In a letter this week, HITRUST asked the Senate HELP Chairman Lamar Alexander to consider an exemption to the Stark Law for the donation or subsidization of security software.
HITRUST asserted that healthcare entities, particularly doctors’ offices, are often poorly prepared to defend themselves from hackers. But if they could receive help from larger hospital systems, that could change.
“Small, ill-equipped practices are vulnerable to security breaches, which can ultimately infiltrate the larger healthcare environment through the exchange of patient data,” wrote Dan Nutkis, chief executive of HITRUST. “Again, we need to empower physician practices to actively manage their security posture, not hinder them.”
It should be noted, however, that such help, in the form of software or other technology and management help, could be misinterpreted as a kickback under the Stark Law, which aims to prevent referrals between doctors who have a business relationship.
The Stark Law governs physician self-referral for Medicare and Medicaid patients and serves as a stringent barrier against fraud and abuse amongst healthcare providers.
You may be interested
HITRUST Expands Its Focus on International Data Protection LawsLacy Deatrich - Mar 07, 2019
Written by Anne Kimbol, Chief Privacy Officer, HITRUST The rapid speed and increased movement of information illustrates the need for…
The Paubox™ HITRUST JourneyLacy Deatrich - Mar 07, 2019
Written by Hoala Greevy, CEO, Paubox Our HITRUST journey began eleven months ago when a Fortune 50 company reached out…
2019: The Year We Can Achieve Meaningful Privacy ReformLacy Deatrich - Mar 07, 2019
By Anne Kimbol, Chief Privacy Officer, HITRUST A year ago, it would have been hard to say that 2019 would…