Patient Privacy Rights
We are committed to safeguarding your personal health information. Your trust is the foundation of our care.
How We Protect Your Information
At Dr. Alan S. Lee, DDS, protecting your privacy is not just a legal requirement — it is a core value of our practice. We comply with the Health Insurance Portability and Accountability Act (HIPAA) and maintain strict policies to keep your personal health information (PHI) safe. This page summarizes your privacy rights and our commitments. For the complete legal notice, please see our full HIPAA Notice of Privacy Practices.
Your Privacy Rights Under HIPAA
Right to Access Your Records
You have the right to inspect and obtain a copy of your dental and billing records. We must respond to your request within 30 days. A reasonable fee may apply for copies.
Right to Request Amendments
If you believe your records are incorrect or incomplete, you may request an amendment in writing. We must respond within 60 days. If we deny your request, you may submit a statement of disagreement.
Right to an Accounting of Disclosures
You may request a list of disclosures we have made of your health information for purposes other than treatment, payment, or healthcare operations within the past six years.
Right to Request Restrictions
You may ask us to limit how we use or disclose your information for treatment, payment, or operations. We must honor a request to restrict disclosure to a health plan if you pay out of pocket in full.
Right to Confidential Communications
You may request that we communicate with you in a specific way or at a specific location — for example, by calling your cell phone instead of your home phone.
Right to a Paper Copy
You are entitled to receive a paper copy of our Notice of Privacy Practices at any time, even if you have previously agreed to receive it electronically.
Right to Breach Notification
If a breach of your unsecured health information occurs, we are required to notify you in writing within 60 days of discovery.
Right to Authorize Uses
Any use or disclosure not described in our notice requires your written authorization. You may revoke authorization at any time, except to the extent we have already acted on it.
How We Protect Your Information
Administrative Safeguards
Staff training on privacy policies, designated Privacy Officer, regular policy reviews, and access controls that limit who can view your information.
Physical Safeguards
Secure locked storage for paper records, restricted facility access, and safeguards for workstations and devices that contain patient data.
Technical Safeguards
Encrypted digital records, secure network access, unique user authentication, audit logs, and automatic session timeouts on all systems.
Business Associate Agreements
All third-party vendors who handle your information sign HIPAA-compliant agreements requiring them to protect your data with the same level of care.
Information We Will Never Share
We will never sell your health information to third parties for marketing purposes.
We will never share your information without your authorization, except as described in our HIPAA notice.
We will never use your information for fundraising without your explicit written consent.
We will never retaliate against you for filing a privacy complaint.
Read the Complete HIPAA Notice
For the full legal text of our Notice of Privacy Practices, including all permitted uses and disclosures, please view our complete HIPAA notice.