Medicare Compliance & Reimbursement

Reader Questions:

Don’t Shirk on Medical Device Management

Published on Wed Nov 03, 2021

Question: We monitor many of our Medicare beneficiaries through medical devices, particularly patients struggling with chronic diseases. During the COVID-19 public health emergency (PHE) our remote monitoring practices have only escalated, should we be concerned about our patients’ medical devices being hacked with so many reports of heightened cyberattacks in the news?

AAPC Forum Subscriber

Answer: Yes, medical device safety has become a major concern with so many providers tracking patients’ progress through applications and devices during the pandemic; the risks have increased exponentially. In fact, the U.S. Food and Drug Administration (FDA) issued a new brief, “Best Practices for Communicating Cybersecurity Vulnerabilities to Patients,” in October that focuses on relaying information about a device’s vulnerability to patients and how to communicate these issues in case of a cybersecurity breach.

Reminder: The Internet of Things (IoT) has been a great boon to the healthcare industry, allowing the connection of devices, systems, and objects to the Internet to differentiate and enhance patient care and provider coordination. This bridge between devices, practitioners, and patients supports the idea that connecting everything in your office — and life — will make practicing medicine more efficient, effective, and easier; but, that’s not always the case. With each new hook up, the opportunity for the loss of electronic protected health information (ePHI) increases.

If you are implementing a cybersecurity plan for your medical devices, consider these FDA tips on communicating vulnerabilities to patients:

Utilize simple terminology to explain why a medical device might be ripe for a cyberattack and how to identify a security issue.
Use text messaging, email, EHR, and social media to let patients know if there’s an outage or data risk on certain devices.
Issue alerts in diverse languages to make your communication more inclusive.
Explain the benefits of medical device security to better allow patients to determine when they should alert providers about a cyber issue.
Ensure medical device functionality, name, manufacturer, and FDA updates are readily available to your patients in case vulnerabilities are identified.
Ensure medical device functionality, name, manufacturer, and FDA updates are readily available to your patients in case vulnerabilities are identified.

Resource: Review the FDA guidance at www.fda.gov/media/152608/download.

Medicare Compliance & Reimbursement

Billing:
Feds Release Second Part of Surprise Billing Regs
Know the facts on new patient notification requirements. You may have thought the feds would [...]

CPT® 2022:
Prepare for This 99211 Revision Effective Jan. 1
Plus: See the latest ‘new’ COVID codes that aren’t actually new. With COVID-19 still dominating [...]

Compliance:
Nursing Homes, SNFs Sit Atop OIG’s Target List
Latest report focuses on the importance of infection control. Nursing homes and skilled nursing facilities [...]

Reader Questions:
Know the Facts on Timely Filing Extensions
Question: At our practice, we are very careful to submit our Medicare fee-for-service (FFS) claims within [...]

Reader Questions:
Don’t Shirk on Medical Device Management
Question: We monitor many of our Medicare beneficiaries through medical devices, particularly patients struggling with chronic [...]

Industry Notes:
Send Your Medicare Appeals to the Right Place
If your appeals seem to be stuck in traffic, you may be sending them in [...]

Industry Notes:
CMS Updates QPP Resource Library With Fresh Guidance
If you have questions about the Quality Payment Program (QPP), the Centers for Medicare & [...]

Industry Notes:
MAC Offers Due Date Insight for Revalidation Quandaries
Now that Medicare revalidation is back in action, you may want to check and see [...]

View All