EHR Incentive Program Meaningful Use Stage 1 Updated

CMS has recently published a tip sheet consolidating for eligible professionals and hospitals the revisions made to the Stage 1 meaningful use measures that are effective in 2013.  These changes modify the following meaningful use objectives:

  • Public Health Reporting Objectives
  • Electronic Exchange of Key Clinical Information
  • Computerized Physician Order Entry (CPOE)
  • Record and Chart Changes in Vital Signs
  • Electronic Prescribing
  • Electronic Copy of and Electronic Access to Health Information (changes only applicable starting in 2014)

Some of the changes in the measures are required, while others are optional for 2013 but become required for 2014.  To view the Stage 1 changes tip sheet click here.

At the same time CMS also revised its Stage 1 Meaningful Use table of contents and tip sheets for each objective/measure for eligible professionals and hospitals/CAH.

If you have questions regarding the Medicare or Medicaid EHR Incentive Programs or meaningful use generally please contact Elana Zana.

2013: A Critical Year for Medicare Incentive Programs

Amid all the recent attention given to the long-awaited modifications to HIPAA under the HITECH Act published earlier this year, it may be easy for Medicare providers to overlook the fact that 2013 is an important year for three Medicare payment incentive programs:  (1) the Physician Quality Reporting System Program; (2) the Electronic Prescribing Program; and (3) the Medicare Electronic Health Record Incentive Program.  As discussed below, there are important milestones and deadlines in 2013 for each of these programs associated with either receiving incentive payments or avoiding payment adjustments.

Physician Quality Reporting System (PQRS) Program

The PQRS Program is intended to promote the reporting of quality information by eligible professionals (EPs).  The incentives and payment adjustments for the PQRS program are based on whether an EP satisfactorily reports data on program-specified quality measures for covered physician fee schedule (PFS) services furnished to Medicare Part B fee-for-service (FFS) beneficiaries.  EPs can qualify to receive an incentive based on the 2013 reporting year (i.e. January 1, 2013 – December 31, 2013) equal to 0.5% of an EP’s total estimated Medicare PFS allowed charges for the 2013 reporting period.

The 2013 reporting year is also a critical year for the PQRS program because it is the first reporting year that will be used to apply the program’s payment adjustments.  Although the payment adjustments do not begin until 2015, the adjustments are based on information reported in the two-year “look back” reporting period, i.e., the 2013 reporting year for the 2015 payment adjustments, the 2014 reporting period for the 2016 payment adjustments, etc.  To avoid the payment adjustment for a particular year, an EP must satisfactorily report data in the applicable reporting period.  CMS will penalize EPs for failing to participate in the PQRS program in 2013 by reducing the 2015 Medicare PFS allowed charges by 1.5%.

Furthermore, one way an EP practicing in a group practice can report data for the PQRS program is through the group practice reporting option (GPRO).  Under the GPRO, a group practice may make PQRS reports for all individual EPs in the same group practice.  The deadline for a group practice to elect to report using the GPRO is October 15, 2013.

Electronic Prescribing (eRx) Incentive Program

The eRx Incentive Program is intended to encourage electronic prescribing by EPs.  2013 is the last year that EPs who are successful e-prescribers can qualify to earn an incentive payment.  The incentive payment for 2013 is equal to 0.5% percent of an EP’s total estimated Medicare PFS allowed charges for the 2013 reporting period (i.e., January 1, 2013 – December 31, 2013).  At the same time, the 2013 six-month reporting period from January 1, 2013 – June 30, 2013 is the final reporting period to avoid the 2014 eRx payment adjustment.  The 2014 payment adjustment for EPs who are not successful e-prescribers is equal to 2.0% of the EP’s Medicare PFS allowed charges.  An EP may be exempt from the 2014 eRx payment adjustment if the EP meets one of the payment adjustment exclusion criteria or the EP requests and CMS approves a hardship exemption.  An EP must qualify for one of the 2014 payment adjustment exclusion criteria or submit a hardship exemption request to CMS by June 30, 2013 to avoid the 2014 payment adjustment.

Medicare EHR Incentive Program

This program is intended to encourage Medicare EPs, hospitals and critical access hospitals to achieve “meaningful use” of certified EHR technology.  Payment adjustments for the Medicare EHR Incentive Program begin in 2015.  However, because of the two-year “look back” period adopted by CMS for the adjustments, EPs must demonstrate “meaningful use” in 2013 to avoid payment adjustment in 2015.  EPs who first demonstrate meaningful use in 2013 must demonstrate meaningful use for a 90-day reporting period in 2013 to avoid payment adjustments in 2015.  This means that October 3, 2013 is the last day for EPs who are demonstrating meaningful use for the first time to begin their 90-day reporting period.  EPs who first demonstrated meaningful use in 2011 or 2012 must demonstrate meaningful use for the full year in 2013 to avoid the 2015 payment adjustments.  The payment adjustment amount for 2015 is 1% of the EP’s PFS allowed charges for services furnished by the EP in 2015.

Summary of Key 2013 Dates:

June 30, 2013:

  • eRX: End of the 2013 six-month reporting period to avoid the 2014 payment adjustment
  • eRx: Last day for an EP to submit hardship exemption request to CMS to avoid the 2014 payment adjustment

October 3, 2013:

  • Medicare EHR: Last day for EPs to begin 90-day reporting period for Medicare EHR incentive (if 2013 is the EP’s first year of program participation)

October 15, 2013:

  • PQRS:  Deadline for group practices to submit self-nomination statement for group reporting option for PQRS program
  • PQRS:  Last day for EPs to elect the administrative claims option to avoid the 2015 PQRS payment adjustment

December 31, 2013:

  • PQRS:  End of period to avoid the 2015 PQRS payment adjustment
  • PQRS, eRx, Medicare EHR:  Participation year ends for all programs

In sum, Medicare providers should take note of the above dates related to the PQRS, eRx and Medicare EHR Incentive Programs, especially those dates associated with actions which they will need to take or achieve in order to avoid the applicable program payment adjustments beginning in 2015.

For more information about the Medicare incentive programs discussed above, please contact Lee Kuo.

 

Proposal Would Extend EHR Donation Rules

The U.S. Department of Health and Human Services (HHS) has released proposed rules to amend the electronic health record (EHR) donation exception and safe harbor under the Stark Law and Anti-Kickback Statute.  The exception and safe harbor permit certain entities to share costs associated with EHR-related items and services with other entities.   Under the regulations, the receiving party must pay at least 15 percent of the donor’s cost for the items and services.

The current language of the regulations has a “sunset” provision that requires a donor to transfer EHR items and services on or before December 31, 2013.  Under the proposed rules, HHS would extend the sunset provision three years to December 31, 2016.

Without the rule change, existing donation arrangements would have to convert to a “fair market value” model for shared services and technology.  The existing sunset provisions also provide a significant barrier to the development of new arrangements. 

The rules also include the following proposed revisions to the regulations: (1) changes to the requirements for when EHR software is deemed “interoperable, (2) removal of the requirement related to electronic prescribing capability, and (3) limits on the types of entities that are allowed to make EHR donations.

HHS also seeks suggestions on how to achieve the following goals under the exception and safe harbor: (1) preventing the misuse of donated EHR technology in a way that results in data and referral lock-in, and (2) encouraging the free exchange of data created by donated software.

You can view the proposed rule for the Anti-Kickback Statute here and the proposed rule for the Stark Law here.

HHS will accept comments to the proposed rules until June 10, 2013.

If you have any questions about donating EHR technology under the Anti-Kickback Statute and Stark Law, please contact David Schoolcraft or Casey Moriarty.

HHS Announces New HIPAA Breach Settlement

HHS has announced its first HIPAA breach settlement involving less than 500 patients.  The announcement came on January 2, 2013 following a disclosure by the provider, Hospice of North Idaho.  The facts involved the theft of an unencrypted stolen laptop that contained ePHI for 441 individuals.  HHS found that the provider did not do a sufficient analysis of the risk to confidentiality of ePHI after the new rule went into effect and did not have in place appropriate policies or security measures to ensure the confidentiality of ePHI.  To settle the matter, the provider agreed to pay HHS $50,000 and enter into a corrective action plan.  More information about the settlement, including the settlement agreement can be found at this link on the HHS website.

This settlement shows that HHS takes breach notifications seriously.  At the same time, it appears that HHS will be open to entering reasonable settlement agreements to resolve this type of breach.  Mostly this demonstrates what we all know:  don’t put ePHI on unencrypted laptops or other mobile devices.  For more information, contact Dave Schoolcraft, Lee Kuo or Casey Moriarty.

OIG Approves Electronic Interface Arrangement

In a recent advisory opinion, the Office of Inspector General DHHS (“OIG”) approved an arrangement under which free access to an electronic computer interface is provided by a hospital to local physicians.  The opinion provides an important contemporary analog to earlier guidance published by the OIG as part of the preamble to the Federal anti-kickback statute safe harbor regulations (see 56 Fed. Reg. 35952, 35978, July 29, 1991).   At the same time, the OIG reinforced its long-standing position that in order for such arrangements to pass muster under the Federal anti-kickback statute, the parties must validate that the technology is limited to facilitating hospital-physician communications, and that it will not have independent value to the physicians. 

Please contact David Schoolcraft  (dschoolcraft@omwlaw.com or 206.447.7000) you have any questions about the scope and applicability of this OIG advisory opinion.

eRx Hardship Exemption Requests Extension

On November 1st CMS extended the time period for eligible professionals to request a hardship exemption under the e-Prescribing Incentive Program.  Those eligible professionals that have made at least 10 electronic prescriptions (eRx) between January 1, 2012-June 30, 2012 (for certain CPT codes) will not be subject to the Medicare penalties, and those that have prescribed 25 in 2012 will receive an incentive payment under the program (unless they are receiving the Medicare EHR Incentive Program incentives).  However, there are some eligible professionals that due to “hardships” cannot participate in this program, and CMS acknowledges should not be penalized.  Current hardship exemption categories include:

1.  The inability to e-prescribe due to local, State or Federal law or regulation.

2.  Providers that prescribe fewer than 100 prescriptions between January 1st and June 30, 2012.

3.  Providers practicing in a rural area without sufficient high speed internet access.

4.  Providers practicing in an area without sufficient available pharmacies for eRx.

To apply for a hardship exemption click here.  CMS has added the following two new hardship exemption request categories:

5.  Eligible professionals who achieve meaningful use during certain eRx timeframes. For the 2013 eRx payment adjustment, this will include any eligible professional who achieved meaningful use during January 1, 2011 through June 30, 2012 and has attested to this by January 31, 2013.

6.  Eligible professionals who demonstrate intent to participate in the EHR Incentive Program and adoption of Certified EHR Technology by registering for the EHR Incentive Program by January 31, 2013.  Please note: EHR Incentive Program participants must provide their entire EHR Certification Number  in the CMS EHR Certification ID field during registration to receive this hardship.

For these last two hardship exemption categories, eligible professionals do not have to apply through the Communications Support Page.  But instead must register and attest for the EHR Incentive Program by January 1, 2013.

If you have questions regarding the eRx program please contact Elana Zana.

Verizon Cloud Services Agrees to Sign BAA

Earlier this month Verizon announced its cloud services aimed at healthcare providers.  These services are designed to be HIPAA compliant including providing the necessary physical, technical and administrative safeguards required by the HIPAA Security Rule.  Most notably with this announcement, Verizon has agreed to execute a Business Associate Agreement.  Verizon’s press release expresses its commitment to top security protocols and offers a cloud hosting possibility to traditional healthcare companies that self-host.  Verizon touts the cloud services as a safe, secure and fast mechanism for healthcare providers to efficiently share information with one another.

Verizon is not the only vendor attracting healthcare clients with HIPAA compliance and Business Associate Agreements.  Microsoft announced earlier in the summer its willingness to execute Business Associate Agreements as well with its Windows Azure Core Services.  Amazon has even published a white paper on HIPAA compliance when using its Amazon Web Services platform.

Though willingness to sign a Business Associate Agreement is significant, as well as the acknowledgement that these companies are subject to the HIPAA requirements (per the HITECH Act) healthcare providers contracting with Verizon, Amazon, Microsoft, or any other company should make sure that they are adequately protected, which not only includes the implementation of security safeguards but also sufficient indemnification provisions in case of a breach.  For more information about HIPAA and Business Associate Agreements please contact Elana Zana or Dave Schoolcraft.

Stage 2 Meaningful Use Final Rules Announced

After much delay and anticipation, the Stage 2 Meaningful Use Final Rules were announced late last week.  Though the primary focus of the new rules were to update (and increase) the meaningful use objectives and measures for the Medicare and Medicaid EHR Incentive Program, significant additional components regarding the EHR Incentive Program were also included.  To read the 672 pages of the Final Rule click here.  CMS has also posted a fact sheet which provides a good high level summary of some of the main topics of the Final Rule.  In addition to the Meaningful Use final rules, the Office of the National Coordinator has released its new standards governing certified EHR technology and a fact sheet.  The National eHealth Collaborative hosted a helpful webinar with an overview of these new rules, which can be accessed here.

Stay tuned for further information and analysis of these new rules, including an update regarding 2014, batch reporting for groups, commencement of payment adjustments, Medicaid patient volume calculations, new meaningful use measures, and more.

For immediate assistance regarding these new rules or for information regarding Stage 1 Meaningful Use and the EHR Incentive Program generally please contact Elana Zana.

New Type of Breach – Hackers Encrypting PHI & Holding for Ransom

Typical breach scenarios often include a stolen laptop or other device and the extraction of medical records by those thieves.  Now a new type of breach has occurred, hackers breaking into systems and holding PHI for ransom.  Bloomberg recently reported a breach in which hackers burrowed into the computer network of a surgical practice in Illinois.  Rather than stealing the data and using it for identity theft purposes, the hackers encrypted the PHI and held it for ransom.  To read the full article click here.

This type of incident would most likely be considered a “breach” under the HITECH Act, requiring breach notification to the affected individuals, unless the NIST encryption standards were already employed providing a safe harbor.  However, other HIPAA requirements are also implicated including obligations under the Security Rule to have technical and physical safeguards, which may include building secure firewalls to prevent such hackers.      Along with maintaining a secure system, it is also advisable to back-up all PHI.

MIT Enterprise Forum Focus on Health IT – March 14th

Interested in Health Information Technology and live in the Pacific Northwest?  Then you should attend the MIT Enterprise Forum on Health IT.

Wed, 03/14/2012 – 5:00pm – 8:30pm

MOHAI

2700 24th Avenue East
Seattle, WA
To register click here.

Ogden Murphy Wallace is a proud sponsor of the event.

Health IT is transforming our healthcare system. Healthcare reform, industry consolidation, and demographic changes have spurred a significant increase in the U.S. healthcare industry’s use of technology to improve health and enhance the patient experience while trying to help control the ever-increasing cost of care. New players are emerging and cloud computing, social media, and mobile technology solutions targeting patients and healthcare providers are creating new opportunities.

Join us for our March 14 MIT Enterprise Forum and discover how NW technology entrepreneurs can identify these opportunities and succeed in the health IT market. Our panel of industry thought-leaders moderated by Rob Coppedge, Vice President of Business and Corporate Development at Cambia Health Solutions, includes:

  • Sailesh Chutani, CEO, Mobisante
  • Peter Gelpi, CEO, Clarity Health
  • Luis Machuca, President & CEO, Kryptiq Corporation
  • Gwen O’Keefe, MD, Chief Medical Informatics Officer, Group Health

Our panel will provide an overview of major health IT trends, the new opportunities technology presents for both patients and healthcare providers, as well as explain how this may enable change in the traditional healthcare industry cost structure. Most importantly, our speakers will identify business opportunities and what regulatory restrictions such as HIPAA really mean for the NW technology entrepreneur community.

Audience Takeaways

During this event, you will learn:

  • How the health IT market has changed in the wake of healthcare reform and government investment incentives
  • What different types of care and cost models might look like, and what opportunities those present for entrepreneurs
  • Potential sources of funding for innovative health IT technologies
  • Approaches entrepreneurs can take to handle barriers presented by government regulations such as HIPAA