Yesterday, a leading dental service organization with 1000+ practices experienced a cybersecurity attack. While the company is currently investigating whether personal information of their patients was compromised, it is just another example of the litany of similar attacks experienced in our industry. In what is believed to be the first census of such attacks, investigators report in the journal JAMA Health Forum that 374 ransomware attacks were carried out against clinics, hospitals, dental offices, diagnostic laboratories, emergency medical services and other health care delivery organizations between 2016 and 2021.
Attacks like these are why Curve makes protecting data a priority. It’s hard to predict when and where an attack may happen, but there are things you can do to help protect yourself. One big thing is to consider a cloud-based practice management solution for your practice.
94% of businesses saw an improvement in security after switching to the cloud, according to research by Salesforce.com. With cloud platforms you have several security advantages including continual backups of your data so copies of your mission-critical information are stored elsewhere.
Curve stores and manages all data in a top-tier Amazon Web Services (AWS) Data Center.
These are the Certifications That Help Protect Your Data
Curve is ISO 9001 Certified which is the world's most recognized Quality Management System (QMS) standard. This is achieved by building a framework to ensure consistent quality in the provision of goods and/or services.
AWS is an ISO 27001 certified Information Security Management System (ISMS), a leading international standard focused on information security, published by ISO in partnership with the International Electrotechnical Commission (IEC).
Our Data Center is also HIPAA Compliant
The AWS data center provides HIPAA compliant data security. AWS System and Organization Controls (SOC) Reports, which are independent third-party examination reports that demonstrate how AWS achieves key compliance controls and objectives, are available on its website.
Compliance with Canadian Laws including PIPEDA
Curve Dental collects and stores personal information pursuant to the Personal Information Protection and Electronic Documents Act (PIPEDA), and personal health information (PHI) under the various provincial statutes that govern its protection. Dentists, called Custodians or Trustees under those acts, are allowed to use agents, such as Curve Dental and the software products it sells, to assist them when they manage their businesses to provide care.
To learn more about how Curve can help keep your independent dental practice or DSO data safe, book a demo today.