Hospitals face compliance problems with HITECH Act

A third of hospitals in new survey are not ready

New privacy and security requirements for health information technology contained in the economic stimulus law became effective Feb. 17, and providers are already reporting difficulties in complying with the new rules.

The Health Information Technology for Economic and Clinical Health (HITECH) Act sets rules for disclosure reporting, privacy monitoring, the limited use of personal medical data for marketing, and patients’ electronic access to their health information.

Nearly a third of the 200 hospitals polled in a recent survey said they are not ready to meet all the law’s privacy and security requirements by the deadlines, according to health IT solutions vendor FairWarning. The firm commissioned the survey from New London Consulting and issued a news release on the results today.

Covered entities, which include hospitals and doctors and their business associates, face new compliance regulations related to privacy and access to information, according to an analysis distributed by law firm Hogan and Hartson. However, portions of the regulations are unclear, the firm said.

“Many of the new obligations require significant resources for implementation (e.g., amending business associate agreements, adopting new systems for limiting disclosures to health plans and providing copies in electronic formats that can be securely delivered),” the Hogan and Hartson news release states. “Yet, the HITECH provisions are unclear in many places."

In addition to the new compliance challenges, medical providers face new and strengthened enforcement provisions and penalties related to the Health Insurance Portability and Accountability Act, which were included in the stimulus law.

In related news, the Government Accountability Office released a new report describing ways in which medical providers are fulfilling privacy and disclosure requirements for personal health data.

About the Author

Alice Lipowicz is a staff writer covering government 2.0, homeland security and other IT policies for Federal Computer Week.

Featured

  • Defense
    Ryan D. McCarthy being sworn in as Army Secretary Oct. 10, 2019. (Photo credit: Sgt. Dana Clarke/U.S. Army)

    Army wants to spend nearly $1B on cloud, data by 2025

    Army Secretary Ryan McCarthy said lack of funding or a potential delay in the JEDI cloud bid "strikes to the heart of our concern."

  • Congress
    Rep. Jim Langevin (D-R.I.) at the Hack the Capitol conference Sept. 20, 2018

    Jim Langevin's view from the Hill

    As chairman of of the Intelligence and Emerging Threats and Capabilities subcommittee of the House Armed Services Committe and a member of the House Homeland Security Committee, Rhode Island Democrat Jim Langevin is one of the most influential voices on cybersecurity in Congress.

Stay Connected

FCW INSIDER

Sign up for our newsletter.

I agree to this site's Privacy Policy.