Time to Update Your HIPAA Compliance Plan for Telehealth Policies and Procedures

Client Alert

September 8, 2020

The delivery of healthcare in this country may be forever changed following the COVID-19 pandemic. Providing services through telehealth technologies initially allowed providers to connect with patients in a safe and socially distant manner and helped keep vital hospital beds free for COVID-19 care. Now, while still a safe, socially distant option, telehealth allows patients to access healthcare services in an efficient manner, decreases the likelihood of cancellations, and expands access to services that do not require an in-person encounter (i.e., surgery, procedure, or test). Telehealth is now widely reimbursed by both federal and commercial payors and more provider types are able to provide telehealth services within their licensed scope of practice.

While the use of technology by both providers and patients is now commonplace in the industry, protected health information (PHI) must be safe and secure. Providers are still obligated to keep PHI confidential and comply with the rules and requirements of the Health Insurance Portability and Accountability Act of 1996 (HIPAA). An increased frequency of technology introduces another avenue for potential risk and unauthorized uses or disclosures of PHI.

At the start of the COVID-19 public health emergency, the Office of Civil Rights (OCR), responsible for enforcing HIPAA, issued a notice of enforcement discretion to not impose penalties against healthcare providers for noncompliance with the regulatory requirements under HIPAA in connection with the good faith provision of telehealth through the duration of the national emergency. As of September 8, 2020, this enforcement discretion is still in place. It will not remain forever and enforcement actions are still at the decision of the OCR. Therefore, in a world with an increased use of technology for healthcare services and the risk of more unauthorized uses or disclosures of PHI, providers should still comply with all of the HIPAA rules and regulations and incorporate telehealth in a compliance plan and/or HIPAA policies and procedures.

The Healthcare and Hospital Law Department at Brennan Manna & Diamond, LLC is here to help account for telehealth and the increased use of technology in your current HIPAA compliance plan to ensure the safety and privacy of the PHI you create and/or maintain. The BMD team can help your practice mitigate risk in the ever changing healthcare delivery world.

Posted by Kevin M. Cripe

Will Division II and III Athletic Programs Survive the New Era of College Athletics?

July 26, 2024

The potential reclassification of student-athletes as employees presents major financial challenges for Division II and III sports programs, which may struggle to afford the costs and could be forced to cut or eliminate non-revenue-generating sports. Recent legal rulings, including the Alston case and Johnson v. NCAA, have challenged the NCAA's amateurism model and prompted a need for innovative solutions to sustain these programs.

Posted by Scott Norcross & Paige Rabatin

Corporate Transparency Act: Business Owners Must Act Now

July 10, 2024

The Corporate Transparency Act requires all reporting companies to file their Beneficial Ownership Information (BOI) report by year-end to avoid penalties. Companies formed before January 1, 2024, have less than six months to comply. Learn more in a client alert by BMD Member Blake Gerney.

Posted by Blake Gerney

New Medicare Billing Rules: What MFTs, MHCs, and IOP Providers Need to Know

July 9, 2024

Starting January 1, 2024, Medicare began covering services provided to Medicare beneficiaries by marriage and family therapists, mental health counselors, and Intensive Outpatient Program (IOP) services. With this change, Medicare has become the primary payer for these services.

Posted by Daphne Kackloudis and Jordan Burdick

Resources

Client Alerts, News Articles, Blog Posts, & Multimedia