Health IT

Subscribe to Health IT via RSS

On September 26, 2016, the Office of the National Coordinator for Health Information Technology (ONC) released guidance, entitled EHR Contracts Untangled, to help providers navigate the complexities of electronic health record (EHR) vendor contracting. The guidance breaks down important considerations for selecting EHR systems, and provides strategic pointers – including sample contract language

The HHS Office of Civil Rights published a new FAQ response (OCR FAQ) detailing the agency’s position that generally information blocking will violate the HIPAA Privacy and Security Rules if it affects a covered entity’s access to its own protected health information (PHI) or its ability to respond to requests for access to PHI from patients. This follows a series of similar policy documents from HHS over the past 18 months that focus on preventing business arrangements or practices that would be defined as information blocking, and thereby, frustrating the goal of interoperability. Specifically, according to the OCR FAQ:

  • An electronic health records (EHR) vendor or cloud provider’s actions to terminate a covered entity’s access to its own electronic PHI (ePHI) (e.g., in a payment dispute) would violate the HIPAA Privacy Rule because those actions would constitute an impermissible use of PHI.
  • An EHR vendor or cloud provider’s refusal to ensure the accessibility and usability of a covered entity’s ePHI upon demand by the covered entity or to return a covered entity’s ePHI upon termination of the agreement, in the form and format that is reasonable in light of the agreement, would violate the HIPAA Security Rule.
  • A business associate may not deny a covered entity access to the PHI the business associate maintains on behalf of the covered entity if necessary to provide individuals with access to their PHI under the HIPAA Privacy Rule.
  • A covered entity that agrees to terms within a business associate agreement (BAA) that would prevent the covered entity from ensuring the availability of its own PHI as required would not be in compliance with the HIPAA Privacy and Security Rules.

OCR has increasingly ramped up its enforcement of violations of the HIPAA Privacy and Security Rules related to noncompliant BAAs, so the new OCR FAQ signals that information blocking provisions could be the source of future enforcement actions.Continue Reading Blocking Access to Health Information May Violate HIPAA

On July 19th, the Office of the National Coordinator for Health Information Technology (“ONC”) released a report expressing concerns about major gaps in policies and oversight surrounding the access to, security, and privacy of health information held by certain mobile health (“mHealth”) technology companies and health social media.  While the report frames the

In a final guidance document released July 29th, the U.S. Food and Drug Administration (“FDA”) officially confirmed that it does not intend to review or require regulatory compliance for fitness trackers and certain health apps, collectively termed “general wellness products.”  This guidance, which is largely unchanged from the draft guidance issued in January

In late June, Crowell & Moring partnered with Accenture to host a comprehensive one-day conference on legal issues affecting the digital health landscape. The program covered a wide range of topics, some of which you can read more about via the following links: Developing Digital Health Platforms; the Health Care Economy’s Internet of Things; and New Payment Models and Data. More information on the June 23rd “Fostering Innovative Digital Health Strategies Conference” can be found on Crowell.com.

One session touched upon privacy and cybersecurity issues regarding the usage of products and data in the digital health realm. This panel was moderated by Fauzia Zaman-Malik, Accenture’s Global Legal Lead for Health Industry Offerings and North America Legal Lead for Health and Public Services Operating Group; and featured Evan Wolff, partner at Crowell & Moring; Cora Han, FTC senior attorney, Division of Privacy and Identity Protection; and Hilary Weckstein, chief privacy officer at Inovalon, Inc.

This panel focused on methods and benefits of de-identification, HIPAA requirements, the FTC’s role in regulating big data and digital health technologies, and data breach preparation and response.  Keep reading for four key takeaways from this session; the full panel session can also be accessed by video at this link.Continue Reading Digital Health, Big Data, Cybersecurity, and Privacy – Four Key Takeaways from C&M’s Digital Health Strategies Conference

On June 23, Crowell & Moring and Accenture co-hosted the Fostering Innovative Digital Health Strategies Conference in Crowell’s D.C. office. The conference provided a broad analysis of the business and legal issues that must be addressed as health care organizations and technology companies consider innovative strategies to use digital health technologies. The conference covered several topics including trends in the health care economy’s Internet of Things, setting up digital health platforms, legislative activity related to telehealth, and the use of digital health technology to support new payment models.

The fifth session of the conference, “New Payment Models and New Sources of Data for Care Coordination and Quality Improvement” featured John Brennan (Partner, Crowell & Moring), Dr. Elizabeth Raitz-Cowboy (Southeast Medical Director, Aetna Life Insurance Company), Barbara Ryland (Senior Counsel, Crowell & Moring), and Soph Sophocles (Associate General Counsel, Biogen).

The discussion addressed changes and themes in the wake of digital health technology and growing use of data. Key takeaways from the session:Continue Reading New Payment Models and Data: Changes and Themes to Watch

Crowell & Moring and Accenture co-hosted a conference, “Fostering Innovative Digital Health Strategies,” in late-June. The program aimed to provide a broad analysis of the business and legal issues that must be addressed as health care organizations and technology companies consider innovative strategies to use digital health technologies.

The first session of the conference, “Trends in the Health Care Economy’s Internet of Things,” featured the following distinguished panelists: Zane Burke (president, Cerner); Jodi Daniel (partner, Crowell & Moring); Cheryl Falvey (partner, Crowell & Moring); Melissa Goldstein (assistant director, Bioethics and Privacy Office of Science and Technology Policy, Executive Office of the President); and Kaveh Safavi (senior managing director, Global Health Industry Lead, Accenture).

A series of five videos from the session can be watched below:

Here are key health care Internet of Things (IoT) trends discussed in Session 1:Continue Reading 6 Trends in the Health Care Economy’s Internet of Things

On June 23, Crowell & Moring and Accenture co-hosted the Fostering Innovative Digital Health Strategies Conference in Crowell’s D.C. office. The goal of the conference was to take a comprehensive look at all of the business and legal issues that need to be addressed as health care organizations and technology companies are considering innovative strategies using digital health technologies. The conference covered a wide array of digital health topics, including trends in the healthcare Internet of Things, setting up digital health platforms, legislative activity regarding health IT and telehealth, privacy, cybersecurity, and use of digital health technology to support new payment models.

Session 2, “Setting up a Platform for Digital Health,” featured panelists Jodi Daniel (Partner, Crowell & Moring), Bakul Patel (Associate Director for Digital Health, Center for Devices and Radiological Health, FDA), Anna Shimanek (Senior Legal Counsel, CVS Health), Paul L. Uhrig (EVP, Chief Administrative, Legal, & Privacy Officer, Surescripts) and Ronan Wisdom (Managing Director, Accenture Digital).  Key takeaways include:

  • New partnerships are emerging. There is a broad movement among a variety of stakeholders – providers, payors, consumers, technology companies, and the government – toward using digital health to improve communicating with providers and patients’ understanding of their own health. This leads to new opportunities to partner with other organizations and require strategies for doing so effectively from a legal and business perspective.

Continue Reading In Case You Missed It . . . Five Key Takeaways in Developing Digital Health Platforms

Accenture and Crowell & Moring LLP are excited to host the “Fostering Innovative Digital Health Strategies” conference on June 23, 2016 at the Crowell & Moring Washington, DC office. This event will bridge the intersection of business, legal, and policy issues that innovative companies face in developing and integrating successful digital health tools and platforms.