* Authors Note * This blog is being actively updated as new insights are gleaned from the new proposed rule relating to enforcement.
In the landscape of healthcare regulations, the 21st Century Cures Act (or simply the Cures Act) stands out as a significant piece of legislation that aims to improve interoperability, patient access to health information, and digital health innovation.
Understanding the key aspects of the Cures Act and ensuring compliance are crucial for healthcare providers, digital health companies, and payers.
Let’s explore the key points surrounding the Cures Act, including its scope, impact, key dates, the importance of readiness assessment, and how APIs and FHIR integration are accelerating the transition.
The 21st Century Cures Act, signed into law in December 2016, is a comprehensive healthcare legislation designed to speed up medical product development and provide patients with faster access to innovative treatments.
The Cures Act was enacted to address the problem of information blocking and ensure patients' seamless and secure access to their healthcare records.
Information blocking has been a persistent issue, as some health entities unnecessarily restrict or complicate access to electronic health information (EHI), hindering nationwide interoperability efforts.
By combating information blocking, the Cures Act aims to promote data sharing, enhance care coordination, and facilitate interoperability across the healthcare ecosystem.
The Cures Act impacts various stakeholders in the healthcare ecosystem. Healthcare providers, including hospitals, physicians, and clinics, are affected by the requirements for electronic health information exchange and patient access to health data.
Digital health companies, such as electronic health record (EHR) vendors, health app developers, as well as the health information networks (HINs) and health information exchanges (HIEs) must comply with the Cures Act's provisions to ensure interoperability and the seamless exchange of health information.
Payers, including health insurance companies and government programs, are also impacted by the Cures Act's requirements for data sharing and patient access.
The Cures Act establishes specific deadlines for compliance. Effective April 5, 2021, healthcare providers and health IT developers were required to comply with the Cures Act's information blocking provisions.
By October 6, 2022, payers must implement and maintain secure, standards-based application programming interfaces (APIs) to allow patients to access their health information. It is crucial for organizations to be aware of these key dates and ensure compliance within the specified timelines.
After October 6, any patient data included in Designated Record Sets (DRS) will be subject to the information blocking regulations. However, enforcement by the HHS Office of Inspector General (OIG) will not include penalties and disincentives until rulemaking is finalized.
This means that during this interim period, while the regulations are in effect, enforcement actions may not result in immediate penalties or disincentives. However, it's crucial for healthcare organizations and providers to comply with the information blocking regulations to ensure the seamless exchange of patient data and avoid potential penalties once rulemaking is completed.
On June 27, 2023, the OIG issued its proposed final rule regarding information blocking penalties. The rule establishes penalties for information blocking as mandated by the 21st Century Cures Act.
If OIG determines that an individual or entity has engaged in information blocking, they may face penalties of up to $1 million per violation.
It's important to note that the final rule does not introduce new information blocking requirements but rather incorporates existing regulations from the Office of the National Coordinator for Health Information Technology (ONC) as the foundation for enforcing penalties related to information blocking.
By December 31, 2023, vendors must have certified and made available the EHI Export capability, according to the timeline of the Cures Act.
Assessing readiness for Cures Act compliance is essential to avoid penalties, maintain patient trust, and embrace the benefits of interoperability.
Consequently, organizations need to evaluate their current infrastructure, policies, and procedures to identify any gaps or areas that require improvement.
This is especially important considering the prevalence of claims related to information blocking. According to the statistics from ONC, there have been a significant number of claims related to information blocking.
Source: Office of the National Coordinator for Health Information Technology. 'Information Blocking Claims: By the Numbers,' Health IT Quick-Stat #59 https://www.healthit.gov/data/quickstats/information-blocking-claims-numbers. May 2023.
This information can further support organizations in understanding the importance of complying with the Cures Act and actively working towards interoperability.
Conducting a readiness assessment is crucial for organizations to develop a strategic plan, allocate resources, and implement necessary changes effectively in order to meet the requirements of the 21st Century Cures Act.
Application Programming Interfaces (APIs) and the Fast Healthcare Interoperability Resources (FHIR) standard play a pivotal role in achieving interoperability and compliance with the Cures Act. APIs enable the secure and standardized exchange of health data between different systems and applications, facilitating seamless information flow.
FHIR, built on modern web standards, provides a flexible framework for exchanging healthcare information electronically. Leveraging APIs and FHIR integration helps organizations accelerate the transition toward interoperability, improve patient access to health data, and comply with the Cures Act's provisions.
The 21st Century Cures Act has ushered in a new era of healthcare interoperability, patient access, and digital health innovation. Healthcare providers, digital health companies, and payers must navigate its requirements to ensure compliance and stay ahead in the evolving healthcare landscape.
By understanding the scope and impact of the Cures Act, being aware of key dates, assessing readiness, and leveraging APIs and FHIR integration, organizations can successfully transition toward seamless health data exchange, enhanced patient engagement, and improved healthcare outcomes.
CompliancePro Solutions is your trusted partner on this journey. Our team of experts is well-versed in healthcare regulations and can provide tailored solutions to meet your organization's specific needs.
Contact us today and let us guide you towards seamless interoperability, enhanced patient access, and comprehensive compliance. Together, we can thrive in the era of healthcare innovation.