HIPAA Compliance Statement

Have Questions About Security?

Data Security

If you have questions about security and how DentalXChange handles your data take a look at our Privacy Policy and Security Paper for more information.

Under the Health Insurance Portability and Accountability Act of 1996 (HIPAA), EDI Health Group (EHG), DBA DentalXChange, is defined as a Covered Entity having the same responsibilities as Insurance Companies and Providers in protecting healthcare data. DentalXChange takes this role and the requirement to protect healthcare data seriously and complies with all applicable state and federal laws. We strive for continuous improvement as new best practices in data security are developed.

DentalXChange services and supporting infastructure are HITRUST certified and EDI Health Group takes part in multiple audits by our trading partners. Contact us to report compliance, security, or privacy issues.

HIPAA Compliance

In addition to complying with The Health Insurance Portability and Accountability Act of 1996 (HIPAA), DentalXChange constantly reviews and complies with best practices and evolving legislation including:

  • The Health Insurance Portability and Accountability Act of 1996 (HIPAA)
  • The Administrative Simplification Act (ASA)
  • American Recovery and Reinvestment Act of 2009 (ARRA)
  • The HIPAA Omnibus Rules
  • The Health Information Technology for Economic and Clinical Health Act (HITECH)
  • CAQH CORE Operating Rules

DentalXChange welcomes the opportunities presented by legislative data rules and safeguards. We believe that the guidance and standardization promised by these regulations will ultimately reduce the cost of healthcare and have a tangible positive effect on patient care.

HITRUST Certification

HITRUST in conjunction with an independent Third Party Assessor has certified and found EDI Health Group's DentalXChange, Registration, ClaimConnect, related queuing services, related Clearinghouse functions, DCI web services and related claim attachments, CustCare portal, Partner Support Portal, Approver Portal, and supporting infastructure to be in compliance with HITRUST CSF v9.1 and the NIST Cybersecurity Framework v1.0.

The HITRUST Common Security Framework (CSF) is a nationally recognized comprehensive risk based and compliance based privacy and security framework.

Additional information about HITRUST and the HITRUST CSF may be found on the HITRUST Alliance web site.

HITRUST CSF Certified