The Electronic Healthcare Network Accreditation Commission and the CARIN Alliance have partnered to bring both the CARIN Code of Conduct and the EHNAC Criteria Review Process to health plans, health systems, healthcare providers DSE and others to report to the Centers for Medicare & Medicaid Services on their data practices and privacy protections.
WHY IS IT IMPORTANT
EHNAC, the standards development organization and accreditation body for electronically exchanged health data, and the multi-sector collaboration CARIN Alliance created the CARIN Code of Conduct Accreditation Program to advance health information interoperability and comply with data standardization requirements.
Last July, the Centers for Medicare and Medicaid Services began enforcing key elements of its Interoperability and Patient Access Final Rule, which aims to accelerate individuals’ ability to access their personal health information through a application of their choice by leveraging HL7’s FHIR application programming interface. .
CMS provided payers with the ability to implement a framework to show they are connecting to HL7 FHIR APIs.
“While the certification program is not required by policymakers or CARIN, we are pleased to partner with EHNAC to create an exceptional third-party accreditation program built on the CARIN code of conduct that has become the industry standard. industry standard for applications not covered by HIPAA, and the only code named in federal regulations as an “industry best practice,” said Ryan Howells, program manager for the CARIN Alliance and director of Leavitt. Partners, in the announcement.
The new voluntary certification program builds on the CARIN Code of Conduct approach but is not required by CMS or CARIN, according to the announcement.
Since the CARIN Alliance launched MyHealthApplication.com allowing payers, providers and developers to self-certify the CARIN Code of Conduct, it has worked to develop and disseminate an attestation and certification framework for application for industry-wide consumers.
“This includes focusing on providing the highest level of stakeholder trust for all healthcare stakeholders – patients, providers, health plans, third-party app developers and many more,” added Lee Barrett. , Executive Director and CEO of EHNAC.
Stakeholders who achieve CARIN Code of Conduct accreditation will be listed on the CARIN My Health application site and on the EHNAC Accredited Companies page.
Consumer-facing apps that have attested to the CARIN Code of Conduct on the CARIN website should be included in the first cohort of the accreditation program.
It should also be noted that EHNAC has updated its Dynamic Registration and Authentication Accreditation Program (TDRAAP) and Trusted Network Accreditation Program (TNAP) to align with the criteria of the CARIN code of conduct for relevant organisations.
THE GREAT TREND
Last year, EHNAC worked with the Council for Affordable Quality Healthcare to help encourage app developers and healthcare organizations to demonstrate their ability to use trusted digital certificates for identity, registration and authentication of terminals.
They designed TDRAAP accreditation to affirm an app’s technical and security credentials and give health plans the confidence they need to connect and share member data.
“The ability to effectively enroll and authenticate endpoints is a critical component of healthcare interoperability,” Barrett said in a statement in 2021.
The Patient Access and Interoperability Rule requires CMS-regulated health plans to allow consumers access to the transfer of their health information through third-party applications.
The CARIN Alliance works across the public and private sectors on digital health information sharing compliance. In early 2021, the alliance worked with a number of healthcare organizations to develop a standard digital registration template for organizations administering COVID-19 vaccines.
“We envision a future where any consumer can choose an app of their choice to retrieve both their complete medical records and complete claims information from any provider or plan in the country using the HL7 FHIR API,” Howells said.
Andrea Fox is the editor of Healthcare IT News.
Email: [email protected]
Healthcare IT News is a HIMSS publication.