Compliance & Legal
Zero Trust
Covered entities and their cloud-service providers both have jobs to do when it comes to protecting hosted patient data – and have to strike a balance deciding who does what.
In what it's calling an "unprecedented" exercise in information sharing, the administration is calling on health systems to share daily updates from their in-house labs with federal agencies.
It's granting exceptions and extensions from reporting requirements for clinicians and providers participating in Medicare programs such as MIPS and Shared Savings Program ACOs.
The coronavirus is stretching hospitals, and their IT departments, thin. And more regulations loom on the horizon.
The privacy watchdog won't impose penalties on providers who use non-HIPAA-compliant remote communications technology during the public health emergency.
An expert offers an in-depth look at where cybersecurity is in healthcare today and gives advice on how healthcare CIOs and CISOs can best protect their assets.
With a six-month reprieve before enforcement begins, healthcare organizations will soon have to "change their operating procedures to be in compliance," says ONC.
Industry groups including AHIP, MGMA and the AMA support the patient access aims of the final regs, but have qualms about third-party developers and the compliance burden for providers.
National Coordinator Don Rucker and Deputy National Coordinator Steve Posnack talk enforcement timelines, "content and manner," FHIR 4, gag clause provisions, patient privacy and more.
Both CMS and ONC have issued what they call "transformative" rules addressing 21st Century Cures data access requirements; they'll impact providers, payers, vendors and patients.