- Fast Healthcare Interoperability Resources (aka “FHIR”) is a new interoperability standard that will exponentially accelerate access to and exchange of electronic health information.
- Although the full effect of mandated adoption of FHIR generally will not be felt until 2021, now is the best time to understand how this will impact your organization.
- Register HERE for the HIMSS NY State Chapter live web panel “How Are FHIR-Based APIs Changing Healthcare” July 15 12-1:30 EST.
In response to the 21st Century Cures Act passed in 2016, CMS and ONC have promulgated their Final Rules to implement the requirements of that federal law – with a main goal being to accelerate the access, exchange and use of electronic health information (EHI). One of the ways that this is being accomplished is to require certain entities and actors (i.e., payors, providers, HIEs/HINs, and developers of certified health IT) to provide Application Programming Interfaces (APIs) that use a new standard for data access and exchange called Fast Healthcare Interoperability Resources (aka “FHIR”). These new standards for adopting FHIR for information exchange is expected to exponentially accelerate individuals ability to access and share their own EHI through mobile apps, as well as allow any third-party adopting such FHIR standards to obtain access to such EHI – at least for any and all purposes which are otherwise permitted under applicable privacy laws.
Especially for HIPAA Privacy Officers, Security Officers, Compliance Officers and attorneys who have — like myself — for years focused on ensuring that your organization does not make the mistake of releasing protected health information to a third-party in violation of federal or state privacy and security laws – I feel your pain on FHIR!
The good news is that there is some time before the FHIR standards are phased-in and their full effect will be felt. Certification of health IT which includes and adopts FHIR standards does not start until 2021, and with the new HL7®FHIR® API capability and other Cures Act update criteria not being rolled out until late 2021/early 2022. Mandatory adoption of things like patient access APIs, provider directory APIs, ADT notifications, and public reporting data exchange by certain types of organizations largely also does not take off until 2021. That said, the best time to get ahead of the curve is now.
For those interested in learning more about how FHIR standards will impact your healthcare organization from technological, strategic and legal perspectives all in one place & time — join me and HIMSS New York State Chapter for a live web panel tomorrow, July 15, 2020 (12-1:30 EST), where a diverse group of experts will discuss FHIR from their individual points of view. You can register through the HIMSS NY State Chapter website here.
_______________
Subscribe to HERE to Legal HIE’s compliance library to gain access to sample policies, documents and tools for compliance with the Info Blocking Rule, HIPAA, 42 CFR Part 2, Breach Notification, and more!
