen Glenn, member of the Council on Dental Practice, who practices in Tulsa, Okla.

According to Michael Robinson, HHS spokesman, what's posted on the website doesn't cover every compromised patient health record, because only breaches that affect 500 or more individuals are required to be posted.

The breaches occurred at hospitals, student health centers, health care practitioner offices, insurance companies and other organizations. The information was taken from paper records, laptop computers, e-mails, portable electronic devices, mailings, hard drives and other places.

The information was compromised through theft, computer hacking, unauthorized access, loss, improper disposal and other ways. Information about the breaches is posted on the website as it’s reported and verified.

HIPAA protects the privacy and security of individuals' protected health information. The notification rule regulates when and how to notify patients, HHS and, in some cases, the media if unsecured protected health care information has been exposed in a security breach.

The ADA offers a guide for dentists to familiarize themselves with the requirements under HIPAA. The ADA Practical Guide to HIPAA Compliance: Privacy and Security Kit provides a step-by-step plan to help prepare and implement a HIPAA compliance program for a dental practice and also includes sample forms, policies, procedures, risk assessment questions, checklists and workforce training guidelines.

"The new Practical Guide to HIPAA Compliance kit includes updated privacy and security requirements as well as information about the HITECH breach notification rule," said Dr. Robert Ahlstrom, member of the Council on Dental Practice and chair of the Members Advisory Group. "Its price includes a three-year subscription service that will provide updates in a timely manner at no additional cost; this makes the new kit a great value as more regulatory changes are anticipated over the next three years."

The kit (J594 in the ADA Catalog) contains the manual, CD-ROM and update service through 2013. It's $225 for members and $337.50 for nonmembers.

The ADA is offering a $20 discount on all HIPAA guide orders through July 31 with offer code No. 10412. All products are available online at www.adacatalog.org or by calling 1-800-947-4746.