On January 31, 2020, the Secretary of the U.S. Department of Health and Human Services (HHS) declared a public health emergency in response to the COVID-19 pandemic. A number of federal government agencies have since taken action to temporarily relax certain regulatory requirements that will allow healthcare providers and payors to address the COVID-19 emergency expeditiously and efficiently through the use of telehealth. Similar actions are also being taken at the state level. Below is a summary of the more significant measures that have been taken to promote the use of telehealth in combatting COVID-19 in the United States. These measures will be in effect for the duration of the public health emergency.

Waived Practitioner Licensure Requirements

On March 13, CMS announced a waiver of the requirement that healthcare practitioners providing telehealth services must be licensed in the state where the patient is located in order to obtain Medicare and Medicaid reimbursement. As a result, a practitioner licensed in one state may now be paid by Medicare and Medicaid for a telehealth visit with a patient located in a different state.

CMS’s waiver is limited to reimbursement and does not waive long-standing state laws requiring those practicing medicine to be licensed in that state. However, states, including California and Florida, are beginning to waive in-state licensing requirements for healthcare practitioners licensed in other states who are assisting with COVID-19 response efforts.

Continue Reading Telehealth Being Deployed to Combat COVID-19: Federal and State Governments Relax Numerous Requirements

A U.S. Department of Health and Human Services (“HHS”) administrative law judge (“ALJ”) ordered the University of Texas MD Anderson Cancer Center (“MD Anderson”) last month to pay a $4,348,000 civil monetary penalty because of violations of the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”).  While the vast majority of enforcement actions taken

Commissioner Scott Gottlieb of the U.S. Food and Drug Administration (“FDA”) stole the spotlight this past month when he delivered a speech discussing big promises from the agency regarding artificial intelligence (“AI”) in healthcare. “One of the most promising digital health tools is artificial intelligence, particularly efforts that use machine learning,” said Gottlieb when explaining

The U.S. Food and Drug Administration’s (FDA’s) Center for Devices and Radiological Health (CDRH) recently issued its Medical Device Safety Action Plan:  Protecting Patients, Promoting Public Health (Action Plan), an aspirational set of goals concerning the agency’s approach to medical device safety.  This Action Plan can be considered the FDA’s attempt to reorganize its toolbox

On April 24, the Center for Medicare and Medicaid Services (“CMS”) made major changes to the electronic health record (“EHR”) Meaningful Use Program.  Issued as part of a proposed rule updating the Medicare Inpatient Prospective Payment System and Long-Term Care Hospital Prospective Payment System requirements, these changes will significantly shift an important program that helped

On April 4, 2018, the New Jersey Attorney General’s office announced a settlement with a large network of physicians affiliated with medical and surgical practices throughout New Jersey (the “Medical Group”) for health privacy and security violations related to a breach of more than 1,650 patient records.  The settlement for violations of the federal Health

On February 28, Ethan Davis, the U.S. Department of Justice’s (DOJ) deputy assistant attorney general responsible for consumer protection, gave a speech discussing the Department’s plans for enforcement of laws governing the marketing of medical products. Mr. Davis highlighted recent DOJ enforcement actions and previewed how the Department intends to approach the issue in the

Digital health companies continue to forge ahead with plans to delve into the medical cannabis industry, despite uncertainty surrounding the legal status of medical cannabis at the federal level.

On March 1, 2018, Revive Therapeutics Ltd. (“Revive”), a Toronto-based company focused on the research, development, and commercialization of novel cannabinoid solutions, announced that it has

Under the HIPAA Breach Notification Rule, Covered Entities must report to the Secretary of the U.S. Department of Health and Human Services (HHS) breaches of unsecured protected health information  affecting fewer than 500 individuals (“small breaches”) no later than 60 days after the end of the calendar year in which the breaches were discovered. This

Late last week, the U.S. Department of Health and Human Services Office for Civil Rights (OCR) announced a $3.5 million settlement with a large provider of kidney dialysis services (the “Provider”) for multiple violations of the Health Insurance Portability and Accountability Act and its associated regulations (HIPAA).  In early 2013, the Provider filed five separate