Topics
Reimbursement
Elevance, UnitedHealth among insurers accused of alleged price fixing
Elevance, UnitedHealth among insurers accused of alleged price fixing
Revenue Cycle Management
Mary Washington Healthcare latest to outsource revenue cycle 
Mary Washington Healthcare latest to outsource revenue cycle 
Strategic Planning
Two CFOs see promise of AI, but have yet to build a dedicated budget
Two CFOs see promise of AI, but have yet to build a dedicated budget
Capital Finance
Cigna nixes speculation of a Humana merger
Cigna nixes speculation of a Humana merger
Supply Chain
Feds shore up healthcare supply chain in wake of hurricanes Helene and Milton
Feds shore up supply chain in wake of hurricanes
Accounting & Financial Management
Labor expenses continue to challenge hospitals
Labor expenses continue to challenge hospitals
Budgeting
Health system operating margins declined in August
Health system operating margins declined in August
Quality and Safety
US healthcare system ranks last in equity, access
US healthcare system ranks last in equity, access
Billing and Collections
CFPB warns of illegal tactics by medical debt collectors
CFPB warns of illegal tactics by medical debt collectors
Claims Processing
Denials top reason for eroding provider-payer relationship
Denials top reason for eroding provider-payer relationship
Workforce
Elevance laying off 123 California employees
Elevance laying off 123 California employees
Operations
UAB, Press Ganey launch certificate program for healthcare leaders
UAB, Press Ganey launch certificate program for healthcare leaders
Medical Devices
Healthcare chatbots may promote racist misinformation
Healthcare chatbots may promote racist misinformation
Hospital/physician relations
Hospitals, physicians submit opposing views to FTC ruling on noncompetes
Hospitals, physicians submit opposing views to FTC ruling
Construction & Facilities Management
University Hospitals expanding with $3.2 million donation
University Hospitals expanding with $3.2M donation
Compliance & Legal
Johnson and Johnson sues HRSA for blocking 340B plan
J&J sues HRSA for blocking 340B plan
Policy and Legislation
Planned Parenthood, other groups decry executive power in House bill
Planned Parenthood, other groups decry House bill
Community Benefit
AMA pushes for stricter standards for hospital charity care policies
AMA pushes for stricter standards for hospital charity care policies
Accountable Care
NAACOS pushes ACO REACH extension after $1.54B in savings
NAACOS pushes ACO REACH extension
Acute Care
SDOH, tech key to advancing value-based care, says UHG
SDOH, tech key to advancing value-based care
Ambulatory Care
Cleveland Clinic and Amazon One Medical collaborate on primary care clinics
Cleveland Clinic and Amazon One Medical collaborate
Analytics
Interoperability in healthcare moving forward despite challenges
Interoperability in healthcare moving forward despite challenges
Business Intelligence
CVS announces Dr. Sreekanth Chaguturu as president, Health Care Delivery
CVS announces Dr. Sreekanth Chaguturu as president, Health Care Delivery
ICD-10 & Coding
Physician practices examine risk adjustment coding in wake of federal lawsuits
Practices keeping close watch on risk adjustment coding
Meaningful Use
Financial disincentives for providers who commit information blocking 
Financial disincentives for providers who commit information blocking 
Medicare & Medicaid
Almost a quarter of Americans underinsured, survey finds
Survey: Almost a quarter of Americans underinsured
Patient Engagement
HHS, Illinois reach agreement on disability rights laws
HHS, Illinois reach agreement on disability rights
Pharmacy
CerpassRx, Waltz team on AI platform to manage specialty drug spend
CerpassRx, Waltz team on AI to manage specialty drug spend
Population Health
Reproductive care, including abortion, facing challenges
Reproductive care, including abortion, facing challenges
Risk Management
UPMC for You partners to offer Medicaid redetermination coverage in laundromats
UPMC for You offers Medicaid redetermination coverage in laundromats
Telehealth
Telehealth prescribing of controlled drugs extended through 2025
Telehealth prescribing of controlled drugs extended
Mergers & Acquisitions
Cardinal Health set to acquire two companies for combined $3.9B
Cardinal Health set to acquire two companies for combined $3.9B
View more
Mar 10, 2020 More on Policy and Legislation

Interoperability rules risk patient privacy, say insurers, hospitals

Health information will be transferred outside the protection of federal privacy laws, with information bought and sold on open market, AHIP says.

Susan Morse, Executive Editor

Both insurer and hospital organizations have expressed concern that the new interoperability rules released on Monday are a risk to patient privacy.

Two final regulations promote interoperability, health information exchange and patient access to health information. They state that payers and health systems can no longer engage in information blocking and must use an API to give patients access to their data.

America's Health Insurance Plans said it remains "gravely concerned" that patient privacy will be at risk under the new interoperability rules. Health information will be transferred outside the protections of federal privacy laws, with information bought and sold on the open market, AHIP said.

The American Hospital Association said the rules allow patients to access their health information through third party apps, which are not under the same stringent privacy and security requirements as hospitals.

"This could lead to third party apps using personal health information in ways in which patients are unaware," AHA President and CEO Rick Pollack said.

WHY THIS MATTERS

Tom Leary, vice president of Government Relations at HIMSS, the parent company of Healthcare Finance News, said there's anxiety from the provider, hospital community in being seen as information blockers if they don't share apps with every patient. They were hoping CMS would have backed off the requirement that it be a condition of participation in the Medicare and Medicaid programs.

AHIP said insurers share HHS's vision for expanded consumer data access. But when it comes to transparency in healthcare, patients overwhelmingly want  clear, concise and customized information and for their privacy to be protected.

Jeff Coughlin. senior director, Federal and State Affairs at HIMSS said the overarching idea is that patients are in control of their data, something that's been talked about for a long time.

Americans live on their phones, advocates say, and the rules give them access through their smartphones.

Connected Health Initiative Executive Director Morgan Reed said, "Americans manage their lives on the smartphone via apps, and health information should be no different."

Although consumers have had the legal right to obtain a copy of their personal health information for two decades, many people face obstacles in getting that information.

NAACOS President and CEO Clif Gaus said the sharing of electronic notifications of patient's admission, discharge, and/or transfer is a win for better population health management.

"With this change, ACOs can learn when one of their patients enters or leaves the hospital, allowing that patient's primary clinician to step in and provide appropriate, well-coordinated care."

THE LARGER TREND

The Department of Health and Human Services' Office of the National Coordinator for Health Information Technology and Centers for Medicare and Medicaid Services finalized the rules to promote electronic health information exchange.

The Centers for Medicare and Medicaid Services released a final rule on interoperability and patient access and the ONC released a final rule on interoperability, information blocking, and the ONC Health IT Certification Program.

The CMS final rule requires Medicare Advantage organizations, state Medicaid and Children's Health Insurance Program fee-for-service programs, Medicaid managed care plans, CHIP managed care entities, and qualified health plan issuers in the federally facilitated exchanges to implement the same API standards as the ONC rule by 2021.

Among other provisions, the CMS rule requires Medicare-participating acute-care hospitals, long-term care hospitals, inpatient rehabilitation facilities, psychiatric hospitals, children's hospitals, cancer hospitals, and critical access hospitals to send electronic notifications to receiving providers when an inpatient is admitted, discharged or transferred. This requirement will go into effect six months after publication of the final rule.

The ONC final rule implements the information blocking provisions of the 21st Century Cures Act by outlining exceptions to the definition of information blocking under the law.

The rule also updates the 2015 Edition certification criteria for health information systems to ensure that certified health IT systems can send and receive electronic health information in a structured format; make that electronic health information available through application programming interfaces; and export a patient's electronic health information to a location designated by the patient.

The proposed rules were released last year from the Office of the National Coordinator and Centers for Medicare and Medicaid Services implementing the 21st Century Cures Act's provisions on information blocking and interoperability.

ON THE RECORD

"We remain gravely concerned that patient privacy will still be at risk when healthcare information is transferred outside the protections of federal patient privacy laws. Individually identifiable health care information can readily be bought and sold on the open market and combined with other personal health data by unknown and potentially bad actors. Consumers will ultimately have no control over what data the app developers sell, to whom or for how long," said Matt Eyles, president and CEO of AHIP.

"America's hospitals and health systems support giving patients greater access and control over their health data," said AHA President and CEO Rick Pollack. "In fact, nearly all hospitals and health systems have made health information available to patients electronically. However, today's final rule fails to protect consumers' most sensitive information about their personal health. The rule lacks the necessary guardrails to protect consumers from actors such as third party apps that are not required to meet the same stringent privacy and security requirements as hospitals. This could lead to third party apps using personal health information in ways in which patients are unaware. These guidelines are too important not to get right. We need to stand on the side of the patient by protecting patient privacy and strengthening security in this rule."

"The AMA has been advocating on behalf of physicians and patients for over 10 years to ensure EHR usability, interoperability, and patient data and safety are top concerns when government agencies develop new policies," said American Medical Association President Dr. Patrice A. Harris. "We applied this knowledge and momentum as we worked with CMS and ONC in anticipation of today's release of the final rule."

Twitter: @SusanJMorse
Email the writer: susan.morse@himssmedia.com

News
Healthcare organizations ask HHS to delay quality measure reporting for ACOs Healthcare organizations ask HHS to delay quality measure reporting for ACOs The American Hospital Association and American Medical Association are among the 11 organizations signing the letter.