top of page
Tooth Nerd Logo Black White_edited.jpg
Tooth Nerd Logo Black White_edited.jpg

<- Back

California

Your all-in-one guide for OSHA, HIPAA, Infection Control, Radiation Safety, HR, and State Board CE.

Operate with confidence. This California guide explains what’s required and how to keep it organized year after year.

♥️ CE and Compliance Courses for Dental Professionals

Our Services: Tailor-Made Services for Every Need

Give us a try! 

10% off

Use Coupon Code  toothnerd2025

Young woman at a brightly lit conference.jpg

Crafted by clinical risk experts with real-world dental experience — and backed by top-tier friends across the industry.

Patterson-microsite-logo-new.png
dsn-logo.webp
JA Logo.webp
AGD logo.png
maris-list-logo.webp

Federal Compliance Guidelines for Dental Practices

Last Reviewed 10/27/2025

Protecting your team, your patients, and your license starts with knowing the federal standards that every dental practice must meet.
 

Dental practices operate in one of the most regulated environments in healthcare. Federal agencies such as OSHA, HHS, CDC, and the FDA establish national rules that define safe, ethical, and compliant dental care. Whether you’re a single-location practice or a multi-state DSO, these federal frameworks create the foundation upon which all state-specific regulations are built.
 

The five pillars of federal compliance in dentistry are:

  1. OSHA – Workplace Safety and Hazard Communication

  2. HIPAA – Patient Privacy and Data Security

  3. Infection Control – Universal Precautions and CDC Standards

  4. Radiation Safety – ALARA Principles and Equipment Performance

  5. Emergency Preparedness – Response Planning and Team Readiness

 

1. OSHA Compliance in Dental Settings
 

Overview
 

The Occupational Safety and Health Administration (OSHA) sets national standards to protect dental employees from workplace hazards such as bloodborne pathogens, hazardous chemicals, ergonomic injuries, and sharps exposure. Every dental employer must maintain written safety programs, provide training, and document compliance activities.
 

Key Federal Requirements

  • Bloodborne Pathogens Standard (29 CFR 1910.1030):
    Requires an Exposure Control Plan, annual training, use of safer sharps, and free hepatitis B vaccinations.

  • Hazard Communication Standard (29 CFR 1910.1200):
    Mandates a Hazard Communication Plan, Safety Data Sheets (SDS), chemical labeling, and staff training.

  • Personal Protective Equipment (PPE) Standard:
    Employers must assess and provide appropriate PPE—gloves, masks, eyewear, gowns—and train on proper use.

  • Ergonomic and Injury Prevention:
    Practices must identify repetitive strain risks and maintain OSHA injury logs (Form 300).

 

Documentation & Training

  • Written plans (BBP, HazCom, IIPP or Safety Program)

  • Employee exposure incident logs and post-exposure protocols

  • Annual training with proof of attendance

 

Common Pitfalls


Failure to update annual training, missing SDS binders, and outdated exposure control plans are among the top citations in dental OSHA audits.
 

2. HIPAA & Federal Privacy Requirements
 

Overview


The Health Insurance Portability and Accountability Act (HIPAA) is enforced by the U.S. Department of Health and Human Services (HHS) through the Office for Civil Rights (OCR). It safeguards patient information (PHI) in all formats—paper, electronic, and verbal.
 

Key Federal Rules

  • Privacy Rule: Governs how PHI is used and disclosed.

  • Security Rule: Requires technical, physical, and administrative safeguards for ePHI.

  • Breach Notification Rule: Mandates reporting of any unauthorized PHI disclosure.

 

Practice Obligations

  • Maintain written HIPAA policies and procedures

  • Conduct an annual Security Risk Assessment

  • Appoint a Privacy Officer and Security Officer

  • Train all staff upon hire and annually

  • Sign and maintain Business Associate Agreements (BAAs) with vendors

 

Common Pitfalls
 

Improper disposal of records, unsecured computers, weak passwords, and lack of encryption are frequent violations. HHS fines can reach millions of dollars per breach event.
 

3. Infection Control Standards
 

Overview
 

Federal infection control expectations stem from the Centers for Disease Control and Prevention (CDC) and OSHA’s Bloodborne Pathogen Standard. Every dental practice must adhere to the CDC’s Guidelines for Infection Control in Dental Health-Care Settings (2003) and periodic updates.
 

Core Elements

  • Standard Precautions: Treat every patient as potentially infectious.

  • Engineering Controls: Use sharps containers, dental unit waterline management, and sterilization monitoring.

  • Work Practice Controls: Proper hand hygiene, use of PPE, instrument cleaning, sterilization, and safe injection practices.

  • Environmental Cleaning: Disinfect clinical contact surfaces between patients.

 

Documentation & Monitoring

  • Written infection control plan and sterilization logs

  • Weekly spore testing records

  • Waterline monitoring and maintenance

  • Annual infection control training

 

Common Pitfalls- Failure to perform weekly spore testing, improper sterilization packaging, and overlooking dental waterline maintenance.
 

4. Radiation Safety in Dentistry
 

Overview
 

Federal radiation safety oversight is shared by the U.S. Food and Drug Administration (FDA) and the Nuclear Regulatory Commission (NRC). While most operational rules are enforced at the state level, federal standards define how equipment is manufactured, operated, and maintained.
 

Core Federal Standards

  • FDA Performance Standards (21 CFR 1020.30-31): Regulate dental X-ray machine design and radiation output.

  • ALARA Principle (“As Low As Reasonably Achievable”): Minimizes exposure for patients and staff.

  • Operator Protection: Use of lead barriers, dosimeters where required, and safe positioning (6 feet and 90-135° from beam).

  • Equipment Quality Assurance: Regular calibration, maintenance, and testing per manufacturer and state requirements.

 

Documentation & Training

  • Equipment maintenance and inspection logs

  • Radiography technique chart and exposure protocols

  • Annual radiation safety training for all operators

 

Common Pitfalls- Expired equipment registrations, missing QA logs, and inadequate shielding or operator distance awareness.
 

5. Emergency Preparedness & Medical Readiness


Overview
While no single federal law dictates dental emergency preparedness, multiple agencies—OSHA, CDC, ADA, and DHS—establish expectations for medical and workplace emergencies. Every practice must maintain an Emergency Action Plan and ensure staff readiness for both medical and environmental crises.
 

Core Requirements

  • OSHA Emergency Action Plan (29 CFR 1910.38): Procedures for evacuation, reporting fires, and contacting emergency services.

  • Medical Emergencies in Dentistry: Maintain an emergency kit, AED, oxygen tank, and train staff in Basic Life Support (BLS).

  • CDC Guidance: Infection and biohazard response, including pandemic preparedness.

  • Homeland Security (DHS): Encourages all healthcare facilities to have continuity and disaster response plans.

 

Documentation & Training

  • Written Emergency Action Plan and posted evacuation routes

  • Annual mock drills and CPR certification

  • Maintenance logs for emergency medications and AED checks

 

Common Pitfalls- Expired emergency drugs, untrained front desk personnel, and lack of posted emergency numbers.
 

Why Federal Compliance Matters


Federal compliance isn’t just about avoiding penalties—it’s about building a culture of safety, trust, and accountability. A practice that masters federal requirements can more easily meet state-specific laws, pass inspections, and maintain operational integrity across multiple locations.
 

Next Steps for Dental Teams

  • Audit your OSHA, HIPAA, Infection Control, and Radiation Safety programs annually.

  • Document all training and review your written plans.

  • Conduct mock emergencies and incident response drills.

  • Use a centralized compliance platform—like Done Desk or Tooth Nerd Quick Start Programs—to manage documentation, renewals, and training.

 

Protect your practice. Empower your people. Stay compliant.
Explore the Quick Start Compliance Program for ready-to-use OSHA, HIPAA, Infection Control, and Radiation Safety plans built specifically for dental practices.

State Guidelines

California-Specific Information


Regulating Bodies


  • Dental Board of California (DBC) — governs licensure, continuing education, infection control, sedation/anesthesia permits, scope of practice, and enforcement.

  • California Division of Occupational Safety and Health (Cal/OSHA) — enforces workplace safety rules, including the Bloodborne Pathogens Standard, Hazard Communication, and Aerosol Transmissible Diseases (ATD) standards.

  • California Department of Public Health (CDPH) — Radiologic Health Branch (RHB) — oversees registration, inspection, and radiation safety for dental X-ray machines.

  • California Department of Industrial Relations (DIR) — houses Cal/OSHA and other workplace safety programs.

  • Employment Development Department (EDD) — provides employer and workforce resources.


Licensing & Continuing Education


  • Dentists: Renew biennially with 50 hours of CE required.

  • Registered Dental Hygienists (RDH): 25 CE hours required every two years.

  • Registered Dental Assistants (RDA): 25 CE hours required every two years.

  • CE must include 2 hours of Infection Control, 2 hours of the California Dental Practice Act, and Basic Life Support (BLS) for all licensees involved in direct patient care.

  • CE providers must be approved by the Dental Board or AGD PACE.


Workplace Safety (Cal/OSHA)


  • California operates its own OSHA plan (Cal/OSHA) under the Department of Industrial Relations.

  • Dental employers must implement and maintain:
    A written Injury and Illness Prevention Program (IIPP) per Title 8 CCR §3203.
    A written Exposure Control Plan (ECP) under §5193 for Bloodborne Pathogens.
    A Hazard Communication Program (HCP) compliant with §5194.
    Aerosol Transmissible Diseases (ATD) program if performing procedures that may generate aerosols containing pathogens (Title 8 §5199).

  • Annual BBP and HazCom training are mandatory, with documentation maintained on site.


Radiation Safety


  • All dental X-ray machines must be registered with the CDPH Radiologic Health Branch (RHB).

  • Maintain QA/QC documentation, operator competency records, and equipment inspection reports.

  • Radiation protection regulations appear in Title 17 CCR §30100–§30305.

  • Operators must complete an approved radiation safety course or hold a state permit.

  • Routine inspections ensure compliance with shielding, signage, and dose monitoring requirements.


Infection Control (Title 16 CCR §1005)
California’s Minimum Standards for Infection Control establish mandatory infection prevention measures for all dental offices.

  • Adhere to standard precautions for all patient care.

  • Clean and disinfect all clinical contact surfaces between patients.

  • Sterilize all critical and semi-critical instruments before reuse.

  • Weekly biological spore testing is required for sterilizers.

  • Maintain written infection control protocols consistent with CDC guidelines.

  • Employers must train all personnel on infection control upon hire and at least annually.

  • Violation of §1005 is considered unprofessional conduct under the Dental Practice Act.


References:



Privacy & Data Protection (HIPAA + CMIA)


  • California’s Confidentiality of Medical Information Act (CMIA) supplements HIPAA, imposing additional restrictions on how patient medical information may be disclosed or used.

  • Covered entities must ensure both HIPAA and CMIA compliance.

  • Training should include HIPAA Privacy, Security, and Breach Notification, plus state-specific awareness of CMIA.

  • Reference: Cal. Civil Code §56 et seq.


Emergency Preparedness


  • Dental offices must maintain emergency drugs, oxygen, and equipment appropriate to the level of care and sedation provided.

  • A current BLS certificate is required for all staff involved in direct patient care.

  • Sedation and anesthesia permit holders must maintain advanced life-support certification (ACLS/PALS) and conduct regular emergency drills.

  • Written emergency plans and equipment inspection logs must be available for Board review.


Official Resources


Get Started

Now that you know everything it's time to get started by training your people and operationalizing excellence with Done Desk! 

Dental Team Training Requirements in California


Overview


California has some of the nation’s most stringent dental compliance rules, overseen by the Dental Board of California (DBC) and Cal/OSHA. Dental practices must also comply with HIPAA, CDC infection-control standards, and the California Department of Public Health (CDPH) Radiologic Health Branch for X-ray use.


State-specific training requirements are defined under the California Dental Practice Act, Title 16 CCR §1005 (Minimum Standards for Infection Control), and Title 8 CCR (Cal/OSHA standards).
All licensed professionals must complete continuing education (CE) for license renewal, while assistants and administrative staff must maintain required safety and privacy training.


Dentist Training Requirements

Required Training:


  • Cal/OSHA Bloodborne Pathogens & Hazard Communication (Annual): Required under Title 8 CCR §5193 and §5194 for all employees with occupational exposure.

  • Infection Control: Must comply with Title 16 CCR §1005, covering sterilization, PPE, disinfection, and exposure management; training required annually.

  • Dental Practice Act CE: Required 2-hour course on DPA ethics, scope of practice, and license renewal law every renewal cycle.

  • Radiation Safety: Compliance with CDPH Radiologic Health Branch regulations for supervising radiographic procedures.

  • CPR/BLS Certification: Required for license renewal.

  • Continuing Education: Dentists must complete 50 hours of CE every two years, including the mandatory 2-hour Infection Control and 2-hour Dental Practice Act courses.

  • HIPAA Privacy & Security: Required under HIPAA and CMIA (California Medical Information Act) for all entities handling PHI.


Recommended Training:


  • Risk Management & Legal Liability.

  • Controlled Substances & Opioid Prescribing CE.

  • Workplace Violence Prevention (SB 553 – required for employers by July 2024).

  • Leadership, Communication & Employee Retention.


Dental Hygienist Training Requirements

Required Training:


  • Cal/OSHA Bloodborne Pathogens & Hazard Communication (Annual).

  • Infection Control: Comply with Title 16 CCR §1005; annual review and documentation required.

  • Dental Practice Act (2-hour CE): Must complete every renewal cycle.

  • Radiation Safety: Hygienists performing radiography must be trained and supervised under CDPH Radiologic Health Branch guidelines.

  • CPR/BLS Certification (Current).

  • CE Requirements: Must complete 25 hours every two years, including Infection Control and Dental Practice Act.


Recommended Training:


  • Ergonomics & Injury Prevention.

  • HIPAA & Patient Privacy.

  • Periodontal Charting and Calibration.

  • Cultural Competence and Patient Communication.


Dental Assistant Training Requirements

Required Training:


  • Cal/OSHA Bloodborne Pathogens & Hazard Communication (Annual).

  • Infection Control Course: Must complete a Board-approved 8-hour Infection Control Course within 120 days of employment (Title 16 CCR §1005).

  • Radiation Safety Course: Must complete a CDPH-approved Radiation Safety Course and maintain certification to expose X-rays.

  • Coronal Polishing and Sealant Courses: For RDAs and RDAEFs as permitted under Dental Practice Act.

  • CPR/BLS Certification (Current).

  • HIPAA Privacy & Security Training (Initial + Annual Refresher).


Recommended Training:


  • Chairside Efficiency & Instrument Sterilization QA.

  • Emergency Preparedness & Fire Safety.

  • Customer Service and Professional Communication.

  • Workplace Violence Awareness (SB 553).


Front Desk & Administrative Staff Training Requirements

Required Training:


  • HIPAA Privacy & Security: Mandatory for anyone with access to PHI under HIPAA and CMIA.

  • Cal/OSHA General Safety Awareness: Recommended for administrative employees sharing the workspace with clinical staff.

  • Workplace Violence Prevention (SB 553): Required for all employers and employees in 2024.


Recommended Training:


  • Patient Communication & Service Recovery.

  • Dental Billing, Insurance, and Compliance.

  • Cybersecurity and Ransomware Prevention.

  • Customer Service and Team Dynamics.


State References




Tooth Nerd offers the California CE bundle every dental professional needs — including the 2-hour Infection Control and 2-hour Dental Practice Act courses — fully approved, self-paced, and certificate-ready.
Stay compliant with Cal/OSHA, HIPAA, and Board of Dentistry requirements without the guesswork.

Get Started

Now that you know everything it's time to get started by training your people and operationalizing excellence with Done Desk! 

Home

Contact

support @ Toothnerd.com

Tel. (512) 222-3812

bottom of page