Skip to main content
U.S. flag

An official website of the United States government

Dot gov

The .gov means it's official.
Federal government websites often end in .gov or .mil. Before sharing sensitive information, make sure you're on a federal government site.

Https

The site is secure.
The https:// ensures that you are connecting to the official website and that any information you provide is encrypted and transmitted securely.

Security of Certified Electronic Health Record Technology Under Meaningful Use

A core meaningful-use objective for eligible providers and hospitals is to protect electronic health information created or maintained by certified EHR technology by implementing appropriate technical capabilities. To meet and measure this objective, eligible hospitals must conduct a security risk analysis of certified EHR technology as defined in Federal regulations and use the capabilities and standards of certified EHR technology (45 CFR § 164.308(a)(1) and 45 CFR §§ 170.314(d)(1) through (d)(9)). We will perform audits of various covered entities receiving EHR incentive payments from Centers for Medicare & Medicaid Services to determine whether they adequately protect electronic health information created or maintained by certified EHR technology.

Announced or Revised Agency Title Component Report Number(s) Expected Issue Date (FY)
Completed Centers for Medicare & Medicaid Services Security of Certified Electronic Health Record Technology Under Meaningful Use Office of Audit Services A-18-15-30210;
A-04-15-05064;
A-04-15-05063;
W-00-15-42002		 2018