On March 3, 2025, the Secretary of Health and Human Services published a policy statement in the Federal Register that reverses a policy adopted over 50 years ago that was intended to expand public participation in the process of rulemaking at the Department of Health and Human Services (the “Department”). 90 Fed. Reg. 11029 (2025). This action is at odds with the “radical transparency” that Secretary Kennedy had promised previously, and may affect many programs and financial relationships between individuals, organizations, and others that interact with Health and Human Services (“HHS”).
Regulatory agencies such as HHS and its components, including the Centers for Medicare and Medicaid Services (“CMS”), the Food and Drug Administration (“FDA”), and the National Institutes of Health (“NIH”) must follow rulemaking procedures set out in the Administrative Procedure Act (“APA”) when they formulate and publish regulations that are intended to implement a statute and have the force of law. Those procedures include offering the public an opportunity to be notified of proposed regulations and to submit comments to the agency. The APA also contains several exceptions to the notice and comment requirement, including one for matters relating to “public property, loans, grants, benefits, or contracts.” Nevertheless, HHS and several other federal departments adopted policies that voluntarily waived these exceptions.
Our colleagues Stuart Gerson and Daniel Fundakowski of Epstein Becker Green have a new post on SCOTUS Today that will be of interest to our readers: "Court Declines Resolving Circuit Split on What Constitutes a 'False' Claim, but Will Consider Legality of Trump Abortion Gag Rule."
The following is an excerpt:
While this blog usually is confined to the analysis of the published opinions of the Supreme Court, several of this morning’s orders are worthy of discussion because of their importance to health care lawyers and policy experts. Guest editor Dan Fundakowski joins me in ...
As discussed in an earlier blog post, the New York state Stop Hacks and Improve Electronic Data Security Act (or “SHIELD Act”), was signed into law on July 25, 2019. A potential unintended side effect of the SHIELD Act may require health care companies to provide notification to the NY Attorney General for events that occurred well before its enforcement date. While the SHIELD Act’s data security requirements, which are covered under §4, will not come into effect until March 21, 2020, all other requirements, including the breach notification requirement, became effective on October 23, 2019. The notification enforcement date is important for any Covered Entity, as defined by the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”), that has suffered a Breach, as defined by HIPAA, involving fewer than 500 individuals (“Minor HHS Breach”), was a breach of computerized data, and involved a New York resident.
Blog Editors
Recent Updates
- Telehealth Cliff Averted, for Now (but September Is Six Months Away)
- The End of the Self-Affirmed GRAS Pathway?
- DEA Telemedicine Rules Further Delayed Until (Nearly) 2026
- Gender-Affirming Care Protections Eroded by Recent HHS Guidance and White House Executive Orders
- Important Negotiating Points in Commercial Real Estate Purchase and Sale Contracts Negotiating the Letter of Intent