DentistryIQ.com recently released a great article regarding a fairly frequently asked question and HIPAA compliance. Have a look:

QUESTION: We get a lot of requests from specialists and other general dentists to email patients’ radiographs. When we tell them we can’t send them because we’re not encrypted, they’re not happy and have told us we’re taking things too far. What’s the right thing to do?

ANSWER FROM MICHELLE KRATT, FAADOM, FADIA:
I actually get this question a lot. Technically, it is NOT a violation to send Protected Health Information (PHI) in an unencrypted email, however, it IS a violation if that email is intercepted and/or read by someone without authorized access. The emails that most dental practices use (Outlook, Gmail, Hotmail, etc.) are not encrypted, and in fact, some of these companies actually read the content included in your emails...

 READ THE FULL STORY HERE