The past several years have proven difficult for healthcare entities due to increasing cybersecurity threats, breaches and regulatory enforcement. Following these trends, on April 6, 2022, the Department of Health and Human Services (HHS) Office for Civil Rights (OCR) released a Request for Information (RFI) soliciting public comment on how regulated entities are voluntarily implementing security practices under the Health Information Technology for Economic and Clinical Health Act of 2009 (HITECH Act) and also seeking public input on sharing funds collected through enforcement with individuals who are harmed by Health Insurance Portability and Accountability Act of 1996 (HIPAA) rule violations.
Only a few days remain before the enforcement delay that the Centers for Medicare & Medicaid Services (CMS) exercised due to COVID-19 will end and the agency will require certain payors to publish a Patient Access application programming interface (“API”) and a Provider Directory API under the requirements of the CMS Interoperability and Patient Access Final Rule. Starting on July 1, 2021, all health plans that offer Medicare Advantage, Medicaid and Children’s Health Insurance Program (CHIP) and most Qualified Health Plans offered through the Federally-facilitated ...
Blog Editors
Recent Updates
- New Proposed Federal Legislation Takes Aim at Concerns Regarding Perceived “Looting” of Health Care Systems by Private Equity Investors
- Podcast: The Future of Laboratory Testing Just Got a Little Clearer - FDA's Final Rule on LDTs – Diagnosing Health Care
- How Does the End of Chevron Deference Change the Relationship Between the Health Care Industry, Federal Regulators, and Congress?
- Podcast: Down Goes Chevron: A 40-Year Precedent Overturned by the Supreme Court – Diagnosing Health Care
- Thoughts: AB 3129 Expands Its Reach