An independent cybersecurity review across many of New York’s largest dental groups reveals a wide range of results. Practices handle protected health information (PHI) every day, yet many show significant gaps in email authentication and transport security.
Using data from audit.emailmenow.com, we evaluated each practice’s domain across SPF, DKIM, DMARC, transport security (MTA-STS/TLS), and website security headers.
Cybersecurity Scores of Major New York Dental Groups
Overall compliance scores from audit.emailmenow.com. Re-run any domain at the link to verify.
| Rank | Practice / Group | Domain | Overall Score | Performance Level |
|---|---|---|---|---|
| 1 | Metro Dental Care | metrodentalcare.com | 71% | Strong |
| 2 | Park Avenue Smiles | parkavenuesmiles.com | 50% | Below Average |
| 3 | Riverdale Dental Arts | riverdaledds.com | 48% | Below Average |
| 3 | New York Dental Office | nydentaloffice.com | 48% | Below Average |
| 5 | 209 NYC Dental | 209nycdental.com | 44% | Weak |
| 5 | Gallery57 Dental | gallery57dental.com | 44% | Weak |
| 7 | ProHEALTH Dental | prohealthdental.com | 38% | Weakest |
What the Results Reveal
- Scores range from 71% (Metro Dental Care) down to 38% — only one New York dental group reaches a strong posture.
- Most NYC-area practices land in the Weak or Below-Average bands, leaving patient billing and insurance email exposed.
- Weak authentication makes phishing of patient billing and insurance communications far easier and undermines the HIPAA Security Rule’s safeguard requirements.
Why This Matters for Dental Groups
The HIPAA Security Rule requires every practice to perform and document a security risk analysis and safeguard ePHI in transit. Email and web exposures are among the most common findings in OCR investigations.
Check any practice’s posture at audit.emailmenow.com/?industry=healthcare-practices.
Recommendations
- Enforce DMARC (
p=reject), strict SPF (-all), and DKIM signing. - Add MTA-STS and website security headers.
- Complete and document a HIPAA security risk analysis, and oversee Business Associate vendors that touch PHI.
Protect your practice and your patients. Run a free Instant Cybersecurity Audit at audit.emailmenow.com/?industry=healthcare-practices.
Contact EmailMeNow IT Consulting for help with HIPAA documentation and email security hardening.
Source & methodology: Overall compliance scores from the free scan at audit.emailmenow.com — each domain checked for email authentication (SPF, DKIM, DMARC), transport security (MTA-STS/TLS), website security headers, and network security. Re-run any domain at the link to verify.