Herrin Health Law, P.C.

Charitable Giving Fraud and Other Online Dangers

Barry Herrin — Wed, 30 Oct 2024 10:16:48 +0000

In today’s digital world, charitable giving can be a click away—but so can the risk of falling victim to scams. Charitable Giving Fraud and Other Online Dangers dives into the emotional tactics cybercriminals use to deceive generous donors, especially in times of crisis, from Veterans Day to natural disasters like the Maui fires. With millions lost to online charity scams, this article reveals eye-opening statistics and outlines essential steps to protect yourself and ensure your support reaches the right hands. Ready to learn how to spot red flags and give with confidence? Read on! (PDF)

As published in DRI’s In-House Defense Quarterly, Fall 2024, pp 20-22.

Barry S. Herrin, JD, FAHIMA, FACHE, is the founder of Herrin Health Law, P.C., in Atlanta, Ga. Herrin offers more than 30 years of experience practicing law in the areas of healthcare and hospital law and policy, privacy law and health information management, among other healthcare-specific practice areas. He is a Fellow of the American College of Healthcare Executives and a Fellow of the American Health Information Management Association. He also holds a Certificate in Cyber Security from the Georgia Institute of Technology. Reach him at 404-459-2526 or barry.herrin@herrinhealthlaw.com.

The post Charitable Giving Fraud and Other Online Dangers appeared first on Herrin Health Law, P.C..

We’re All Purple

Barry Herrin — Sat, 25 Sep 2021 19:21:18 +0000

You may have heard the phrase, “All I need to know about life I learned in kindergarten.” Well, all I need to know about race, diversity, and inclusion I learned on the Naval JROTC drill team in Valdosta, Ga., in 1980. Oh, I’ve learned lots of supplemental things about these subjects, and about myself, in the time between then and now, but the bedrock principles were established then.

In 1980, Valdosta High School was a racially divided school in many ways. Still under a supervised court order for desegregation, the school enacted what even today is a bizarre structure for the integration of school activities. For example, the race of our homecoming queen was pre-selected and alternated: even years, black; odd years, white. The beautiful Carol Johnson was our 1982 homecoming queen and could have won in an honest vote against any white competitor hands-down. Similarly, class officer elections were required to have two white and two black officers. So, when we elected a white class president (local football family scion Blake Belue), we were obligated to elect a black vice-president, which we did in the person of the very capable and talented Irwin Thomas. The same thing occurred in the elections of class secretary (Letitia Hart, black) and treasurer (Juliet Purvis, white/Native American). In most other respects, VHS was divided into the typical cliques: jock, country club, nerd, band, sorority girls, bad boys.

Drill team, however, was a different place. Our naval science instructor, Petty Officer Sam Wright, himself an avowed redneck from Ray City, did not tolerate any racism or gender bias in our JROTC battalion generally or our elite teams (drill team, color guard, rifle team, orienteering) specifically. The life-changing lesson I referred to earlier was delivered by our drill team commander, Cadet Lieutenant (junior grade) Columbus Carter, a black kid who is, the last time I kept track, a deacon at the Resurrection of Our Lord Catholic Church. To the best of my recollection, our introduction to drill team went something like this:

“My name is Cadet Lieutenant (junior grade) Columbus Carter. You may call me Lieutenant Carter. Outside of drill team, you can call me CC, which also stands for ‘Chocolate Chip’, ‘cause I’m black and sweet, baby [HUGE grin]. The first thing all y’all need to know about drill team is that there ain’t no black folk on the drill team, and there ain’t no white folk on the drill team. We’re all purple. And the purple people got to stick together or this drill team ain’t gonna be no damn good.”

We’re all purple. Rather than play the race/hate card that seems so easy to play these days, CC led by positive example and held all of us accountable – white and black – to his personal standard of excellence and respect. He wanted his team to look sharp, march well, and reflect positively on him as the leader.

A lot has changed on high school and college campuses since 1980. We’ve seen a push to avoid teaching standard English in favor of “ebonics” come and go, to be replaced with the insane notion that math somehow is racist. We’ve seen California enact and then sustain race-neutral admissions criteria in education alongside the removal of Abraham Lincoln’s name from a public high school because the Great Emancipator isn’t “woke” enough for the idiot left. Asian students are suing Harvard for racial discrimination. Words like “Black Lives Matter,” “critical race theory,” and “cancel culture” are part of dialogue at school board meetings. Similar changes are happening in the workplace. The “affirmative action” of the 1970s is being replaced with “diversity and inclusion initiatives,” claims of “systemic racism,” and the Cultural Revolution style “struggle sessions” over “white privilege.”

We have to find a way for each of us to express his own individual unique talents and skills and pursue excellence as individuals – as purple people – instead of letting schools, governments, employers, rioters, and social justice elites divide, define, and sort us into categories that often create more problems than they solve.

And none of us needs to pull any punches when fighting for our purpleness. Being a purple person is serious work, and there aren’t any “safe spaces” for bigots or racists or anti-racists or “snowflakes” or social justice warriors or any of the other “rebels without a clue.” I personally am not going to let you dilute my purpleness with any of that crap. And you shouldn’t let anyone dilute yours, either.

Power to the Purple People.

The post We’re All Purple appeared first on Herrin Health Law, P.C..

What Your Compliance Officer Is — And Is Not

Barry Herrin — Sat, 27 Mar 2021 11:34:48 +0000

As published in the Journal of Health Care Law and Policy

In the strange way that thoughts connect and evolve, an experience I had on October 11, 2019 as a panelist for the University of Maryland Carey Law’s In-House Counsel Roundtable¹ just came back to mind as I read an online post from one of those accounting firms that sounds like people really wanting to be lawyers who are trapped in the license of accountants. Everyone is giving advice on what to do during and after our experience with COVID-19, and you have already heard from me on this point.² However, this particular measure of information is meant to address a disturbing trend highlighted in both my panel experience and in the accounting firm post, which is the misunderstanding of the separate roles of the compliance officer and counsel, and—of more immediate concern—the unhelpful (and in some cases dangerous) broadening of the role of the compliance officer into an all-laws inspector general for the healthcare enterprise.

Read the full article in a browser. Download PDF

Citations

Barry S. Herrin, What Your Compliance Office Is – And Is Not, 24 J. Health Care L. & Pol’y 139 (2021). Available at: https://digitalcommons.law.umaryland.edu/jhclp/vol24/iss1/7

¹ Further details and information regarding this event can be found at: Hot Topics for In-House Counsel at Health Care Institutions, UNIV. OF MD. FRANCIS KING CAREY SCH. L., (Oct. 11, 2019),
https://www.law.umaryland.edu/Programs-and-Impact/Health-Law/Events/AHLA/.

² Barry Herrin, Teleworking Due to COVID-19? Protect PHI From Security Threats, Starting with this Policy, HERRIN HEALTH L., https://staging2.herrinhealthlaw.com/teleworking-due-to-covid-19-protectphi-from-security-threats-with-this-policy/ (last visited Feb. 3, 2021).

The post What Your Compliance Officer Is — And Is Not appeared first on Herrin Health Law, P.C..

ERISA: the Key to Saving Your Company’s Private Healthcare

Barry Herrin — Thu, 15 Oct 2020 11:05:00 +0000

William M. Satterwhite, JD, MD, CPE and Barry S. Herrin, JD, FACHE

Everyone in business understands the term “ERISA”. Yet few people, even those in the benefits industry, actually really understand the incredible power to improve health and save money that is contained within the provisions of the Employment Retirement Income Security Act of 1974, as amended. Though originally ERISA only addressed pension plans and individual retirement plans, the Act has been amended several times and now covers employment-based medical and hospitalization benefits plans, called “welfare benefit plans” (WBP) in ERISA parlance.

Most companies offer traditional health benefits plans that have the usual monthly premiums, copays and deductibles, and some companies even offer a choice of plans each year. These plans are almost always a very “one-size-fits-all” approach, much the same as if the company said it was going to give every employee a free pair of socks — all of the same size! Who would do such a preposterous thing, you ask? Answer: almost every company in the US with more than 50 employees!

Welfare benefit plans (WBPs) as defined by ERISA, however, let a private employer create extra health benefits that are tailored to specific people or conditions, and these can be provided in addition to the company’s traditional health insurance benefit plans. Moreover, ERISA allows an employer to determine who gets this benefit, what it is they actually get, and how it is given and paid for.

For example, in addition to a major medical plan, an employer can provide any or all of the following WBPs:

A plan for employees or beneficiaries who have been diagnosed with depression, anxiety, or other mental health disorders. This WBP can cover all visits to the psychiatrist and counselor at 100% without deductibles or copayments, along with all generic medications.
A plan for employees or beneficiaries with the diagnoses of diabetes and high blood pressure. This WBP covers all visits to the doctor at 100% without deductibles or copayments when the purpose is addressing these diagnoses. Under this plan, insulin and all generic medications can be covered at 100% without deductibles or copayments.
A plan establishing an onsite clinic for all employees, regardless of whether they are on the company’s health benefit plan or not, where all visits can be free and may be done ‘on the clock’ (that is, without the need for the employee to ‘clock out’ of work hours). Onsite visit-related generic medications can be free as well.[1]
Each WBP can have a designated ‘Nurse-Health Coach’ who is available onsite in person at certain intervals and available by phone at other times. These Nurse-Health Coaches are the ‘go-to’ people for these WBP participants and a key operational component to decreasing the cost of care, triaging those with acute needs, and coaching them regarding relevant lifestyle changes.

WHY THIS WORKS

Insurance companies generally price coverage for employers on a year-to-year basis, which means that the insurer builds in its risk of loss to both known and unknown health conditions. This is why, for example, dental insurance benefits punish insureds that have to have a crown replaced with a bridge within 5 years of the placement of the crown. The insurer would rather have paid for a bridge that creates a risk of bone loss and damages two healthy teeth instead of trying (albeit unsuccessfully) to save a damaged tooth before resorting to a bridge. This kind of pricing and payment strategy makes no sense to most employers, because the average tenure for employed professionals is five years, with 23 percent of professional workers having tenure greater than 10 years.[2] Indeed, one of the authors notes in a prior article[3] that, with this information, it might be better for an employer to pay for LASIK (at an average cost of $2500) rather than years and years of eyeglasses (at an average cost of $200 per year) because the total cost to the employer over time might well be less.

Similarly, delivering more care up front — as these models suggest — would in many cases save the employer money over time for long-term employees. It has been known for decades (at least) that the administration of a six-month course of beta blockers (available as a generic at low cost) following an acute heart attack lowers the rather substantial likelihood of a typical second heart attack occurring within the next 12 months and its attendant costs.[4] Recent studies[5] show that the use of statins combined with cardiac rehabilitation also proves cost-effective over the lifespan of the patient, and perhaps even a shorter period of time. However, insurers looking only at a yearly expense might not choose to pay for therapy that only has benefits to the patient over a multi-year period, whereas an employer who knows he will have that employee as an insured for several years, if not decades, might want to make that early expense in order to save overall dollars.

Additionally, early and persistent intervention in diabetes care and chronic obesity can prevent increases in care costs and progression of disease that could lead to short-term disability, long-term disability, and perhaps death. Such intervention can be in-person with or without the addition of drug therapy, but such interventions are a long-term commitment to decreasing long-term costs of care.[6] The attendant weight loss from such therapy also can improve cardiac health as well as reduce stress on the musculoskeletal system caused by excess weight.

Finally, for many employees with diabetes, for example, the dual barriers of high cost and inconvenient care result in poor care and poor outcomes, incurring average health care spending of $16,572 to remediate these issues.[7] With the right kind of WBP, many employers could see a drop in Year 1 costs of care for their diabetic employees. It is also not uncommon to see reductions in emergency department costs from 35% of the care spend on these employees to the single digits.

Only a payor that knows it has “bought” the risk of an insured for a longer period of time would engage in these strategies; however, most employers on the short-term financial advice of their insurers don’t do these things. The result? Less long-term improvement in employee health and higher overall health care costs to the employer.

GETTING PROVIDER BUY-IN

To be honest, the average health care provider doesn’t have any interest in lowering the health care costs its customers pay unless there is something in it for them. The alternative WBPs listed here offer the employer and a narrow network of providers the opportunity to share the rewards of a successful health care payment strategy. For example, Wake Forest Baptist Health as an integrated service provider (meaning a health care provider that owns and controls hospitals and ambulatory surgery centers and employs physicians) can offer a direct contract to self-insured employers in its service area, using only its owned and controlled resources, that could include an agreement to share any savings that these WBPs achieve each plan year with the employers. Because of the pre-emption of certain state insurance laws afforded by ERISA, such plans cannot be characterized as insurance under North Carolina law, thereby removing the necessity that an insurer (with its cost structure) be involved in the plan’s administration. In summary, a well-articulated strategic deployment of WBPs with select employers can provide a health system with steady cash flows, upside gain, and highly satisfied physicians who are not compensated by the “volume wheel.”

WHAT ARE THE POTENTIAL DOWNSIDES?

Most employers will not have the internal capacity to monitor and administer these programs and will therefore rely on their third-party administrators (TPAs) to do it for them. However, if the TPA is a subsidiary or affiliate of a major health insurer, it will be virtually impossible to get the TPA to agree to load these providers as in network and administer their claims, especially if the narrow networks compete with their other in-network providers. This is one of the dirty little secrets of health care insurers: even though ERISA permits the self-insured employer to direct the makeup of network providers, insurer-based TPAs rebel at this because it breaks the leverage that the insurer has to exclude providers who do not agree to their (usually very low) payment rates from the networks of self-insured employer plans.

One other important point needs to be mentioned and that is the other big federal law controlling employer health plans: the Consolidated Omnibus Budget Reconciliation Act of 1986, known to every human resources professional as simply COBRA. COBRA is what requires employers with 20 or more employees to allow former employees to extend their health care benefits post-employment. That means that, even though the employer has lost the potential future savings these WBPs offer, it must continue to allow former employees (and others qualified under COBRA) to continue to access these benefits.

CONCLUSION

As with many great ideas that can transform modern industry, nothing in this article is really new, as the laws have been on the books for decades and the evidence of what we’re advocating has been around for many years. However, employers find it easier simply to follow their broker’s advice and pay an insurance company or an insurer-controlled TPA to make decisions about the health and wellbeing of the employer’s most valuable resource, chalking up the ever-increasing cost of care as an expense of doing business. Employers owe it to themselves to explore every avenue to increase worker health and productivity and decrease costs. Happily, the strategies suggested here can in many cases do both. If you’d like to explore these ideas for your company, or begin a direct-to-employer offering as a healthcare provider, let us know.

ENDNOTES

Dr. Satterwhite is admitted to the Bar of North Carolina and is Chief Wellness Officer of Wake Forest Baptist Medical Center. Mr. Herrin is also admitted to the Bar of North Carolina and is outside counsel to Wake Forest Baptist Medical Center. Â© 2020 William Satterwhite and Herrin Health Law, P.C. All rights reserved.

[1] This might not be truly a welfare benefit plan in the ERISA sense but another nonmonetary benefit of employment. The distinction, although at first seemingly unimportant, affects how the employee’s health information is used and disclosed under HIPAA. Additionally, such benefits cannot, for example, be extended to dependents of employees under the employer’s health plans.

[2] U.S. Bureau of Labor Statistics. (2018, Sept. 20). Employee Tenure Summary. Retrieved from https://www.bls.gov/news.release/tenure.nr0.htm

[3] https://herrinhealthlaw.com/disrupting-the-talk-about-disruption/

[4] https://herrinhealthlaw.com/wp-content/uploads/2018/12/AHLA-2004-Feb-Herrin-Health-Law-Analysis-Pay-Performance.pdf

[5] https://heart.bmj.com/content/104/17/1403

[6] https://care.diabetesjournals.org/content/39/Supplement_1/S47

[7] https://www.diabetes.org/resources/statistics/cost-diabetes#:~:text=People%20with%20diagnosed%20diabetes%20incur,in%20the%20absence%20of%20diab

The post ERISA: the Key to Saving Your Company’s Private Healthcare appeared first on Herrin Health Law, P.C..

Disrupting the Talk about Privacy and Security “Disruption”

Barry Herrin — Thu, 06 Aug 2020 01:03:35 +0000

The overbroad and ubiquitous use of the term “disruption” in the technology context, particularly with reference to computer data privacy and security, may backfire among certain audiences. Here’s how to not lose your credibility.

As published in the ISSA Journal August 2020, volume 18, issue 8, pages 23 to 25. ISSA is the Information Systems Security Association International.

For the entire article, please click this link for the printer-friendly PDF.

The post Disrupting the Talk about Privacy and Security “Disruption” appeared first on Herrin Health Law, P.C..

Top 12 Information Security Recommendations for Businesses Operating in a Quarantined World

Barry Herrin — Mon, 06 Apr 2020 15:54:30 +0000

Printer-friendly PDF

By DRI Cybersecurity and Data Privacy Committee and the DRI Center for Law and Public Policy

Authors:
Stephen E. Reynolds, Ice Miller LLP
Barry S. Herrin, Herrin Health Law, PC
Leon Ravenna, KAR Global
Laura C. Fey, Esq., Fey LLC

We hope that all of you are feeling well and staying safe. Recognizing that many of you and your colleagues are confronting significant information security and data privacy challenges right now, the DRI Cybersecurity and Data Privacy Committee and the DRI Center for Law and Public Policy have teamed up to prepare and provide you with DRI’s Top 12 Information Security Recommendations for Law Firms and Other Businesses Operating in a Quarantined World.

1. Use a Virtual Private Network (VPN): Businesses should consider using a VPN to secure remote access to their organization’s systems, documents, and contacts. If a business does not have remote VPN available, remote workers should be encouraged to assess their home network security and consider changing the password to their home internet routers.

2. Advise Employees to Confirm Home Routers are Updated: Businesses should advise all employees working remotely to update their home routers to the current revision.

3. Install Multi-Factor Authentication (MFA): Businesses should consider utilizing MFA, which creates an additional authentication step on top of inputting a password, adding an extra level of security to network login or email credentials.

4. Use Antivirus Software: Businesses should require antivirus software on any computer accessing your infrastructure.

5. Monitor Online Behavior and Consider Disabling Certain Access: Businesses should enable online auditing software to make sure employees aren’t navigating around the Internet unsafely. Consider disabling access to personal emails and Facebook from business supplied technology. Consider limiting remote access to ‘trusted’ devices. Consider enabling ‘lock, wipe, kill’ technology for personal devices connecting to business platforms.

6. Beware of Phishing Emails: Businesses should circulate regular reminders to remote workers to stay vigilant for phishing emails and working with their information technology team to enhance their spam and phishing filters.

7. Disable Virtual Assistants: Employees should be required to turn off Alexa and other virtual assistants while any work-related information is being discussed — they are always listening.

8. Securely Store and Transmit Confidential Electronic Information: Where appropriate, businesses should consider acquiring secure cloud storage and requiring remote workers to store all confidential information on the cloud where only authorized employees are permitted access, rather than on their local machines. Remote workers should encrypt documents and email communications that contain confidential information. Alternatively, if possible, consider disabling saving to remote terminals and drives and disabling USB ports to prevent use of portable drives.

9. Securely Store and Share Physical Copies of Confidential Information: Remote workers should be reminded not to leave confidential information out in the open and to store such documents in a secure location. Maintain a ‘clean desk’ policy for work at home. Any sharing of physical copies of confidential information should be handled in a secure manner. Documents with confidential information should be shredded when no longer needed. Consider disabling remote printing or printing to other than networked printers.

10. Install Home Firewall: If possible, executives and other employees should set up a home firewall for an extra level of security.

11. Securely Take Confidential Phone Calls: When conducting phone conversations, especially where confidential information will be shared or discussed, remote workers should take such calls in a private room away from other persons.

12. Remember Physical Security: Remote workers should always lock their devices (whether a computer or mobile device) when unattended. Remote workers should also always lock their doors when leaving their home without their devices, even for a short period of time.

The post Top 12 Information Security Recommendations for Businesses Operating in a Quarantined World appeared first on Herrin Health Law, P.C..

Teleworking due to COVID-19? Protect PHI from security threats, starting with this policy.

Barry Herrin — Tue, 24 Mar 2020 01:55:23 +0000

Securing personal health information (PHI) can be a meticulous task inside your organization’s firewall. With restrictions now in place forcing teams to work remotely, many for the first time, and with unfamiliar technology, it’s more critical than ever that we batten down the hatches.

PHI can include physical records, electronic records or spoken information. Think medical bills, lab test results, health records and histories anything that includes a personal identifier. These types of data are highly sought after on the dark web, posing a critical need for strict policies and practices.

Staying vigilant applies to remote workers with company equipment as well as personal hardware. If you rely on third-party vendors to manage billing, medical records, precertification, quality reviews or the like, ask if measures are in place to combat hackers and breaches in this new environment.

In the meantime, here’s a customizable Remote Working Obligations template to help you think through safeguards. There is no such thing as too much cybersecurity.

Remote technology doesn’t have feel like we’re playing tin-can telephone (as nostalgic as that sounds). But we do need to play intelligently.

Our warmest wishes to all for staying healthy and safe.

The post Teleworking due to COVID-19? Protect PHI from security threats, starting with this policy. appeared first on Herrin Health Law, P.C..

Disrupting the talk about “disruption”

Barry Herrin — Tue, 21 Jan 2020 11:53:03 +0000

How many are weary of all of the hype around this or that “disruptive technology” or “disruptive business strategy”? I see plenty of hands, and mine could not be raised any higher. As a person with a quality liberal arts education (in history, no less), I can both cite the definition of disruptive technology and provide plenty of examples, all of which you intuitively know.

Clayton M. Christensen used the phrase “disruptive technologies” in a series of writings beginning in 1995[1] to describe business models that are enabled by technologies to create disruptive impact, sometimes eliminating the industry that was “disrupted.” In fact, Christensen later used the term “disruptive innovation” because much of the disruption in modern business used existing technologies combined in new or different ways to create the disruption.

There are plenty of examples of new technology disrupting and destroying older businesses. The telegraph outran the Pony Express; transcontinental air travel steamed the luxury steamship industry AND the passenger train industry (at least in the U.S.); computers double-punched typewriters; compact disc (CD) technology outspun eight tracks and cassettes in consumer music; cellphones rung the compact camera industry’s bell; and email has all but eliminated the use of postal mail for routine business and social correspondence, while significantly lessening the use of telex[2] and faxing. There are hundreds of other technological advances that have transformed or eliminated other businesses and technologies that we probably don’t even appreciate in our present-ism. Just think of our newer household appliances, which created the free time that American families used to help create entire industries in travel, hospitality, and the like. But, as an historian, I challenge you to look up fuller’s earth, an earthy substance that naphtha replaced in rapid-cycle commercial dry cleaning.[3] Accenture cites a statistic that 52 percent of the Fortune 500 companies that existed in 2000 have disappeared due to bankruptcy, merger, acquisition, or some other cause.[4]

However, the continual use of the term “disruption” in connection with modern technology, especially when applied to health care and related industries, has diluted the term into everyday jargon; so much so that the word “is often used out of context and lost its power.”[5] I couldn’t agree more. Let’s look at some claims of “disruption” in health care making the rounds in the media.

Forbes contributor Reenita Das wrote about the “Top 8 Predictions that Will Disrupt Healthcare in 2020.”[6] Looking beyond the clickbait of the title to investigate what is billed as disruptive, you can see the article really just addresses trends. For example, there is a claim that 40 percent (less than half) of U.S. commercial payers and health systems combined will attempt to use social determinants of health in making some business decisions. In fact, most health systems already use “demographics (age, gender, race), environment, and socioeconomic factors” cited in the article to make decisions about which physicians to employ, where to deploy them, whether to expand collaborations or acquisitions, and the like. To avoid costly antitrust litigation, hospital systems may consider “poaching” specialist physicians or subspecialists to feed their existing hospital footprint versus acquiring a competing hospital. In the words of the former CFO of one of my clients, “If I have the doctors, I don’t need the hospital they used to send their patients to.” The expansion of cancer programs, gastroenterology endoscopy suites, and assisted living centers with Alzheimer’s or “memory care units” all point to health care businesses using available data on population aging and disease prevalence to build or expand key service areas. However, a less-than-majority adoption of these types of data in even some decisions cannot fairly be categorized as “disruptive.” Evolutionary, perhaps – but not revolutionary to the point of changing the fundamental nature of how health care is delivered.

Second, a recent article from ReferralMD[7] touts “9 Recent Medical Innovations Disrupting Healthcare.” The familiar technology buzz ideas surface here also: wearables that increase “wellness,” adoption of electronic health records, a supposed leap forward in telehealth, and blockchain. However, LASIK (a technology that has been around for decades and still is not reimbursed by hardly any insurance plans) also makes an appearance as “disruptive.”

First, wearables in healthcare that only help well people monitor how well they are aren’t useful or disruptive; they feed the inherent narcissism of American consumers by allowing them to create data they can post to social media to “compete” with their similarly well friends or to create “likes” about sticking to fitness resolutions, etc. Wearables that help sick people get better are too expensive, and even their creators agree – they cannot succeed in a “direct to consumer” model with these devices.[8]
Second, adoption of EHRs can help insurers and employers pay for less duplicative healthcare, and they can help people with complex diseases coordinate care among providers. However, the only thing EHRs consistently disrupt is the workflow of the providers using them.[9] Some authors believe that they are designed primarily to harvest clinical data for the financial betterment of the EHR companies themselves.[10] I have a client that was offered a “free” EHR system for its medical specialty – a system that was a catastrophic failure by all measures – and then was offered an ownership stake in that same system IN EXCHANGE FOR A 16-YEAR AGREEMENT FOR THE VENDOR TO HARVEST CLINICAL DATA.
Third, telehealth has been around since the 1990s in the form of remote reading of diagnostic images. It’s grown to the use of “hub and spoke” systems for stroke care and similar clinical assistance between providers. This article, however, stands for the proposition that physicians will be able to “monitor and diagnose patients miles away – conversing with them about symptoms, and even being able to see medical concerns to make an informed decision on medication or operations without even being in the room or state for that matter.” In my estimation, this type of “direct to consumer” approach to telehealth will only be effective if a new patient can use his or her iThing to get a prescription for medications without having to physically see a physician. Otherwise, nurse call lines and other existing technology bridges between patients and physicians will continue to be prevalent.[11]

In a monumental longitudinal study by Henry Ford Health System, the use of telehealth clearly saved clinicians and patients time driving; it also saved physicians from wasting time doing non-revenue generating tasks. Additionally, it increased the remote monitoring of home-care patients (versus in-home monitoring by a trained person) by about 20 percent year-on-year. However, the number of revenue-generating patient visits from all types of telehealth encounters was not statistically significant and may have actually decreased.[12]

Finally, the reference to a 1990s technology – LASIK – is interesting and seems to be more wishful thinking than outright disruption. Clearly (to me at least), the healthcare insurance industry is happy to pay for a large percentage of the cost of a new pair of glasses every year as a part of an insured’s benefit package (estimated at $200); however, it has no interest in curing the condition (at a cost of around $2,500 per eye).[13] The reason, of course, is that each insurer prices its plans as if there will be 100% turnover in its entire portfolio each year; therefore, it has no interest in paying for a lifetime program if it can pay instead for a Band-Aid. The real mystery is why self-insured employers don’t cover LASIK more often, as employee tenure data released by the Bureau of Labor Statistics in September 2018 shows that professional occupations in the private sector have a five-year median tenure, with over 23 percent of all workers being in the same job at least 10 years.[14] In many cases, using its own employee demographics to project lifetime costs might make an investment in LASIK worthwhile for the employer; however, these employers are probably within the 60 percent excluded from the adoption predictions of Ms. Das with which we began our discussion.

As you can see, the “hype curve” for healthcare “disruption” remains very steep. Improvements in the reliability and availability of healthcare technology have assisted health care providers greatly. The availability of government funding for more uses of technology has helped providers more quickly adopt this technology than we all thought possible.

In many cases, it’s true that providers are using technology to connect with patients in new and better ways. However, real people seeing real providers for real diseases that require real hands-on treatments by other real people in real physical surroundings built for that purpose are still the norm, all of our eagerness to declare the old-world order of healthcare dead notwithstanding.

Now, get your flu shot and disrupt that disease process before it disrupts your winter.

[1] Bower, J. L.; Christensen, C.M. (1995, January/February). Disruptive Technologies: Catching the Wave. Harvard Business Review.

[2] Direct customer-to-customer telegraphy, removing the need for a courier to bring the message (like you see in old movies).

[3] No, I’m not going to give you the easy way out. Do your own investigating.

[4] https://www.accenture.com/us-en/insight-healthcare-bigbang-disruption

[5] Forrest, C. (2014, May 1). Startup Jargon: 10 Terms To Stop Using. Retrieved from https://www.techrepublic.com/article/startup-jargon-10-terms-to-stop-using/

[6] Das, R. (2019, Dec. 4). Top 8 Predictions That Will Disrupt Healthcare in 2020. Retrieved from https://www.forbes.com/sites/reenitadas/2019/12/04/top-8-predictions-that-will-disrupt-healthcare-in-2020/#2e4758da7f1e

[7] ReferralMD (2018, September). 9 Recent Medical Innovations Disrupting Healthcare. Retrieved from https://getreferralmd.com/2018/09/9-recent-medical-innovations-disrupting-healthcare/

[8] Herrin, B. (2018, December). What Amazon’s Health Care Model Won’t Look Like? Amazon. Retrieved from https://staging2.herrinhealthlaw.com/what-amazons-health-care-model-wont-look-like/

[9] Makoul, G.; Curry, R. H.; Tang, P.C. (2001, November/December). The Use of Electronic Medical Records: Communication Patterns in Outpatient Encounters. Retrieved from https://www.ncbi.nlm.nih.gov/pmc/articles/PMC130071/ “Although there was no statistically significant difference between the EMR and control physicians in terms of mean time across all visits, a difference did emerge for initial visits: Initial visits with EMR physicians took an average of 37.5 percent longer than those with control physicians.”

[10] Green, H. (2018, July 17). Electronic Medical Records EMR’s Need a Window Sticker. Retrieved fromhttps://www.linkedin.com/pulse/electronic-medical-records-emrs-need-automobile-act-sheet-green-md/

[11] Herrin, B. (2018, December). What Amazon’s Health Care Model Won’t Look Like? Amazon. Retrieved from https://staging2.herrinhealthlaw.com/what-amazons-health-care-model-wont-look-like/

[12] American Bar Association. 20th Annual Conference on Emerging Issues in Healthcare Law. (2019, March 13 to 16). Telemedicine’s Evolution: Hot Topics and Privacy Considerations. The study shows an unequivocal decrease in personnel costs associated with tasks that can be performed remotely.

[13] Segre, L. Duff, B. (updated 2019, October). How Much Does Lasik Cost? Retrieved from https://www.allaboutvision.com/visionsurgery/cost.htm

[14] U.S. Bureau of Labor Statistics. (2018, Sept. 20). Employee Tenure Summary. Retrieved from https://www.bls.gov/news.release/tenure.nr0.htm

The post Disrupting the talk about “disruption” appeared first on Herrin Health Law, P.C..

Eight release of information (ROI) missteps to avoid

Herrin Health Law — Sat, 14 Sep 2019 02:11:07 +0000

As HIPAA regulations evolve, it’s easy to make common mistakes in releasing medical information. Barry S. Herrin and other subject-matter experts provide insight in “Eight ROI Misssteps to Avoid.” Written by Lisa A. Eramo, MA. As printed in For The Record, Vol. 31 No. 8 P. 10.

Barry S. Herrin, JD, FAHIMA, FACHE, is the founder of Herrin Health Law, P.C., in Atlanta, Ga. Herrin offers more than 25 years of experience practicing law in the areas of healthcare and hospital law and policy, privacy law and health information management, among other healthcare-specific practice areas. He is a Fellow of the American College of Healthcare Executives and a Fellow of the American Health Information Management Association. He also holds a Certificate in Cyber Security from the Georgia Institute of Technology. Reach him at 404-459-2526 or barry.herrin@herrinhealthlaw.com.

The post Eight release of information (ROI) missteps to avoid appeared first on Herrin Health Law, P.C..

In estate planning, save your solo medical practice with this one action

Barry Herrin — Tue, 19 Feb 2019 14:46:43 +0000

Here’s a little known fact that escapes many solo physicians who are doing their estate planning: if a physician is the sole owner of a medical practice that is enrolled in Medicare and that physician owner dies, the practice automatically dissolves for purposes of Medicare enrollment.¹ Additionally, all reassignments to the practice are automatically terminated.² Thus, neither the deceased owner-physician nor the practice is enrolled in Medicare any longer, and the Medicare billing privileges of all physicians and medical professionals working for the practice are automatically revoked.³

This can have a catastrophic effect on everyone involved with the practice, as the Medicare contractor is instructed to use the date of the physician’s death or the date of revocation to end-date the reassignments.⁴ It does not matter to the Centers for Medicare & Medicaid Services (CMS) whether the practice is a sole proprietorship, a professional corporation, or a solely owned limited liability company.⁵

Wow. Imagine if you’re the surviving spouse of such a physician and you thought you had six months to a year (depending on the state’s professional corporation rules) to find a buyer to continue the practice — you now have nothing that is worth selling except medical records and some office furniture. The loss of Medicare enrollment will cause the value of the practice to plummet because the practice no longer has the ability to bill Medicare (and perhaps Medicaid and other third party payors that rely on Medicare enrollment as a condition of participating in those programs) — not now, and not at any time in the future. Continuing the practice means starting a brand new legal entity and credentialing it and all of its providers through Medicare and Medicaid, and that means a loss of four to six months of revenue.

Have a first mate

So, even if you’re the ‘captain of the ship’ and you don’t want a ‘partner,’ the smart thing to do is have another physician who actually renders medical services in the practice own one percent (1%) of the equity. Medicare regulations do not specify required ownership percentages for the various owners of a practice,⁶ and paying a trusted physician employee (who probably already covers for you on call, vacation, etc.) a one percent bonus every year to preserve the value of the practice should make great sense. Besides, you can draft your shareholders and other governing agreements so that this one percent owner doesn’t have the ability to control the practice or any of your actions, so all you’ve done is bought practice continuation insurance against your untimely demise.

Create a crew

Creating a situation with multiple owners (all of whom are enrolled as Medicare providers) is not as difficult as it might first appear, and there just is not a good solution to the Medicare enrollment problem otherwise. And the present inconvenience of a little loss of perceived control over the practice is vastly outweighed by the ability to preserve the value of the practice on an ongoing basis even after the death of its ‘key person.’ Believe me, having seen what the lack of attention to this detail does to the survivors of a physician suicide or airplane crash has convinced me to convince you to just do it.

¹ CMS Program Integrity Manual, Chapter 15, Section 15.5.20 (C), Transmittal 445 (December 14, 2012).
² Id.
³ If the employed physician/practitioner wants to provide services at the former practice’s location, he/she must submit a Form CMS-855I change request to add the owning physician/practitioner’s practice location as a new location of the employed physician/practitioner.
⁴ CMS Program Integrity Manual, Chapter 15, Section 15.5.20 (C).
⁵ Id.
⁶ See CMS Program Integrity Manual, Chapter 15, Section 15.5.20 (C).

The post In estate planning, save your solo medical practice with this one action appeared first on Herrin Health Law, P.C..