HIPAA-covered dental practices must report breaches of unsecured protected health information that occurred in 2014 and affected fewer than 500 individuals to the U.S. Department of Health and Human Services Office for Civil Rights by March 1, according to an ADA News article.
A covered dental practice must report breaches affecting fewer than 500 individuals within 60 days of the end of the calendar year in which the breach was discovered, while those affecting 500 or more individuals must be reported without unreasonable delay and no later than 60 calendar days from the breach discovery, according to the story.
All breach reports can be submitted electronically on the OCR website.