Resources

Client Alerts, News Articles, Blog Posts, & Multimedia

Everything you need to know about BMD and the industry.

Time to Update Your HIPAA Compliance Plan for Telehealth Policies and Procedures

Client Alert
September 8, 2020

The delivery of healthcare in this country may be forever changed following the COVID-19 pandemic. Providing services through telehealth technologies initially allowed providers to connect with patients in a safe and socially distant manner and helped keep vital hospital beds free for COVID-19 care. Now, while still a safe, socially distant option, telehealth allows patients to access healthcare services in an efficient manner, decreases the likelihood of cancellations, and expands access to services that do not require an in-person encounter (i.e., surgery, procedure, or test). Telehealth is now widely reimbursed by both federal and commercial payors and more provider types are able to provide telehealth services within their licensed scope of practice.

While the use of technology by both providers and patients is now commonplace in the industry, protected health information (PHI) must be safe and secure. Providers are still obligated to keep PHI confidential and comply with the rules and requirements of the Health Insurance Portability and Accountability Act of 1996 (HIPAA). An increased frequency of technology introduces another avenue for potential risk and unauthorized uses or disclosures of PHI.

At the start of the COVID-19 public health emergency, the Office of Civil Rights (OCR), responsible for enforcing HIPAA, issued a notice of enforcement discretion to not impose penalties against healthcare providers for noncompliance with the regulatory requirements under HIPAA in connection with the good faith provision of telehealth through the duration of the national emergency. As of September 8, 2020, this enforcement discretion is still in place. It will not remain forever and enforcement actions are still at the decision of the OCR. Therefore, in a world with an increased use of technology for healthcare services and the risk of more unauthorized uses or disclosures of PHI, providers should still comply with all of the HIPAA rules and regulations and incorporate telehealth in a compliance plan and/or HIPAA policies and procedures.

The Healthcare and Hospital Law Department at Brennan Manna & Diamond, LLC is here to help account for telehealth and the increased use of technology in your current HIPAA compliance plan to ensure the safety and privacy of the PHI you create and/or maintain. The BMD team can help your practice mitigate risk in the ever changing healthcare delivery world. 

 

HealthcareCOVID-19telehealthtechnologyPHIHIPAAHIPAA ComplianceOCRregulatory requirementsenforcement actionscomplianceKevin CripeBMD Healthcare & Hospital Law Group
Client Alert

Tariffs, Market Downturn, and Employment Considerations for Employers

April 7, 2025As tariffs continue to impact various industries, employers must prepare for the ripple effects these economic pressures can have on workforce management. The economic impact can dramatically impact companies’ bottom lines, and companies look to improve finances and save for the future and many will choose to reduce employee count/wages.Client Alert

Corporate Transparency Act Overhauled: U.S. Entities No Longer Required to Report

March 24, 2025The Department of Treasury has issued an interim final rule significantly altering the Corporate Transparency Act (CTA). As of March 21, 2025, all U.S.-created entities and their beneficial owners are exempt from reporting requirements. Only non-U.S. entities registered to do business in the U.S. must still report, but they are not required to disclose U.S. citizen owners. Business owners should stay informed on these changes and consult legal counsel for compliance guidance.Client Alert

ODM to Implement Medicaid Work Requirements: What Providers and Medicaid Expansion Recipients Need to Know

March 21, 2025The Ohio Department of Medicaid (ODM) has submitted a waiver to impose work requirements for Medicaid expansion recipients. If approved, the new eligibility criteria will take effect on January 1, 2026. A federal public comment period is open until April 7, 2025.Client Alert

Ohio Appellate Court Rules in Favor of Gender-Affirming Care

March 19, 2025On March 18, 2025, the 10th District Court of Appeals in Franklin County ruled that Ohio’s House Bill (HB) 68, which restricts puberty blockers and hormone therapy for minors seeking gender-affirming care, violates the Health Care Freedom Amendment and is therefore unenforceable. The court found that the law unlawfully interferes with parental rights and medical decision-making. The case, Moe v. Yost, has been remanded, and Ohio Attorney General Dave Yost intends to appeal.Client Alert

HHS Revokes Public Comment Requirement on Certain Policy Changes

March 5, 2025The U.S. Department of Health and Human Services (HHS) has revoked the Richardson Waiver, eliminating the requirement for public notice and comment on certain policy changes. This decision allows HHS to implement new policies more quickly, potentially affecting healthcare funding rules like Medicaid work requirements. While it speeds up policymaking, it also reduces opportunities for stakeholder input, raising concerns over transparency and unintended consequences for healthcare providers, states, and patients.
Older posts
Newer posts