Question: Is any specialized equipment needed to furnish Medicare telehealth services under the new law?
Answer: Currently, CMS allows for use of telecommunications technology that have audio and video capabilities that are used for two-way, real-time interactive communication. For example, to the extent that many mobile computing devices have audio and video capabilities that may be used for two-way, real-time interactive communication they qualify as acceptable technology. The new waiver in Section 1135(b) of the Social Security Act explicitly allows the Secretary to authorize use of telephones that have audio and video capabilities for the furnishing of Medicare telehealth services during the COVID-19 PHE. In addition, effective immediately, the HHS Office for Civil Rights (OCR) will exercise enforcement discretion and waive penalties for HIPAA violations against health care providers that serve patients in good faith through everyday communications technologies, such as FaceTime or Skype, during the COVID-19 nationwide public health emergency. For more information: https://www.hhs.gov/hipaa/for-professionals/special-topics/emergency-preparedness/index.htm
To read the Fact Sheet on this announcement visit: https://www.cms.gov/newsroom/fact-sheets/medicare-telemedicine-health-care-provider-fact-sheet
To read the Frequently Asked Questions on this announcement visit: https://www.cms.gov/files/document/medicare-telehealth-frequently-asked-questions-faqs-31720.pdf
NAHC is seeking an expansion of this waiver to accommodate those situations where two-way audio and video are not available. We will provide any new information as soon as it is available.
The office of the HHS Secretary also released the following two documents concerning HIPAA. The first document includes reminders about how to handle HIPAA during emergency situations. The second document includes the waiver explaining that providers are able to communicate with patients during this emergency using alternative technologies. Specifically, the notice states:
During the COVID-19 national emergency, which also constitutes a nationwide public health emergency, covered health care providers subject to the HIPAA Rules may seek to communicate with patients, and provide telehealth services, through remote communications technologies. Some of these technologies, and the manner in which they are used by HIPAA covered health care providers, may not fully comply with the requirements of the HIPAA Rules.
OCR will exercise its enforcement discretion and will not impose penalties for noncompliance with the regulatory requirements under the HIPAA Rules against covered health care providers in connection with the good faith provision of telehealth during the COVID-19 nationwide public health emergency. This notification is effective immediately.
Under this Notice, covered health care providers may use popular applications that allow for video chats, including Apple FaceTime, Facebook Messenger video chat, Google Hangouts video, or Skype, to provide telehealth without risk that OCR might seek to impose a penalty for noncompliance with the HIPAA Rules related to the good faith provision of telehealth during the COVID-19 nationwide public health emergency. Providers are encouraged to notify patients that these third-party applications potentially introduce privacy risks, and providers should enable all available encryption and privacy modes when using such applications.
Under this Notice, however, Facebook Live, Twitch, TikTok, and similar video communication applications are public facing, and should not be used in the provision of telehealth by covered health care providers.
Covered health care providers that seek additional privacy protections for telehealth while using video communication products should provide such services through technology vendors that are HIPAA compliant and will enter into HIPAA business associate agreements (BAAs) in connection with the provision of their video communication products. The list below includes some vendors that represent that they provide HIPAA-compliant video communication products and that they will enter into a HIPAA BAA.