Earlier this year, a federally qualified health center, Metro Community Provider Network (“MCPN”) paid a $400,000 HIPAA breach penalty related to a 2011 phishing attack. In this attack, several MCPN employees had their email accounts hacked by a phisher who was able to gain access to about 3,200 individuals’ PHI.
Read MoreOn May 31, 2017, the U.S. Department of Justice announced that electronic health records (EHR) vendor eClinicalWorks (ECW), along with certain individual officers and employees, have agreed to pay a total of $155 million to settle a lawsuit under the False Claims Act (FCA). In its Complaint-in- Intervention, the government alleged ECW falsified compliance with certification requirements for EHR under the Meaningful Use program. The programming shortcuts ECW allegedly took in developing its software, along with inadequate post-market support and patches, could expose providers to increased risk of errors and jeopardize patient care. If you or your practice uses the eClinicalWorks software, you should be aware of ECW’s obligations and your rights under the Corporate Integrity Agreement (CIA).
Read MoreFive new safe harbors have been added to the Anti-Kickback Statute (AKS) in the final rule, issued on December 17, 2016 by the Health and Human Services Office of the Inspector General (OIG). In addition, existing safe harbors have been revised to grant further protections to providers from criminal prosecution and civil damages. What these changes mean for providers: The trend in healthcare is to move from volume-based care to value-based care.
Read More
