On January 5, 2018, consistent with the 21st Century Cures Act’s focus on creating interoperability and correspondingly a Trusted Exchange, the Office of the National Coordinator for Health Information Technology (“ONC”) released its “Draft Trusted Exchange Framework” (“Draft Framework”).  The Draft Framework is intended to streamline the exchange of Electronic Health Information (“EHI”) so that both health care providers and patients have better access to health information, thus improving communication and quality health care.  EHI includes information beyond protected health information, such as health information from other consumer driven devices.  ONC has asked for public comments; the comment period is open until February 18, 2018.

ONC’s Draft Framework develops a mechanism to connect Health Integrated Networks (“Qualified HINs”) across the country. The ONC intends to select a single Recognized Coordinating Entity (“RCE”) through a competitive bidding process, which will be open in the spring of 2018.  The RCE’s responsibilities will be to develop the Common Agreement and operationalize the Trusted Exchange.  The Draft Framework includes the Principles of a Trusted Exchange (Part A) and the minimum terms and conditions that will be required for a Trusted Exchange (Part B) (the contractual terms that operationalize the principles of Part A).

The Draft Framework sets a number of conditions on Qualified HINs, some of which may require more direct interaction with patients than currently exists, or may require the Qualified HIN to disclose information that might otherwise be considered proprietary to the Qualified HIN. The biggest takeaways from the Principles (Part A) are:

  • Qualified HINs will be expected to use standards adopted or recognized by ONC’s Health IT Certification Program and Interoperability Standards Advisory (“ISA”) or industry standards readily available to all stakeholders;
    • Participants of Qualified HINs that provide services and functionality to providers are expected to follow the 2015 Edition Health IT Certification Criteria, 2015 Edition Base Electronic Health Record (EHR) Definition, and ONC Health IT Certification Program Modification final rule (“2015 Edition final rule”), and associated guidance for the certification of health IT; and
    • Qualified HINs and participants will be expected to implement processes that encourage more “person-centered” care;
  • Qualified HINs will be required to operate openly and transparently by:
    • Making terms and conditions for participation publicly available;
    • Supporting permitted uses and disclosures of EHI. Qualified HINs that only support HIPAA Treatment purpose exchanges, may want to support additional permitted purposes;
    • Making their privacy practices publicly available;
  • Qualified HINs must cooperate with and not discriminate among the various stakeholders across the continuum of care by not implementing policies, procedures, technology or fees that will obstruct access and exchange of EHI between other Qualified HINs, participants, and end users;
  • Qualified HINs must exchange EHI securely and in a manner that preserves data integrity by:
    • Including appropriate information to ensure the correct matching of individuals to their EHI; and
    • Ensuring providers and other organizations are confident that appropriate consents and authorizations have been captured;
  • Qualified HINs must ensure that individuals have easy access to their information by:
    • Ensuring full and consistent access to information; and
    • Having policies in place to allow an individual to withdraw or revoke his or her participation in the Qualified HIN; and
  • Qualified HINs will be expected to support the ability for participants to pull and push population level records—bulk transfer—in a single transaction rather than transmit one record at a time.

The Draft Framework is ONC’s most significant push toward interoperability among electronic health care systems and most likely will affect all stakeholders in the health IT industry and their participants at some point.

Back to Health Law Advisor Blog

Search This Blog

Blog Editors

Authors

Related Services

Topics

Archives

Jump to Page

Subscribe

Sign up to receive an email notification when new Health Law Advisor posts are published:

Privacy Preference Center

When you visit any website, it may store or retrieve information on your browser, mostly in the form of cookies. This information might be about you, your preferences or your device and is mostly used to make the site work as you expect it to. The information does not usually directly identify you, but it can give you a more personalized web experience. Because we respect your right to privacy, you can choose not to allow some types of cookies. Click on the different category headings to find out more and change our default settings. However, blocking some types of cookies may impact your experience of the site and the services we are able to offer.

Strictly Necessary Cookies

These cookies are necessary for the website to function and cannot be switched off in our systems. They are usually only set in response to actions made by you which amount to a request for services, such as setting your privacy preferences, logging in or filling in forms. You can set your browser to block or alert you about these cookies, but some parts of the site will not then work. These cookies do not store any personally identifiable information.

Performance Cookies

These cookies allow us to count visits and traffic sources so we can measure and improve the performance of our site. They help us to know which pages are the most and least popular and see how visitors move around the site. All information these cookies collect is aggregated and therefore anonymous. If you do not allow these cookies we will not know when you have visited our site, and will not be able to monitor its performance.