Categories
Around the Web

Should Patient Consent Be Considered When Using AI/RPA Technology for Prior Authorization?

From Physician’s Weekly:

The HIPAA Privacy Rule doesn’t specify provisions for protecting PHI data entered in AI technologies. What the rule does stipulate is that healthcare entities are not obligated to get patient consent for interoperability and electronic exchange of PHI. Certain states or entities, however, adopted bills, policies, regulations, or statutes requiring opt-in or opt-out consent from patients. The George Washington University Milken Institute School of Public Health pulled together a list of those states and entities, but its last update was in 2016.

Categories
Around the Web

How to Measure Acuity-Adjusted Panel Size for Contemporary Provider Compensation Plans

A report from VMG Health by Anthony Domanico, CVA, and Ben Minnis discussing the growing trend of introducing empanelment metrics into compensation formulas:

Empanelment can take on many forms in the compensation system, but all metrics center around the size of a particular primary care provider’s (PCP’s) patient panel (i.e., panel size and/or acuity-adjusted panel size), and how well (e.g., quality, patient experience) and how efficiently (e.g., shared savings, reduction of unnecessary procedures, etc.) a particular PCP take cares for those patients in his or her charge.

Categories
Around the Web

FTC Emerges as Leader in Health Privacy Enforcement

Kirk J. Nahra, Ali A. Jessani, and Samuel Kane, for WilmerHale:

In the past several weeks, the FTC has taken two additional actions that further signal its emergence as a leading regulatory force for health data. First, on July 20, the Commission issued a joint letter with the Department of Health and Human Services’ Office for Civil Rights (HHS OCR) pertaining to the use of online tracking technologies by hospitals and telehealth providers. Second, on July 25, the Commission published a blog post highlighting key takeaways from its recent health data enforcement actions. Taken together, these actions indicate that the FTC’s recent interest in health privacy enforcement is no fluke — rather, companies should expect the FTC to remain an active regulator in this space for the foreseeable future.  Accordingly, companies that handle health data (as broadly defined by the FTC) — particularly those outside of the scope of HIPAA — should ensure that their health data privacy and security programs are robust.

Categories
Around the Web

OAG Files Appeal to Texas Supreme Court, Blocking Judge’s Injunction in Lawsuit Over Exceptions to State Abortion Laws

Erica Pauda, for KXAN:

The Office of the Attorney General filed an appeal Saturday to the Texas Supreme Court after a Texas judge issued a temporary injunction over exceptions to state abortion laws, according to a news release from the OAG’s office.

The ruling clears things up for doctors on when they can provide abortions. Those cases include medical conditions that pose a risk of infection or unsafe pregnancy that could pose a risk to the mother’s health, medical conditions that are exacerbated by pregnancy and fetal conditions where the fetus is unlikely to survive.

Categories
Around the Web

Physicians Who Lost Their License Elsewhere Can No Longer Practice in Texas

Will Maddox, for D Magazine:

HB 1998 bars physicians who have committed moral terpitude felonies and misdemeanors from practicing in Texas and requires the Texas Medical Board to have closer oversight of physicians.

This year’s legislative session scored significant victories for patient safety advocates. Until this year, it was possible for out-of-state physicians who have been convicted of felonies or misdemeanors related to moral turpitude to be able to come to Texas and continue to practice. Before HB 1998 was signed into law in 2023, a physician from other states could come to practice in Texas even if their license was revoked, restricted, or suspended in another state.

Categories
Around the Web

Why Doctors Using ChatGPT Are Unknowingly Violating HIPAA

From ScienceBlog:

Physicians are using ChatGPT for many things, mainly to consolidate notes. There has been a lot of focus on using AI to quickly find answers to clinical questions, but a lot of practical interest among physicians has also been in summarizing visits or writing correspondence that everybody has to do, but nobody wants to do. A lot of that content has protected health information in it.

When physicians meet with their patients, they want to be fully engaged instead of taking notes. They may take brief notes but then have to elaborate on them for the medical record later. It’s much easier and better than the patient-physician interaction to have the physician focus on the patient and have the encounter be recorded and transcribed. Then the transcription could go into the Chat GPT window, which reorganizes it and summarizes it.

The protected health information is no longer internal to the health system. Once you enter something into ChatGPT, it is on OpenAI servers and they are not HIPAA compliant. That’s the real issue, and that is, technically, a data breach.

Categories
Around the Web

Texas Attorney General’s Medicaid Fraud Control Unit Helps Secure 49-Month Sentence and Over $5 Million Restitution in Orthopedic Supplies Fraud Case

Press Release, Texas Attorney General:

Kenric Wakeen Griffin, co-owner of New Horizons Durable Medical Equipment based in Frisco, TX, was sentenced to 49 months of federal incarceration to be followed by a year of supervised release for his role in a medical equipment fraud scheme. In addition, Griffin was ordered to pay $5,114,016.19 in restitution to government health care programs. A jury convicted Griffin of conspiracy to defraud the United States and to pay and receive healthcare kickbacks, as well as seven counts of payment and receipt of kickbacks.

Griffin obtained patients by offering and paying kickbacks to marketers as well as disguising illegal payments as marketing services and outsourced business services. Griffin then submitted false claims to both Medicaid and Medicare for orthopedic equipment that was never provided, not medically necessary, and not authorized by a physician.

Categories
Around the Web

Biden Administration Announces National Cyber Workforce and Education Strategy

Steve Adler, for The HIPAA Journal:

The Biden Administration has unveiled its National Cyber Workforce and Education Strategy (NCWES) which seeks to address the current cyber workforce shortages and prepare the country for a cyber future.

The NCWES was developed by the Office of the National Cyber Director in collaboration with 34 agencies, departments, and EOP components and lays out a comprehensive approach for addressing immediate and long-term cyber workforce needs while ensuring all Americans have the cybersecurity skills they need to participate in the digital ecosystem.

The aim of the strategy is to empower all Americans looking to participate in the digital ecosystem, including communities that are currently underrepresented in the cyber workforce, and to promote and develop pathways for well-paying and fulfilling cyber careers. Under the strategy, the Biden Administration and its partners will leverage adaptable ecosystems to effect change at scale, enable the lifelong development of cyber skills, and grow and enhance the cyber workforce through diversity and inclusion.

The National Cyber Workforce and Education Strategy [PDF]

Categories
Around the Web

What Employers Need to Know about the Mental Health Parity Proposed Regulations

Suzanne G. Odom, for JacksonLewis:

On July 25, 2023, the tri-agencies of the Departments of Treasury, Labor, and Health and Human Services (the Departments) issued a compendium of guidance designed to facilitate compliance with the Nonquantitative Treatment Limitation (NQTL) comparative analysis requirements added by the Consolidated Appropriations Act, 2021 (CAA, 2021) as they relate to the Mental Health Parity and Addiction Equity Act (MHPAEA). The guidance signals that employer-sponsored group health plans will have some work to do to improve their mental health and substance abuse treatment provider networks, their data collection efforts to better evaluate the parity in care, and the production of sufficient NQTL comparative analysis reports.

Categories
Around the Web

Texas Medicaid Fraud Control Unit Helps Dismantle $142 Million Genetic Testing Fraud Scheme, Seizes $7.1M in Assets

Texas Attorney General Press Release:

ApolloMDx offered illegal kickbacks in order to purchase both recipient information from marketers and orders for genetic testing from doctors. In some cases, doctors made fraudulent diagnoses to make it appear as though recipients were eligible for testing when they were not. In addition, ApolloMDx altered dates of service on testing orders to make it appear that multiple DNA samples were collected on different dates to enable billing for multiple dates of service.