AMA, MGMA Differ on Rule

Save vs. toss security measure? The Medical Group Management Association and the American Medical Association offer very different assessments of the proposed security provisions in the "meaningful use" rule for the federal electronic health record incentive program.

MGMA, an Englewood, Colo.-based association of physician group practice administrators, says the provisions are unnecessary and should be removed. The Chicago-based AMA, in contrast, supports the provisions but says physicians will need help carrying them out.

The proposed rule states that to qualify for Stage 1 of the Medicare and Medicaid incentives under the HITECH Act, healthcare providers must "conduct or review a security risk analysis of certified EHR technology and implement updates as necessary."

"Requiring an eligible professional to conduct a security risk analysis that is already required under HIPAA is duplicative and adds an unnecessary reporting burden," the MGMA stated in a March 15 letter to regulators.

The AMA, however, "strongly supports" including the risk analysis requirement. But in its letter filed in collaboration with dozens of other physician associations, it asks regulators to either require vendors to offer physicians help "or make directly available resources to physicians to help them identify the specific technical capabilities they will need to ensure patient information is appropriately protected and safeguarded."

Meanwhile, the Healthcare Information and Management Systems Society asked regulators to provide far more specifics on the risk analysis requirements. (To read story, click here.)

More time

MGMA, AMA and HIMSS, like many other associations, call on regulators to give providers more time to meet fewer criteria to qualify for the incentive program as an alternative to the proposed rule's "all or nothing" approach.

For more on MGMA, visit

To view the AMA letter, visit

Comments on the "meaningful use" rule were due March 15. They can be viewed at: David Blumenthal M.D., national coordinator for health information technology, recently said the final versions of the three core rules for the EHR incentive program will be completed by the end of spring. (To read story, click here).

About the Author

Howard Anderson

Howard Anderson

Former News Editor, ISMG

Anderson was news editor of Information Security Media Group and founding editor of HealthcareInfoSecurity and DataBreachToday. He has more than 40 years of journalism experience, with a focus on healthcare information technology issues. Before launching HealthcareInfoSecurity, he served as founding editor of Health Data Management magazine, where he worked for 17 years, and he served in leadership roles at several other healthcare magazines and newspapers.

Around the Network

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing, you agree to our use of cookies.