TRENDING:

AHA: Clarify Security Measures

Says "meaningful use" rule contains unnecessary language Howard Anderson (ismg_editor) • March 10, 2010    
AHA: Clarify Security Measures
The American Hospital Association is calling on federal regulators to refine the "meaningful use" rule for the new Medicare and Medicaid electronic health records incentive program to make the security requirements more clear-cut.

In its letter, the Chicago-based AHA urges regulators "to clarify that this meaningful use measure requires no new obligation beyond the requirements of the HIPAA privacy and security rules."

The letter also states, "The meaningful use rule should not be used to create a redundant and potentially conflicting process to ensure compliance with HIPAA obligations."

Unnecessary language?

The AHA labels as "unnecessary" language in the proposed meaningful use rule that requires hospitals and physicians to "conduct or review a security risk analysis of certified EHR technology and implement updates as necessary." The association notes that hospitals already have this obligation under HIPAA.

Like many other associations, the AHA calls the timeline for the incentive program created under the HITECH Act "unrealistic" and urges regulators to enable hospitals to qualify in a much more gradual way.

To read the letter, visit aha.org.

Comments due March 15

Comments on the proposed meaningful use rule are due March 15. They can be submitted at: regulations.gov..

David Blumenthal M.D., national coordinator for health information technology, recently said the final versions of the three core rules for the EHR incentive program will be completed by the end of spring. (Read the story).

Previous
HITECH Guide Now Available
Next
Is Breach List Prominent Enough?

About the Author

Howard Anderson

Howard Anderson

Former News Editor, ISMG

Anderson was news editor of Information Security Media Group and founding editor of HealthcareInfoSecurity and DataBreachToday. He has more than 40 years of journalism experience, with a focus on healthcare information technology issues. Before launching HealthcareInfoSecurity, he served as founding editor of Health Data Management magazine, where he worked for 17 years, and he served in leadership roles at several other healthcare magazines and newspapers.



Around the Network

How 'Security by Default' Boosts Health Sector Cybersecurity
How 'Security by Default' Boosts Health Sector Cybersecurity
Identity Security and How to Reduce Risk During M&A
Identity Security and How to Reduce Risk During M&A
Is It Generative AI's Fault, or Do We Blame Human Beings?
Is It Generative AI's Fault, or Do We Blame Human Beings?
Medical Device Cyberthreat Modeling: Top Considerations
Medical Device Cyberthreat Modeling: Top Considerations
Safeguarding Critical OT and IoT Gear Used in Healthcare
Safeguarding Critical OT and IoT Gear Used in Healthcare
Transforming a Cyber Program in the Aftermath of an Attack
Transforming a Cyber Program in the Aftermath of an Attack
Protecting Medical Devices Against Future Cyberthreats
Protecting Medical Devices Against Future Cyberthreats
How the NIST CSF 2.0 Can Help Healthcare Sector Firms
How the NIST CSF 2.0 Can Help Healthcare Sector Firms
Why Health Firms Struggle with Cybersecurity Frameworks
Why Health Firms Struggle with Cybersecurity Frameworks
Evolving Threats Facing Robotic and Other Medical Gear
Evolving Threats Facing Robotic and Other Medical Gear

Continue »

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing healthcareinfosecurity.com, you agree to our use of cookies.