Revised June 28, 2018
The HIPAA Privacy Rule creates national standards to protect individuals’ medical records and other personal health information and to give patients more control over their health information. It sets limits on the use and release of health records. It establishes safeguards that providers and health plans must implement to protect the privacy of health information. The Privacy Rule provides that, in general, a covered entity may not use or disclose an individual’s healthcare information without permission except for treatment, payment, or healthcare operations. The Privacy Rule will require the average healthcare provider or health plan to do the following:
• Notify patients about their privacy rights and how their information can be used.
• Adopt and implement privacy procedures for its practice, hospital, or plan.
• Train employees so that they understand privacy procedures.
• Designate an individual to be responsible for seeing that privacy procedures are adopted and followed.
• Secure records containing individually identifiable health information so that they are not readily available to those who do not need them.
DynaFlex is completely compliant with the HIPAA regulations. Because we use the individual’s healthcare information for treatment, the dental/orthodontic laboratory is considered a health care provider and the dentist can freely share the information with us, within the guidelines of the rules.