HealthBlawg

David Harlow's Health Care Law Blog

  • About
  • Archives
  • Podcast
  • Press
  • Awards/Reviews
  • HIPAA
  • HCSM

Waiting for HIPAA Clarity? Who Has Time?

September 17, 2014

I recently read that the App Association (aka ACT) is lobbying Congress to promote clarity in HIPAA regulations for app developers, based in part on the experience that health care systems "don’t understand the intersection of HIPAA and mobile, and their reaction is to say ‘no’, [which means that] apps that improve outcomes don’t make it through the front door.”

Blaming the government for a regulated industry's failure to understand regulations, and suggesting that the government should publish its regulations through channels other than the official channels are interesting strategies. It seems to me that there are more productive ways of engaging with the issues.

New regulations are not going to change the scope and applicability of HIPAA/HITECH. OCR has pushed out some regs and subregulatory guidance, and has sat on other pieces (e.g., the Accounting of Disclosures final rule). It's largely a question of resources and priorities. (I had an interesting window into this calculus thanks to a recent forum with Linda Sanches of OCR.) Ultimately, If we want a more friendly regulatory environment, it will require an act of Congress, and Congress is pretty unable to act these days, so I wouldn't hold my breath.

In an era of government consolidating and cutting back, I also won't be holding my breath waiting for more user-friendly explanations of regulations to emanate from DC. Meanwhile, we muddle through as best we can, no?

I've seen HIPAA confusion and its predecessors out there for decades. Before health systems were saying no to innovation because of unfounded fears regarding HIPAA, they were saying no because of unfounded fears regarding fraud and abuse, anti-kickback and Stark rules. Before then, it was something else. "Plus ca change, plus c'est la meme chose."

I work with innovative startups and innovative health systems that are building and implementing the tools that are needed to bridge the gap between the possible and the current reality of lackluster use and leverage of health data in order improve individual and population health. It's happening today.

Better guidance would be nice to have, but it is not a must-have.

David Harlow
The Harlow Group LLC
Health Care Law and Consulting

Related Posts

  • HIPAA compliance = privacy protected?

    A year ago, AHRQ found rampant confusion and mistakes among covered entities trying to comply…

  • HIPAA Clarity: Do You Have to Sue HHS to Get It?

    Sue Me "Serve a paper and sue me ...."  Is this really the only way…

  • 9 No-Nonsense Rules to Ensure a HIPAA-Compliant Health Care Social Media Strategy

    Health care social media continues to be a hot-button issue for hospitals and other provider…

Filed Under: Health 2.0, Health care policy, Health Law, HIPAA, mHealth, Mobile health, OCR, Privacy, Security

« HIMSS Privacy and Security Forum: Managing Social Media While Protecting Privacy and Security
#ThinkFurther – The Future of Medicine »

Threads

Follow me on: Threads

Mastodon

Follow me on: Mastodon

HIPAAtools

Hipaatools

The HIPAA Compliance Toolkit

The Walking Gallery

The Walking Gallery

Quick Links

  • Home
  • Categories
  • Archives
  • Podcast Interviews
  • HIPAAtools
  • HIPAA Compliance
  • Health Care Social Media
  • Speaking
  • In the Press
  • Blogroll

David Harlow

David Harlow

HealthcareNOW Radio

  • Subscribe
  • Contact
  • Book Me: Speaking
  • About
  • The Harlow Group LLC
Copyright © 2006–2025
HealthBlawg is a publication of The Harlow Group LLC. See Copyright notice and disclaimer.
Fair use with attribution and a link is encouraged. Click for more on David Harlow.
[footer_backtotop text="Back to top" href="#"]