The U.S. Department of Health and Human Services (HHS) moved to the forefront of anti-discrimination measures when it released a final rule, titled “Nondiscrimination in Health Programs and Activities” (Final Rule), implementing Section 1557 of the Affordable Care Act (ACA), which prohibits discrimination on the grounds of race, color, national origin, sex, age or disability in certain health programs and activities.
Last week, the Department of Health and Human Services’ Office for Civil Rights (OCR) provided guidance for HIPAA covered entities and business associates that use or want to use cloud computing services involving protected health information (PHI).
Section 1557 of the Patient Protection and Affordable Care Act (ACA) prohibits any health program or activity that receives federal funding (currently limited to federal funding from the Department of Health and Human Services (HHS)) from discriminating against an individual on the basis of race, color, national origin, sex, age or disability.
The HHS Office of Civil Rights published a new FAQ response (OCR FAQ) detailing the agency’s position that generally information blocking will violate the HIPAA Privacy and Security Rules if it affects a covered entity’s access to its own protected health information (PHI) or its ability to respond to requests for access to PHI from patients.
We watch closely for any guidance to HIPAA covered entities and business associates from the Department of Health and Human Services Office for Civil Rights (HHS/OCR).
The U.S. House of Representatives Committee on Energy and Commerce (Committee), which oversees the Department of Health and Human Services (HHS), recently sent a strong letter to HHS Secretary Sylvia Matthews Burwell after the Committee heard testimony from Andy Slavitt, Acting Administrator of the Centers for Medicare and Medicaid Services (CMS), regarding the Affordable Care Act’s (ACA’s) Risk Corridors program.
October 16 Deadlines Quickly Approaching for the ACA’s Nondiscrimination Requirements: Are You Ready?
By October 16, 2016, all health programs and activities receiving federal financial assistance from the Department of Health and Human Services (HHS), those administered by HHS, and Health Insurance Marketplaces (Covered Entities), must be in compliance with the final pieces of the final rule issued by the Office for Civil Rights (OCR) issued May 18, 2016, implementing section 1557 of the Affordable Care Act.
In light of recent health information data breaches, the Government Accountability Office has issued a report examining whether HHS security and privacy guidance for electronic health records (EHRs) are consistent with federal cybersecurity guidance, and the extent to which HHS oversees compliance with HHS information security and privacy requirements.
Earlier this week the Government Accountability Office released a report critiquing the U.S. Department of Health and Humana Services’ (HHS) oversight of and guidance related to health information security and privacy.