Recently, the Centers for Medicare & Medicaid Services (CMS) announced it will not initiate enforcement action against any HIPAA covered entity for an additional three (3) months, through June 30, 2012 for the updated HIPAA transaction standards Version 5010. CMS is aware that there are still challenges and issues pending an industry wide upgrade.
Resources for Meaningful Use, the measures and what you need to do to meet them (continued from last Update)
Step 4: Run the Meaningful Use and Quality Measures Reports to check your progress. Your ONC (Office of the National Coordinator for Health Information Technology) Certified EHR system (i.e. CompuLink, OfficeMate, Crystal, etc.) should generate reports on the data you will need to attest. It is recommended that you run these reports as follows, to ensure you are on track to attest at the conclusion of your 90-day period:
- At the end of every day for the first week of Meaning Use
- At the end of the 2nd week
- At the end of the 3rd week
- At the end of the 4th week
- Every other week thereafter
If 2012 is the first year you’ll be demonstrating Meaningful Use and qualifying for the EHR Incentives, here are the six key steps to getting ready.
Step 4: Run the Meaningful Use and Quality Measures Reports to check your progress. Your ONC Certified EHR system should generate reports on the data you will need to attest. We recommend that you run these reports as follows, to ensure you are on track to attest at the conclusion of your 90-day period:
▪ at the end of every day for the first week of MU
▪ at the end of the 2nd week
▪ at the end of the 3rd week
▪ at the end of the 4th week
▪ every other week thereafter
If 2012 is the first year you’ll be demonstrating Meaningful Use and qualifying for the EHR
Incentives, here are important dates to keep in mind:
- October 3, 2012 to December 31, 2012 is the last possible EHR Reporting Period to get full amount (if you didn’t attest for 2011)
- October 4, 2012 lose $5,000
Step 5: Perform the HIPAA Security Risk Analysis. One of the Meaningful Use requirements (Core Set Measure 15) is to perform a security risk analysis. A risk analysis will identify potential threats to and vulnerabilities of information systems and the associated risk. To begin meeting those requirements, you must conduct a Security Risk Analysis of the certified EHR Technology and of your own processes, and you must correct any deficiencies.
Resources are available to help you learn more about the HIPAA Security Rule and standards for safeguarding electronic protected health information (e-PHI) on the CMS website.
Step 6: Attest (report your outcomes to CMS). Eligible Professionals must report their Meaningful Use outcomes to CMS. For Calendar Year (CY) 2012 this will be done through “Attestation”. The EP identifies which certified EHR they are using and “Attests” to their results by Measure through a secure CMS (Medicare) or State (Medicaid) website.
CMS resources are available to help you navigate through the attestation process:
- A new attestation page on the CMS EHR website, where participants in the Medicare EHR Incentive Program can find important information on attestation.
- Meaningful Use Attestation Calculator allows EPs to check whether they have met meaningful use guidelines before they attest in the system. The calculator prints a copy of each EP’s specific measure summary.
- Eligible Professional User Guide provides step-by-step guidance for EPs and eligible hospitals on navigating the attestation system.
- A preview of the Attestation System is available on the CMS website