HHS focuses on API compliance to combat health IT information blocking

Health and Human Services (HHS) is ramping up efforts to address information blocking among health IT developers. Micky Tripathi, head of HHS’s Office of the National Coordinator for Health IT (ONC), highlighted ongoing issues with electronic health record (EHR) developers blocking or illegally restricting access to application programming interfaces, as tipped by NextGov. These APIs, mandated by the 21st Century Cures Act, should facilitate data access for patients, providers, and payers. However, many third-party developers and healthcare organizations report barriers including inconsistent API documentation, prohibitive fees, and response delays.

API developers may be in violation of “Conditions and Maintenance of Certification requirements specific to APIs (45 CFR 170.404) and information blocking (45 CFR 170.401).”

To tackle these issues, HHS will increase compliance enforcement through monitoring and review of API documentation. API developers risk suspension from certification programs if found in violation, and the HHS Office of Inspector General may issue fines up to $1 million per incident for information blocking. Certification terminations for can also result in an 86 from the certification program.

Upcoming ONC events will provide health IT developers guidance and new educational resources to maintain transparency and ease of access, and ONC has launched a dedicated section to report API-related complaints on its IT feedback and inquiry portal.