GINA | | Page 3

Employer Assistance and Resource Network Offers Free Webinars For Employers During October In Honor of Disability Employment Awareness Month on Thursdays in October from 2:00 – 2:30 p.m. Eastern Time. Topics will include Employer Preparedness to Include Veterans with Disabilities

September 29, 2011

The Employer Assistance and Resource Network (EARN) will be hosting four weekly webinars in celebration of National Disability Employment Awareness Month on Thursdays in October from 2:00 – 2:30 p.m. Eastern Time. Topics will include Employer Preparedness to Include Veterans with Disabilities in the Workplace; the Employment of Persons with Disabilities; the Work Opportunity Tax Credit; and the Workforce Recruitment Program. To learn more, see Free Webinar Series for Employers Beginning October 6.

For Help With These Or Other Matters

If you would like help reviewing or defending your organization’s labor and employment, health or other employee benefit or insurance programs, need legal representation on health plan or other employment, employee benefits, or other management controls or risk management matters or wish to discuss arranging for Ms. Stamer to conduct training or speak for your organization, please contact Ms Stamer here.

Immediate past Chair of the American Bar Association (ABA) RPTE Employee Benefits & Other Compensation Group and current Co-Chair of its Welfare Benefit Committee, Vice-Chair of the ABA TIPS Employee Benefits Committee, a council member of the ABA Joint Committee on Employee Benefits, and past Chair of the ABA Health Law Section Managed Care & Insurance Interest Group, Ms. Stamer is recognized, internationally, nationally and locally for her more than 24 years of work, advocacy, education and publications on labor and employment, employee benefit and related workforce, insurance and health care matters.

A board certified labor and employment attorney widely known for her extensive practical knowledge and experienced with human resources and other workforce staffing and management matters, Ms. Stamer has extensive experience helping employer and other management organizations manage and resolve risks arising under employment discrimination and other employment laws. She also works with employee benefit plans, their sponsoring employers, fiduciaries, insurers, administrators, service providers, insurers and others to monitor and respond to evolving legal and operational requirements and to design, administer, document and defend medical and other welfare benefit, qualified and non-qualified deferred compensation and retirement, severance and other employee benefit, compensation, and human resources programs and practices. She works extensively with employers, plan sponsors, insurers, administrators, technology and other service providers and others to develop and operate legally defensible programs, practices and policies that promote the client’s human resources, employee benefits or other management goals. Ms. Stamer also is a widely published author and highly regarded speaker on these and other human resources, employee benefit, and internal controls matters who is active in many human resources, employee benefits, and other management focused organizations.

You can learn more about Ms. Stamer and her experience, review some of her other training, speaking, publications and other resources, and register to receive future updates about developments on these and other concerns from Ms. Stamer here. For important information concerning this communication click here.

About Solutions Law Press

THE FOLLOWING DISCLAIMER IS INCLUDED TO COMPLY WITH AND IN RESPONSE TO U.S. TREASURY DEPARTMENT CIRCULAR 230 REGULATIONS. ANY STATEMENTS CONTAINED HEREIN ARE NOT INTENDED OR WRITTEN BY THE WRITER TO BE USED, AND NOTHING CONTAINED HEREIN CAN BE USED BY YOU OR ANY OTHER PERSON, FOR THE PURPOSE OF (1) AVOIDING PENALTIES THAT MAY BE IMPOSED UNDER FEDERAL TAX LAW, OR (2) PROMOTING, MARKETING OR RECOMMENDING TO ANOTHER PARTY ANY TAX-RELATED TRANSACTION OR MATTER ADDRESSED HEREIN.

Comments Off on Employer Assistance and Resource Network Offers Free Webinars For Employers During October In Honor of Disability Employment Awareness Month on Thursdays in October from 2:00 – 2:30 p.m. Eastern Time. Topics will include Employer Preparedness to Include Veterans with Disabilities | ADA, Disability, Disability, Employee Benefits, Employers, ERISA, GINA, Military Leave, Retirement Plans, Tax, VEVRRA | Tagged: ADA, disability law, employment law, reasonable accommodation | Permalink
Posted by Cynthia Marcotte Stamer

New Affordable Care Act Guidance Helps Some Health Plans Stay Grandfathered

August 2, 2011

Affordable Care Act To Require Health Plans Cover Contraception & Other Women’s Health Procedures Beginning In 2012

Contraception Mandate Might Not Apply To Certain Religious Employer Plans

Starting with plan years beginning after July 31, 2011, most employer and union sponsored group health plans and group and individual health insurers generally must cover contraceptive and certain other preventive services for women (“Women’s Preventive Services”) at no cost to comply with federal rules that these programs cover preventive care for members with no cost sharing enacted as part of the Patient Protection and Affordable Care Act (“ACA”).

On Monday, August 1, 2011, the Department of Health & Human Services (“HHS”) on Monday, August 1, 2011 announced guidelines (Women’s Preventive Services Guidelines”) that add contraception and a list of women’s health procedures to the preventive care procedures that ACA requires covered health plans and health insurance policies covered by the Affordable Care Act to cover without cost to members. ACA’s general preventive coverage rules generally have required covered health plans and policies to cover without cost a broad list of other preventive care procedures since the first plan year beginning after September 22, 2009.

Interim Final Regulations implementing ACA’s new preventive care mandate published July 14, 2010 interpreted this ACA preventive care mandate broadly to dictate that ACA covered health plans and health insurers cover as preventive services at no member cost hundreds of procedures.

Concerning the Women’s Preventive Services, however, the Interim Final Regulations delayed implementation of requirements to cover Women’s Preventive Services until August 1, 2011 to give time to HRSA time to issue its recommendations about what procedures should qualify as Women’s Preventive Services. When HRSA failed to finalize its input by August 1, 2011, HHS finalized its list of required Women’s Preventive Services now rather than to continue waiting for HRSA’s final input.

Finalization of the list of required Women’s Preventive Services now means covered health plans and policies must add coverage for these listed procedures with no co-pay beginning with all post-July 31, 2012 plan years.

While the published list of required Women’s Preventive Services generally mandates that ACA-covered health plans and policies cover contraceptive services for women at no cost beginning in 2012, some plans sponsored by religious employers and group health policies covering these groups may be exempt from the duty to coverage contraception under a new regulation that HHS, along with the Department of Labor Employee Benefit Services Administration (“EBSA) and the Department of Treasury Internal Revenue Service (“IRS”)(collectively, the “Agencies”) will jointly publish in the Federal Register on August 3, 2011. See here for more detailed information.

Plans & Insurers Should Review & Update Preventive Care & Other Wellness Benefits

Non-grandfathered health plans and policies, their sponsors, insurers, fiduciaries and administrators should carefully review and update their health plans for compliance with the existing preventive care mandates and other evolving rules about disease management and wellness benefits and coverages, as well as to consider the impending requirement to comply with additional Women’s Preventive Services coverage requirements in 2012 as part of their plan design and cost projections.

Existing health plans and health insurance should be reviewed to ensure that the programs appropriately cover all preventive services currently required by the applicable ACA mandates or other laws and re-reviewed for compliance with any updated rules before each plan year to identify any additional costs, changes to plan documents, communications, administrative procedures and vendor contracts required to administer the health plan in accordance with existing rules. For 2012, this should specifically consider the need to comply with the new Women’s Preventive Services coverage requirements that take effect next plan year also should be considered.

In addition to specifically planning for compliance with ACA’s preventive services coverage mandates, all health plans and policies, their sponsors, insurers, fiduciaries and administrators should review the other wellness and disease management components of their plans. In addition to ACA compliance, these arrangements may need redesign to minimize emerging exposures to challenge by the Equal Employment Opportunity Commission (“EEOC”) or private plaintiffs under the Americans With Disabilities Act (“ADA”). Since the Obama Administration took office, the EEOC has taken the position that many common wellness and disease management programs violate the ADA. In addition to these exposures, amendments to the nondiscrimination requirements of the Health Insurance Portability & Accountability Act (“HIPAA”), new nondiscrimination rules added by the Genetic Information & Nondiscrimination Act (“GINA”), federal mental health parity rules, evolving Affordable Care Act claims, coverage and other rules and guidance about essential benefits and other statutory, regulatory and enforcement changes often require updates to common disease management and wellness programs as well as other health plan provisions. Appropriate steps should be taken to review and update these and other plan terms, procedures, communications and practices to maintain compliance and support the ability to enforce plan terms and rely on plan cost projections.

The author of this update, attorney Cynthia Marcotte Stamer frequently conducts training and publishes on these and other matters. She is scheduled to speak about these and other changing health plan requirements in light of health care reform at the September 14, 2011 Houston WEB Chapter lunch and will be conducting briefings on preventive care, wellness and disease management and other rules for several other organizations over the next few months. You can find out about upcoming training or other events and get updates at www.CynthiaStamer.com.

For Help With These Or Other Health Plan Or Employee Benefit Matter

If you would like help reviewing or defending your organizations health plan or other insurance or employee benefit and employment practices in light of these or other laws, please contact attorney Cynthia Marcotte Stamer.

Chair of the American Bar Association (ABA) RPTE Employee Benefits & Other Compensation Group, a council member of the ABA Joint Committee on Employee Benefits, and past Chair of the ABA Health Law Section Managed Care & Insurance Interest Group, Ms. Stamer is recognized, internationally, nationally and locally for her more than 23 years of work, advocacy, education and publications on employee benefit and related matters.

A board certified labor and employment attorney Ms. Stamer continuously advises and assists employee benefit plans, their sponsoring employers, fiduciaries, insurers, administrators and others to monitor and respond to evolving legal and operational requirements and to design, administer, document and defend medical and other welfare benefit, qualified and non-qualified deferred compensation and retirement, severance and other employee benefit, compensation, and human resources programs and practices. She works extensively with plan sponsors, insurers, administrators, technology and other service providers and others to develop and operate legally defensible programs, practices and policies that promote the client’s human resources, employee benefits or other management goals. Ms. Stamer also is a widely published author and highly regarded speaker on these and other employee benefit and human resources matters who is active in many other employee benefits, human resources and other management focused organizations.

Ms. Stamer is scheduled to conduct training on these and other health benefit requirements for a number of organizations over the upcoming month. For information about these and other training opportunities or for other resources and information, see here or contact Ms. Stamer directly.

For Help or More Information

If you have questions or need help understanding or responding to the Regulations, with other health benefit design, administration or operations concerns, or with other employee benefits, compensation, labor or employment or other workforce management concerns, please contact the author of this update, Board Certified Labor and Employment attorney and management consultant Cynthia Marcotte Stamer here or at (469)767-8872.

Past Chair of the American Bar Association (ABA) Health Law Section Managed Care & Insurance Interest Group, Chair of the ABA RPTE Employee Benefit and Other Compensation Committee, and a council member of the ABA Joint Committee on Employee Benefits, Ms. Stamer is nationally recognized for her more than 23 years pragmatic and innovative health program work.

Board certified in labor and employment law by the Texas Board of Legal Specialization with extensive leading edge health plan experience, Ms. Stamer has worked continuously throughout her career helping health plan sponsors, fiduciaries, administrators, insurers and others design, administer and defend health and other employee benefit and insurance programs domestically and internationally. She is widely recognized for her experience helping design and implement legally compliant self-insured and insured health reimbursement, mini-med, high-deductible health plans, limited benefit plans, 24-hour and occupational medicine, ex-pat and medical tourism, deductible reimbursement and other creative health benefit programs to solve a wide range of financial and other challenges while coping with changing regulatory and market realities. Her work includes both working with clients to design, document, implement and administer these and other arrangements, as well as the development of wellness and disease management, claims administration and appeals, eligibility, and other administrative services, processes and technologies. She also works with plan fiduciaries, plan sponsors, insurers, administrators, brokers and advisors, bankruptcy trustees, creditors, debtors, service providers and their officers and directors about the prevention, investigation, mitigation and resolutions of civil and criminal liability arising from suspected or known benefit administration claims, breaches of fiduciary duty, privacy and data security breach, vendor disputes and other disputes arising in relation to employee benefit and insurance arrangements. As a continuing part of this representation, Ms. Stamer regularly represents and defends plan sponsors, fiduciaries, third party administrators and other service providers and management officials in dealings with the Department of Labor, Department of Justice, Department of Health & Human Services, Department of Defense, Securities and Exchange Commission, state insurance regulators, state attorneys general and other federal and state regulators and prosecutors and private plaintiffs in connection with investigations, prosecutions, audits and other actions arising from employee benefit, insurance and related arrangements and products.

Recognized in the International Who’s Who of Professionals and bearing the Martindale Hubble Premier AV-Rating, Ms. Stamer also is a highly regarded author and speaker, who regularly conducts management and other training on a wide range of labor and employment, employee benefit, human resources, internal controls and other related risk management matters. Her writings frequently are published by the American Bar Association (ABA), Aspen Publishers, Bureau of National Affairs, the American Health Lawyers Association, SHRM, World At Work, Government Institutes, Inc., Atlantic Information Services, Employee Benefit News, and many others. For a listing of some of these publications and programs, see here. Her insights on human resources risk management matters also have been quoted in The Wall Street Journal, various publications of The Bureau of National Affairs and Aspen Publishing, the Dallas Morning News, Spencer Publications, Health Leaders, Business Insurance, the Dallas and Houston Business Journals and a host of other publications. In addition to her many ABA leadership involvements, she also serves in leadership positions in numerous human resources, corporate compliance, and other professional and civic organizations. Her insights on these and other matters appear in the Bureau of National Affairs, Spencer Publications, the Wall Street Journal, the Dallas Business Journal, the Houston Business Journal, World At Work, the ICEBS, SHRM and many other national and local publications. For additional information about Ms. Stamer and her experience or to access other publications by Ms. Stamer see here or contact Ms. Stamer directly.

About Solutions Law Press

Stamer Speaks 9/14 On Coping With Health Care Reform: What’s New, What Lies Ahead & What To Do
Labor Department 2011 Stats Show Employer Health Coverage & Other Benefit Statistics
Borzi Tells House Committee Current Fiduciary Regs Flawed; Must Fix Loopholes In Investment Advisor Definition To Protect Plans
Labor Department 2011 Stats Show Employer Health Coverage & Other Benefit Statistics
Conviction Highlights Risks Of Misleading Investors
DOL Considers Easing Rules For Electronic Benefit Communications
Improving The Effectiveness Of Compliance & Risk Management By Getting Hr On The Compliance Team
IRS Establishes Safe Harbor Election For Allocating Success-Based Fees Paid On Certain Business Transactions
IRS Changing Substantiation Rules For Business Travel Expenses
9/22/11 Cutoff To Apply For Affordable Care Act Annual Limit Temporary Waiver
Spectrum Healthcare NLRB Charge Settlement Highlights Need To Defend Against Possible Unfair Labor Practices & Other Union Exposures
IRS Releases Health Savings Account, High Deductible Health Plan 2012 Indexed Amounts
IRS Guidance On Affordable Care Act Requirement That Employers Report Cost Of Health Coverage On W-2 Released
Plan Sponsors. Their Owners & Management & Others Risk Personal Liability If Others Defraud Plans Or Mismanage Employee Benefit Plan Responsibilities
Health Plans, Insurers Get Limited & Imperfect Relief From Grace Period Extension For Some New Affordable Care Act Health Claims & Appeals Rules
EEOC Finalizes Updates To Disability Regulations In Response To Ada Amendments Act: Employers Should Manage Risks
Employer Charged With Misclassifying & Underpaying Workers To Pay $754,578 FLSA Back Pay Settlement
Avoiding Liability For Another’s Health Plan Fraud
Health Plans & Employers Beware! $4.3 Million Civil Penalty Shows OCR Serious About HIPAA Enforcement
IRS Expands When HFSAS & HRAs May Allow Over-The-Counter Drug Purchases With Drug Cards
DOL Announces Changes To H-2b Prevailing Wage Calculation Rules
$1 Million + FLSA Overtime Settlement Shows Employers Should Tighten On-Call, Other Wage & Hour Practices
Affordable Care Act Grandfathered Plan Rules Loosened To Allow Insured Plans Making Some Insurance Changes To Qualify
Update Employment Practices To Manage Genetic Info Discrimination Risks Under New EEOC Final Gina Regulations
EEOC Attacks Medical Leave Denials As Prohibited Disability Discrimination
DOL Proposes To Expand Investment Related Services Giving Rise To Erisa Fiduciary Status As Investment Fiduciary

Comments Off on New Affordable Care Act Guidance Helps Some Health Plans Stay Grandfathered | 105(h), ADA, Affordable Care Act, Claims Administration, Corporate Compliance, Discrimination, Disease Management, Employee Benefits, Employers, ERISA, Fiduciary Responsibility, GINA, Health Care Reform, Health Plans, Human Resources, Insurance, Public Policy | Tagged: Affordable Care Act, Employee Benefits, grandfathered health plan, grandfathered plan, Health Care Reform, Health Insurance, Health Plans, Insurance, medical insurance | Permalink
Posted by Cynthia Marcotte Stamer

Spectrum Healthcare NLRB Charge Settlement Highlights Need To Defend Against Possible Unfair Labor Practices & Other Union Exposures

May 20, 2011

The National Labor Regulations Board (NLRB)’s announcement of a settlement against a Connecticut nursing home operator this week in conjunction with a series of other enforcement actions highlight the need for businesses to tighten defenses and exercise other caution to minimize their organization’s exposure to potential NLRB charges or investigation. As reflected by many of these enforcement acts, the exposures arise both from active efforts by businesses to suppress union organizing or contracting activities, as well as the failure to identify and manage hidden labor law exposures in the design and administration of more ordinary human resources, compliance, business operations and other policies and practices.

On May 17, 2011, the NLRB announced here that Connecticut nursing home operator Spectrum Healthcare has agreed to settle a NLRB case involving multiple allegations of unlawful suspensions, discharges and unilateral changes in violation of the National Labor Relations Act and other federal labor laws by offering reinstatement and back pay to all discharged and striking workers and signing a new three-year collective bargaining agreement with its employees’ union, New England Health Care Employees Union District 1199, SEIU.

Along with the contract and reinstatement of all employees, the company agreed to pay $545,000 in back pay and pension benefits to employees who were harmed by the unfair labor practices, and to expunge any disciplinary records related to the case. As a result, all NLRB charges against the company have been withdrawn. Spectrum admits to no wrongdoing in the settlement.

The settlement, reached midway through a hearing before an NLRB administrative law judge in Connecticut and approved by the judge yesterday, ends a long-running dispute which grew into a strike by almost 400 employees at four nursing homes in Connecticut operated by Spectrum Healthcare, LLC. Complaints issued by the NLRB Regional Office in Hartford alleged that, beginning in the fall of 2009, several months after the prior collective bargaining agreement expired, Spectrum discharged seven employees and suspended three others to retaliate against their union activities and to discourage other employees from supporting the union. In addition, one employee was discharged and seven others were suspended after the employer unilaterally changed its tardiness discipline policy without first bargaining with the union.

The complaints further alleged that in April 2010, employees at the four nursing homes — in Derby, Ansonia, Winsted, and Hartford — went on strike to protest the unfair labor practices. When the strikers offered unconditionally to return to work in late August, the employer refused to take them back. Under federal labor law, if a strike is called because of an unfair labor practice, employees are entitled to reinstatement after an unconditional offer to return to work.

The reinstated employees are due to return to the facilities this week.

The Spectrum Healthcare settlement is reflective of the growing number of NLRB enforcement orders against employers generally and health care providers specifically under the Obama Administration. The Obama Administration has close ties and has expressed its strong and open support for union and union organizing activities. The adoption of a series of union friendly labor law reforms was one of the key campaign promises of President Obama during his election campaign. While other legislative priorities and the change in the leadership of the House of Representatives appears to have slowed efforts to push through this agenda, it has not slowed the Administration’s efforts to support unions with strong enforcement activities. Empowered by a difficult economic and job situation and an awareness of the Obama Administration’s strong support for union organizing and other activities, unions are stepping up organizing efforts and more aggressively challenging employers actions.

Over the past few months, public awareness of the Obama Administration’s aggressive enforcement agenda on behalf of unions has drawn new attention as a result of the widespread media coverage of NLRB actions challenging Boeings planned relocation of certain manufacturing jobs intervention in a planned relocation of certain manufacturing operations. See, e.g., Acting General Counsel Lafe Solomon releases statement on Boeing complaint; National Labor Relations Board issues complaint against Boeing Company for unlawfully transferring work to a non-union facility. However, the Boeing and Spectrum Healthcare actions represent only the tip of the iceberg of the rising number of NLRB enforcement activities, most of which take place with little media or public attention.

Along side the Spectrum Healthcare and Boeing actions, in recent weeks, the NLRB also has been busy with several other enforcement activities. For instance:

On May 9 2011, the NLRB issued a complaint against Hispanics United of Buffalo (HUB), a nonprofit that provides social services to low-income clients, that alleges that HUB unlawfully discharged five employees after they took to Facebook to criticize working conditions, including work load and staffing issues. The case involves an employee who, in advance of a meeting with management about working conditions, posted to her Facebook ; and
On May 17, the NLRB secured a temporary injunction from a U.S. District Court in San Jose California against San Jose area waste hauling company OS Transport LLC, charged with engaging in unfair labor practices including the termination of a lead organizer and another Union supporter, retaliation against Union efforts in the form of unfavorable assignments, threats to Union supporters, and promises of improved treatment of employees who disavow the Union for the alleged purpose of defeating a union. o offer reinstatement to two drivers and restore full assignments to other drivers who had expressed support for a union during an organizing campaign. More Details here.,

In addition, in recent weeks, the NLRB also has:

Sued the state of Arizona on amendment limiting method for choosing union representation on May 5, 2011;
Secured an order requiring a Milwaukee job training center to pay back pay and reinstate workers fired for complaining about bounced paychecks on May 3, 2011;
Ordered a concrete supplier to rehire employees in Indianapolis on May 2, 2011;
Found a New York egg processing plant of unlawful interference and ordered a third election ohm April 27, 2011; and
Secured a settlement from Build.com of unlawful dischrage charges for firing employee based on Facebook comments on April 20

Amid this difficult enforcement environment, business leaders should exercise special care to prepare to defend their actions against both potential organizing efforts, to understand the types of actions and activities that may help fuel charges, and take steps to manage these and other union organization and other labor risks.

For Help With Labor & Employment, Employee Benefits Or Other Risk Management and Defense

If you need assistance in auditing or assessing, updating or defending your labor and employment, employee benefits, compliance, risk manage or other internal controls practices or actions, please contact the author of this update, attorney Cynthia Marcotte Stamer here or at (469)767-8872.

Board Certified in Labor & Employment Law by the Texas Board of Legal Specialization, management attorney and consultant Ms. Stamer is nationally and internationally recognized for more than 23 years of work helping employers; employee benefit plans and their sponsors, administrators, fiduciaries; employee leasing, recruiting, staffing and other professional employment organizations; and others design, administer and defend innovative workforce, compensation, employee benefit and management policies and practices. Her experience includes extensive work helping employers implement, audit, manage and defend wage and hour and other workforce and internal controls policies, procedures and actions. The Chair of the American Bar Association (ABA) RPTE Employee Benefits & Other Compensation Committee, a Council Representative on the ABA Joint Committee on Employee Benefits, Government Affairs Committee Legislative Chair for the Dallas Human Resources Management Association, and past Chair of the ABA Health Law Section Managed Care & Insurance Interest Group, Ms. Stamer works, publishes and speaks extensively on wage and hour, worker classification and other human resources and workforce, employee benefits, compensation, internal controls and related matters. She also is recognized for her publications, industry leadership, workshops and presentations on these and other human resources concerns and regularly speaks and conducts training on these matters. Her insights on these and other matters appear in the Bureau of National Affairs, Spencer Publications, the Wall Street Journal, the Dallas Business Journal, the Houston Business Journal, and many other national and local publications. For additional information about Ms. Stamer and her experience or to access other publications by Ms. Stamer see here or contact Ms. Stamer directly.

About Solutions Law Press

Comments Off on Spectrum Healthcare NLRB Charge Settlement Highlights Need To Defend Against Possible Unfair Labor Practices & Other Union Exposures | 105(h), Absenteeism, ADA, Affirmative Action, Affordable Care Act, ARRA, Bankruptcy, Cafeteria Plans, Child Labor, CHIP, Claims Administration, COBRA, COBRA Subsidy, Corporate Compliance, Data Security, Defined Benefit Plans, Defined Contribution Plans, Disability, Disability, Disability Plans, Discrimination, Disease Management, Drug & Alcohol, E-Verify, EEOC, Employee Benefits, Employers, Employment Agreement, Employment Tax, ERISA, Excise Tax, Fair Labor Standards Act, family leave, Fiduciary Responsibility, FMLA, GINA, Government Contractors, H.R. 4872, Health Care Reform, Health Plans, HIPAA, Human Resources, I-9, Immigration, Income Tax, Insurance, Internal Controls, Internal Investigations, Labor Management Relations, Leave, Malpractice, medical leave, Medicare Part D, Mental Health, Mental Health Parity, Military Leave, Non-Compete, Non-Competition Agreement, Nonresident aliens, OFCCP, OSHA, Pandemic, Patient Empowerment, Patient Protection and Affordable Care Act, Payroll Tax, Preemption, Prescription Drugs, Privacy, Professional Liability, Protected Health Information, Public Policy, Refunds, Rehabilitation Act, Reporting & Disclosure, Restructuring, Retaliation, Retirement Plans, Risk Management, Safety, Sexual Harassment, Stimulus Bill, Swine Flu, Tax, Tax Credit, Tax Qualification, Telecommuting, Uncategorized, Unemployment Benefits, Unemployment Insurance, Union, USERRA, VEVRRA, Wage & Hour, Wellness, Wellness Programs, Whistleblower | Tagged: ADAAA, Americans With Disabiltiies Act, Employer, employment discrimination, facebook, HR, Human Resources, NLRA, social medial, unfair labor practices, Union | Permalink
Posted by Cynthia Marcotte Stamer

OCR’s McAndrew Speaks At 5/16 JCEB HIPAA Teleconference; OCR/NIST To Share Other HIPAA Training On Line

May 10, 2011

The National Institute of Standards and Technology (NIST) and the Department of Health and Human Services (HHS), Office for Civil Rights (OCR) are making presentations from the 4th annual conference on “Safeguarding Health Information: Building Assurance through HIPAA Security” co-hosted in Washington, D.C. on May 10 & 11, 2011 available on line for review. The training is part of a series of continuing efforts by the agencies to outreach to various parties on the Privacy and Security Rules of the Health Insurance Portability & Accountability Act of 1996, as amended (HIPAA). Meanwhile, OCR’s Susan McAndrew is scheduled to share insights on OCR’s HIPAA regulatory and enforcement agenda at a teleconference to be hosted by the American Bar Association Joint Committee on Employee Benefits at Noon Central on May 16, 2011.

The Security Rule sets federal standards to protect the confidentiality, integrity and availability of electronic protected health information by requiring HIPAA covered entities and their business associates to implement and maintain administrative, physical and technical safeguards. Presentations cover a variety of current topics including updates on HHS health information privacy and security initiatives, OCR’s enforcement of health information privacy and security activities, integrating security safeguards into health IT and security automation, insider threat trends and safeguards, and more.

The conference is designed to explore the current health information technology security landscape and the Health Insurance Portability and Accountability Act (HIPAA) Security Rule, the agencies share their practical strategies, tips and techniques for implementing the HIPAA Security Rule.

For details about reviewing the May 10-11 presentations, see the 2011 HIPAA Conference website here. For details about the May 16 teleconference, see here.

For Help With Monitoring Developments, Compliance, Investigations Or Other Needs

If you need assistance monitoring federal health reform, policy or enforcement developments, or to review or respond to these or other health care or health IT related risk management, compliance, enforcement or management concerns, the author of this update, attorney Cynthia Marcotte Stamer, can help. Vice President of the North Texas Health Care Compliance Professionals Association, Past Chair of the ABA Health Law Section Managed Care & Insurance Section and the former Board Compliance Chair of the National Kidney Foundation of North Texas, Ms. Stamer has more than 23 years experience advising health industry clients about these and other matters. Ms. Stamer has extensive experience advising and assisting health care providers, health plans, their business associates and other health industry clients to establish and administer medical privacy and other compliance and risk management policies, to health care industry investigation, enforcement and other compliance, public policy, regulatory, staffing, and other operations and risk management concerns. She regularly designs and presents HIPAA and other risk management, compliance and other training for health plans, employers, health care providers, professional associations and others.

Ms. Stamer also regularly works with OCR and other agencies, publishes and speaks extensively on medical and other privacy and data security, health and managed care industry regulatory, staffing and human resources, compensation and benefits, technology, public policy, reimbursement and other operations and risk management concerns. Her publications and insights appear in the Health Care Compliance Association, Atlantic Information Service, Bureau of National Affairs, World At Work, The Wall Street Journal, Business Insurance, the Dallas Morning News, Modern Health Care, Managed Healthcare, Health Leaders, and a many other national and local publications. For instance, On May 3, 2011, Ms. Stamer served as the appointed scribe for the ABA Joint Committee on Employee Benefits Agency meeting with OCR and will moderate a teleconference featuring comments by OCR’s Susan McAndrew for the Joint Committee on Employee Benefits scheduled for May 16. Her insights on the required “culture of compliance” with HIPAA also recently were quoted in medical privacy related publications of the Atlantic Information Service. Among others, she has conducted privacy training for the Association of State & Territorial Health Plans (ASTHO), the Los Angeles Health Department, the American Bar Association, the Health Care Compliance Association, a multitude of health industry, health plan, employee benefit and other clients, trade and professional associations and others.

You can get more information about her HIPAA and other experience here.

If you need assistance with these or other compliance concerns, wish to inquire about arranging for compliance audit or training, or need legal representation on other matters please contact Ms. Stamer at (469) 767-8872 or via e-mail here.

About Solutions Law Press

Comments Off on OCR’s McAndrew Speaks At 5/16 JCEB HIPAA Teleconference; OCR/NIST To Share Other HIPAA Training On Line | Data Security, GINA, Health Plans, HIPAA, Human Resources, Privacy, Uncategorized, Wellness Programs | Tagged: Health Care, Health Care Provider, Health Plans, HIPAA, OCR, Protected Health Information | Permalink
Posted by Cynthia Marcotte Stamer

EEOC Finalizes Updates To Disability Regulations In Response to ADA Amendments Act

March 24, 2011

Employers Urged To Tighten Disability Related Discrimination Risk Management

Employers should review and update their existing employment and employee benefit practices in response to updated regulations (Final Regulations) governing the disability discrimination rules of the Americans With Disabilities Act as amended by the ADA Amendments Act (ADAAA) that the Equal Employment Opportunity Commission (EEOC) will publish in the Friday, March 25, 2011 Federal Register.

On Thursday, March 24, 2011, the EEOC released an advance copy of the Final Regulations along with two Question-and-Answer documents about the Final Regulations to aid the public and employers – including small business – in understanding the law and new regulations. The Final Regulations, accompanying Question and Answer documents and a fact sheet are available on the EEOC website here .

The changes contained in the updated Final Regulations update the EEOC’s disability regulations in response to amendments made to the ADA by Congress as part of the ADAAA. Like the ADAAA they implement, the Final regulations are designed to simplify the determination of who has a “disability” and make it easier for people to establish that they are protected by the Americans with Disabilities Act (ADA).

The Final Regulations and the ADAAA amendments they implement make it likely that businesses generally will face more disability claims from a broader range of employees and will possess fewer legal shields to defend themselves against these claims. Since these changes make it easier for certain employees to qualify as disabled under the ADA, businesses should act strategically to mitigate their ADA exposures in response to the Final Regulations. Learn more about the Final Regulations and get suggestions for risk management of expanding disabilities discrimination exposures here.

For Help With Disability Discrimination Risk Management or Other Needs

If you need assistance in auditing or assessing, updating or defending your disability management or with other labor and employment, employee benefit, compensation or internal controls practices, please contact the author of this update, attorney Cynthia Marcotte Stamer here or at (469)767-8872.

About Solutions Law Press

Comments Off on EEOC Finalizes Updates To Disability Regulations In Response to ADA Amendments Act | Absenteeism, ADA, Affirmative Action, Corporate Compliance, Disability, Disability, Disability Plans, Discrimination, Drug & Alcohol, EEOC, Employee Benefits, Employers, GINA, Government Contractors, Health Plans, Human Resources, Insurance, Internal Controls, Internal Investigations, Leave, Military Leave, Non-Compete, Rehabilitation Act, Retaliation, Union | Tagged: ADA, ADAAA, Americans With Disabiltiies Act, Disability Discrimination, Employer, employment discrimination, HR, Human Resources | Permalink
Posted by Cynthia Marcotte Stamer

Update Employment Practices To Manage Genetic Info Discrimination Risks Under New EEOC Final GINA Regulations

November 9, 2010

The U.S. Equal Employment Opportunity Commission (EEOC) today issued final regulations (“Final Regulations”) implementing the employment provisions (Title II) of the Genetic Information Nondiscrimination Act of 2008 (GINA). Employers, employment agencies, labor organizations, joint labor-management committees, and others impacted by GINA should carefully review and update their hiring and background check, sick and family leave, disability accommodation, and other existing policies and practices to comply with the updated guidance provided by the Final Regulations to avoid liability under new GINA’s rules governing genetic information collection, use, protection and disclosure

Effective since November 21, 2009, Title II of GINA prohibits employers of 15 or more employees from discriminating in employment based on genetic information and restricts the acquisition and disclosure of genetic information by covered employers and certain other parties.

Under GINA, employers, employment agencies, labor organizations and joint labor-management committees face significant liability for violating the sweeping nondiscrimination and confidentiality requirements of GINA concerning their use, maintenance and disclosure of genetic information. Under GINA, employees and individuals can sue for damages and other relief like currently available under Title VII of the Civil Rights Act of 1964 and other nondiscrimination laws.

Meanwhile, Title I of GINA prohibits group health plans and health insurers from discriminating in eligibility or premium based on genetic information and requires these plans and insurers to protect the privacy of genetic information (Title I) for plan years beginning after May 20, 2009.

When assessing potential GINA risks and exposures, employers and others covered by its provisions must exercise care not to overlook or underestimate the genetic information collected or possessed by their organizations and the risks attendant to collecting or using this information. Many employers will be surprised by the breadth of the depth of “genetic information.” Because of GINA’s broad definition of “genetic information,” its provisions create potential liability concerns for a surprisingly wide range of employment and health plan practices.

The Final Regulations published today implement the employment discrimination rules of GINA Title II. The EEOC previously published proposed regulations interpreting Title II of GINA in March, 2009. Concurrent with its release of the Final Regulations, the Commission also issued two question-and-answer documents on the final GINA regulations. For links to today’s guidance and more details, see here.

Failing to properly address GINA compliance could expose employers to substantial risk. Violation of the employment provisions of Title II subjects an employer to potentially significant civil judgments like those that generally are available for race, sex, and other federal employment discrimination claims covered by the Civil Rights Act. Accordingly, employers and others who have not already done so should act quickly to review and update their policies and procedures to manage their new compliance and liability exposures under GINA. Employers and others covered by GINA also should assess their leave and other records and practices for data that could be considered genetic information and take appropriate steps to safeguard this information to comply with the confidentiality, nondiscrimination and anti-retaliation rules of GINA, the Americans with Disabilities Act and other applicable laws.

For More Information Or Assistance

If you need assistance evaluating or defending existing or proposed practices under GINA or with other workforce, employee benefit, compensation, internal controls or risk management practices, please contact the author of this update, Board Certified Labor & Employment attorney Cynthia Marcotte Stamer at (469) 767-8872 or via e-mail here.

About Ms. Stamer

Board Certified in Labor and Employment Law by the Texas Board of Legal Specialization, Chair of the American Bar Association (ABA) RPTE Employee Benefit & Other Compensation Group, a Council Member of the ABA Joint Committee on Employee Benefits, Past Chair of the ABA Health Law Section Managed Care & Insurance Interest Group, management attorney and consultant Cynthia Marcotte Stamer has more than 23 years experience advising and representing employers, health and other employee benefit plans, their sponsors, fiduciaries and plan administrators, consultants, vendors, outsourcers, insurers, governments and others about employment, employee benefit, compensation, and a wide range of other performance, legal and operational risk management practices and concerns. As a part of this work, Ms. Stamer has worked extensively with client to manage risks and defend practices under GINA, the ADA and a wide range of employment discrimination, privacy and other laws. A prolific author and popular speaker, Ms. Stamer also publishes, conducts client and other training, speaks and consults extensively on GINA and other employment and employee benefit risk management practices and concerns for the ABA, World At Work, SHRM, American Health Lawyers Association, Institute of Internal Auditors, Society for Professional Benefits Administrators, HCCA, Southwest Benefits Association and many other organizations. Her insights on these and related topics have appeared in Atlantic Information Service, Bureau of National Affairs, World At Work, The Wall Street Journal, Business Insurance, Managed Healthcare, Health Leaders, various ABA publications and a many other national and local publications. To learn more about Ms. Stamer, her experience, involvements, programs and publications, see here or contact Ms. Stamer.

Other Resources & Developments

If you found this information of interest, you also may be interested in reviewing other recent Solutions Law Press updates including:

About Solutions Law Press

Solutions Law Press™ provides business risk management, legal compliance, management effectiveness and other resources, training and education on human resources, employee benefits, compensation, data security and privacy, health care, insurance, and other key compliance, risk management, internal controls and other key operational concerns. If you find this of interest, you also be interested reviewing some of our other Solutions Law Press resources available for review here. If you or someone else you know would like to receive future updates and notices about other upcoming Solutions Law Press events, please be sure that we have your current contact information – including your preferred e-mail- by creating or updating your profile at here. For important information concerning this communication click here.

If you or someone else you know would like to receive future updates and notices about upcoming programs and events, please be sure that we have your current contact information – including your preferred e-mail- by creating or updating your profile at here. To unsubscribe, send an e-mail with “Unsubscribe” in the subject here. For important information concerning this communication click here.

Comments Off on Update Employment Practices To Manage Genetic Info Discrimination Risks Under New EEOC Final GINA Regulations | Disability, Discrimination, EEOC, Employee Benefits, Employers, GINA, Human Resources, Privacy, Risk Management, Union | Tagged: ADA, EEOC, Emloyment Discrimination, Employment, GINA, Privacy | Permalink
Posted by Cynthia Marcotte Stamer

Stamer To Conduct“Health Plan Eligibility Update” Teleconference For NBI October 13, 2010

August 5, 2010

Register Now For 8/24 2010 Health Plan Update Briefing

Employer and other group health plan sponsors and insurers, fiduciaries and administrators of group health must update their health plans and practices to comply with new federal rules imposed by the Affordable Care Act and a host of other evolving federal health plan rules. In the meantime, health plan sponsors, fiduciaries, insurers and administrators looking to catch up on the most significant new requirements for employer and union sponsored health plans for the upcoming year also should consider registering to participate in the Solutions Law Press Health Plan Update Briefing scheduled for August 24, 2010.

October 13 NBI Teleconference Focuses On Eligibility Requirements

Catch up on the evolving federal health plan eligibility rules that employer and union sponsored group health plans must meet by listening in as attorney Cynthia Marcotte Stamer speaks about “Health Plan Eligibility Update”” on a live teleconference to be hosted by National Business Institutes on Wednesday, October 13, 2010 from 1:00 p.m.- 2:30 Central Time. To register or for additional information on the October 13 NBI Teleconference , visit http://www.nbi-sems.com.

During the October 13, 2010 Health Plan Eligibility Teleconference, Ms. Stamer will share:

ü Core Requirements Of Federal Group Health Plan Eligibility Rules Including Evolving Requirements of:

The Affordable Care Act
COBRA
HIPAA
GINA
Family Leave
Military Leave
Michelle’s Law & Other Dependent Coverage
Medicare Secondary Payer

ü Implications On Cafeteria Plan & Other Common Enrollment Strategies

ü Tips to Keep Health Plans Complaint

August 24 SLP Internet Briefing Overviews Latest Core Federal Rules For Group Health Plans Generally

Solutions Law Press invites you to catch up on the latest guidance about the new group health plan mandates imposed under the Patient Protection and Affordable Care Act (Affordable Care Act) and other federal health plan regulations by participating in a live “2010 Health Plan Update” internet[i] broadcast briefing on Tuesday, August 24 2010. The briefing will be conducted via live video broadcast from 11:00 A.M.-1:30 P.M. Central Time. The August 24, 2010 “2010 Health Plan Update” briefing will cover the latest guidance on Affordable Care Act and other federal health plan regulatory changes impacting employment-based group health plans and their sponsors for plan years beginning between September 23, 2010 and September 22, 2011 and other key information to help employers, group health plans, insurers, plan administrators, fiduciaries, broker and others working with these plans to understand and respond to these new requirements. Register/Get Details Here!

About The Presenter

Both programs will be conducted by attorney Cynthia Marcotte Stamer. With more than 23 years of experience advising employers, group health plans, plan fiduciaries, plan administrators and vendors, insurers and others about health plan and managed care matters, Ms. Stamer is nationally known for her work, publications and presentations on health plan and other employee benefit, health care and insurance matters.

Current Chair of the American Bar Association (ABA) RPTE Employee Benefit & Other Compensation Committee, a Council Member of the ABA Joint Committee on Employee Benefits and Past Chair of the ABA Health Law Section Managed Care & Insurance Interest Group, Ms. Stamer continuously advises employers, health plans, plan sponsors, fiduciaries, plan administrators, plan vendors, insurers and others about health program related legal, operational, documentation, public policy, enforcement, privacy, technology, litigation and risk management and other concerns. Ms. Stamer also publishes and speaks extensively on these and other health and managed care program concerns and practices. Her insights on these and related topics have appeared in Atlantic Information Service, Bureau of National Affairs, World At Work, The Wall Street Journal, Business Insurance, Managed Healthcare, Health Leaders, various ABA publications and a many other national and local publications. To contact Ms. Stamer or for additional information about Ms. Stamer, her experience, involvements, programs or publications, contact Ms. Stamer at (469) 767-8872 or via e-mail here, or see here.

About Solutions Law Press

If you found this of interest, you also may be interested in the following recent Solutions Law Press publications by Ms. Stamer:

Comments Off on Stamer To Conduct“Health Plan Eligibility Update” Teleconference For NBI October 13, 2010 | ADA, CHIP, COBRA, Employee Benefits, Employers, ERISA, family leave, Fiduciary Responsibility, FMLA, GINA, Health Plans, HIPAA, Human Resources, Insurance, Leave, medical leave, Medicare Part D, Mental Health, Mental Health Parity, Patient Protection and Affordable Care Act | Tagged: Affordable Care Act, Emploeyrs, GINA, Group Health plans, Health Plans, HIPAA, Insurers | Permalink
Posted by Cynthia Marcotte Stamer

New Affordable Care Act Mandated High Risk Pre-Existing Condition Insurance Pool Program Regulations Prohibit Plan Dumping of High Risk Members, Set Other Rules

August 1, 2010

Register Now For 8/24 Health Plan Update Briefing

Group health plans and insurers risk are prohibited from dumping or engaging in other actions designed to drive individuals with pre-existing high risk conditions to enroll in coverage under high risk pool plans established under the “Pre-Existing Condition Insurance Plan” (PCIP) program established by the Patient Protection and Affordable Care Act of 2010 (Affordable Care Act) in lieu of maintaining existing private coverage.

Section 1101 of the Affordable Care Act requires HHS to set up the PCIP program to ensure that a temporary high risk health insurance pool program exists to provide affordable health insurance coverage to uninsured individuals with pre-existing conditions until January 1, 2014, when Exchanges established under sections 1311 and 1321 of the Affordable Care Act take effect.

Interim final rules implementing the PCIP program (Regulations) issued by the Department of Human Services on Friday, July 30, 2010 prohibit group health plans and insurers from dumping individuals with high risk conditions from coverage. The Regulations also identify the individuals that will qualify for enrollment in PCIP plans and detail the rules governing the establishment, implementation and administration of the PCIP program.

Dumping High Risk Patients Prohibited

In addition to already-existing liability for any violation of existing prohibitions against discrimination based on health history under the Health Insurance Portability & Accountability Act, the Genetic Information Nondiscrimination Act, and the Affordable Care Act, the Regulations provide that a health insurance issuer or group health plan found to have illegally discouraged an individual from remaining enrolled in its coverage or engaging in other actions considered “dumping” based on the individual’s health status will be responsible for any medical expenses incurred by the PCIP to provide coverage for a dumped individual who subsequently enrolls in the PCIP plan. Additionally, HHS also may refer the insurer or the plan to Federal and State authorities for other enforcement actions that may be warranted based on the behavior at issue. In light of these exposures, group health plans and insurers should review and tighten their eligibility terms, processes and procedures to avoid prohibited conduct. In this respect, plans and insurer should pay particular attention to managing the conduct of individuals involved in communicating with members or prospective members. Insurers and plans should adopt policies clearly prohibiting eligibility discrimination in violation of these and other rules and back up these rules by clear operating policies and training that makes clear to individuals involved in enrollment and other enrollment activities what conduct is prohibited.

More OnThe PCIP Program & Regulations

The Regulations provide an individual will be eligible to enroll in a PCIP if he or she:

Is a citizen or national of the United States or lawfully present in the United States;
Has not been covered under creditable coverage for a continuous 6-month period of time prior to the date on which such individual is applying for PCIP;
Has a pre-existing condition within the meaning of the Affordable Care Act;
Is a current resident of one of the 50 States or the District of Columbia which constitutes or is within the service area of the PCIP; and
Meets other criteria established by the PCIP with HHS approval.
PCIP Plans will be required to cover eligible individuals without any pre-existing condition limitation or waiting period.

The Regulations outline the process that a State or nonprofit private entity to pursue and enter into a contract with HHS to set up and run a PCIP program. The PCIP program generally anticipates that each State will contract with HHS to maintain a qualifying PCIP program directly or by subcontracting with another party. If a State elects not to or fails to maintain a PCIP program, however, the Regulation states HHS will contract with a nonprofit private entity to offer a PCIP program in that State.

PCIP program operates must have enrollment and disenrollment rules and processes that meet the applicable standards in the Regulations. The Regulations dictate that as part of this process, a PCIP verify that an individual is a United States citizen or national or lawfully present in the United States in accordance with the Regulations. The Regulations also allow PCIPS to employ certain strategies to manage enrollment over the course of the program that may include enrollment capacity limits, phased-in (delayed) enrollment, and other measures, as defined by the PCIP and approved by HHS to manage the PCIP program’s compliance with funding and other allowable requirements.

The Regulations specify that each benefit plan offered by a PCIP cover at least the following categories and the items and services:

Hospital inpatient services
Hospital outpatient services
Mental health and substance abuse services
Professional services for the diagnosis or treatment of injury, illness, or condition
Non-custodial skilled nursing services
Home health services
Durable medical equipment and supplies
Diagnostic x-rays and laboratory tests
Physical therapy services (occupational therapy, physical therapy, speech therapy)
Hospice
Emergency services and ambulance services
Prescription drugs
Preventive care
Maternity care

The Regulations also prohibit PCIP Plans from offering certain benefits. Benefit plans offered by a PCIP cannot cover the following services:

Cosmetic surgery or other treatment for cosmetic purposes except to restore bodily function or correct deformity resulting from disease.
Custodial care except for hospice care associated with the palliation of terminal illness.
In vitro fertilization, artificial insemination or any other artificial means used to cause pregnancy.
Abortion services except when the life of the woman would be endangered or when the pregnancy is the result of an act of rape or incest.
Experimental care except as part of an FDA-approved clinical trial.

The Regulations regulate the premiums and cost sharing that PCIP programs can use. The Regulations limit the premium a PCIP may charge to 100 percent of the premium for the applicable standard risk rate that would apply to the coverage offered in the State determined in accordance with the Regulations using HHS-approved reasonable actuarial techniques. Premiums charged to enrollees in the PCIP may vary on the basis of age by a factor not greater than 4 to 1. Also, the PCIP program’s average share of the total allowed costs of the PCIP benefits must be at least 65 percent of such costs. Furthermore, the out-of-pocket limit of coverage for cost-sharing for covered services under the PCIP cannot exceed the Internal Revenue Code § 223(c)(2) limit. If the plan uses a network of providers, this limit may be applied only for in-network providers, consistent with the terms of PCIP benefit package.

The Regulations allow a PCIP program to require that covered persons use network providers for non-emergency services if that the PCIP has sufficient providers to ensure that all covered services are reasonably available and accessible to its enrollees. Out-of-network coverage for emergency services will be required under certain conditions. The Regulations also will require PCIPst o process and administer claims and appeals in compliance with the Regulations.

The Regulations also require PCIPs to develop and apply operating procedures to prevent, detect, report to HHS and law enforcement and recover (when applicable or allowable) incidences of waste, fraud, and abuse and to cooperate with Federal law enforcement and oversight authorities in cases involving waste, fraud and abuse.

Register For 8/24 Internet Briefing To Learn If Your Plan Will Be Grandfathered Plan & What Health Plan Updates Your Plan Will Require To Meet 2010/2011 Affordable Care Act & Other Federal Health Plan Compliance Deadlines

For Assistance or More Information

If your organization needs assistance updating your heath care program documentation, policies or procedures in response to these or other requirements or with other employee benefit, insurance or human resources matters, please contact the author of this update, Board Certified Labor & Employment attorney Cynthia Marcotte Stamer at (469) 767-8872 or via e-mail here.

Current Chair of the American Bar Association (ABA) RPTE Employee Benefit & Other Compensation Group, a Council Member of the ABA Joint Committee on Employee Benefits and Past Chair of the ABA Health Law Section Managed Care & Insurance Interest Group, Ms. Stamer continuously advises employers, health and other employee benefit plans, plan sponsors, fiduciaries, plan administrators, plan vendors, insurers and others about health program related legal, operational, documentation, public policy, enforcement, privacy, technology, litigation and risk management and other concerns. Ms. Stamer also publishes, conducts client and other training, speaks and consults extensively on these and other health and managed care program concerns and practices. She regularly speaks and conducts training for the ABA, American Health Lawyers Association, Institute of Internal Auditors, Society for Professional Benefits Administrators, Southwest Benefits Association and many other organizations. Her insights on these and related topics have appeared in Atlantic Information Service, Bureau of National Affairs, World At Work, The Wall Street Journal, Business Insurance, Managed Healthcare, Health Leaders, various ABA publications and a many other national and local publications. To contact Ms. Stamer or for additional information about Ms. Stamer, her experience, involvements, programs or Publishers of her many highly regarded writings on health industry and human resources matters include the Bureau of National Affairs, Aspen Publishers, ABA, AHLA, Aspen Publishers, Schneider Publications, Spencer Publications, World At Work, SHRM, HCCA, State Bar of Texas, Business Insurance, James Publishing and many others. You can review other highlights of Ms. Stamer’s experience here.

If you need help with human resources or other management, concerns, wish to ask about compliance, risk management or training, or need legal representation on other matters please contact Cynthia Marcotte Stamer here or (469)767-8872.

Other Resources

If you found this information of interest, you also may be interested in reviewing other recent Solutions Law Press updates including:

About Solutions Law Press

Comments Off on New Affordable Care Act Mandated High Risk Pre-Existing Condition Insurance Pool Program Regulations Prohibit Plan Dumping of High Risk Members, Set Other Rules | Affordable Care Act, Corporate Compliance, Employee Benefits, Employers, ERISA, Fiduciary Responsibility, GINA, Health Plans, Human Resources, Insurance | Permalink
Posted by Cynthia Marcotte Stamer

Register Now For 8/24 2010 Health Plan Update Briefing

July 30, 2010

Learn If Your Plan Will Be Grandfathered Plan & What You Must Do Now To Meet Key 2010/2011 Affordable Care Act & Other Federal Health Plan Compliance Deadlines

A Solutions Law Press Live Internet Broadcast Briefing

August 24, 2010

10:00 A.M.-12:30 P.M. Eastern

11:00 A.M.- 1:30 P.M. Central

9:00 A.M-11:30 A.M. Pacific

Affordable Care Act Requires Prompt Action By Group Health Plans, Sponsors, Fiduciaries & Administrators

The Affordable Care Act and other impending federal health plan changes will require employment-based group health plans, their employer and other plan sponsors, plan fiduciaries, plan administrators and other service providers and insurers to make quick decisions and to act quickly to meet impending federal compliance deadlines while preserving flexibility. All employer and other group health plan sponsors, fiduciaries, insurers and administrators must act quickly to update their health plan documents, communications, insurance and vendor agreements and other practices to comply with new federal requirements that become effective under the Affordable Care Act on the first day of the plan year beginning after September 22, 2010 and various other changes in federal health plan rules effective or scheduled to take effect during 2010 or 2011 plan years. Many plan sponsors also may need to act quickly to cancel or revise plan design or vendor changes planned or already implemented since March 23, 2010 to position their health plan to qualify for grandfather status. Quick action also may be needed to claim small employer tax credits, retiree medical subsidies or other benefits.

Register Now To Get Key Information In August 24 Internet Briefing

The August 24, 2010 “2010 Health Plan Update” briefing will cover the latest guidance on Affordable Care Act and other federal health plan regulatory changes impacting employment-based group health plans and their sponsors for plan years beginning between September 23, 2010 and September 22, 2011 and other key information to help employers, group health plans, insurers, plan administrators, fiduciaries, broker and others working with these plans to understand and respond to these new requirements including:

How to qualify your health plan as a grandfathered plan under Affordable Care act
How to decide if maintaining grandfathered plan status is worthwhile
Claims & appeals requirements for grandfathered & non-grandfathered plans
Preventive care coverage mandates & wellness program requirements & rules under Affordable Care Act & other federal regulations
Updated dependent child eligibility, pre-existing condition & other requirements for grandfathered & non-grandfathered plans
Special enrollment, preexisting condition & other eligibility mandates for grandfathered & non-grandfathered plans under new Affordable Care Act, new FMLA, COBRA, Michelle’s Law, HIPAA & other federal regulations
Mental health & substance abuse, provider choice & other benefit mandates under Affordable Care Act, Mental Health Parity & other federal rules
Update on other recent & pending Affordable Care Act group health plan rule guidance
Tips to review & update your plans, vendor agreements & processes to meet Affordable Care Act & other federal group health plan dictates
Expected future Affordable Care Act & other federal rule changes & tips for preparing
Practical strategies for responding to new requirements & changing rules
Participant questions

About The Presenter

The program will be conducted by attorney Cynthia Marcotte Stamer. With more than 23 years of experience advising employers, group health plans, plan fiduciaries, plan administrators and vendors, insurers and others about health plan and managed care matters, Ms. Stamer is nationally known for her work, publications and presentations on health plan and other employee benefit, health care and insurance matters.

About Solutions Law Press

[*] A limited number of participants on a space available basis will have the opportunity to participate in the briefing as a member of the live studio audio audience in Plano, Texas. Interested persons should e-mail support@solutionslawyer.net.

[†] Discounts available for groups registering three or more participants. Sponsorship opportunities also available. For information, E-mail support@solutionslawyer.net.

Comments Off on Register Now For 8/24 2010 Health Plan Update Briefing | ADA, Affordable Care Act, COBRA, Disease Management, Employee Benefits, Employers, ERISA, Excise Tax, family leave, Fiduciary Responsibility, FMLA, GINA, HIPAA, Human Resources, Insurance, Internal Controls, Leave, medical leave, Mental Health, Patient Protection and Affordable Care Act, Payroll Tax, Privacy, Protected Health Information, Risk Management, Tax, Wellness | Tagged: Affordable Care Act, COBRA, FLSA, GINA, grandfathered plan, Health Plan, HIPAA, Mental Health Parity, Michelle's Law | Permalink
Posted by Cynthia Marcotte Stamer

2010 Health Plan Update: Learn What You Must Do Now To Meet Key 2010/2011 Affordable Care Act & Other Federal Health Plan Deadlines

July 23, 2010

August 24, 2010

10:00 A.M.-12:30 P.M. Eastern ¨ 11:00 A.M.- 1:30 P.M. Central ¨ 9:00 A.M-11:30 A.M. Pacific

Affordable Care Act Requires Prompt Action By Group Health Plans, Sponsors, Fiduciaries & Administrators

August 24 Live Briefing Provides Key Information By Internet Broadcast

How to qualify your health plan as a grandfathered plan under Affordable Care Act
How to decide if maintaining grandfathered plan status is worthwhile
Claims & appeals requirements for grandfathered & non-grandfathered plans
Preventive care coverage mandates & wellness program requirements & rules under Affordable Care Act & other federal regulations
Updated dependent child eligibility, pre-existing condition & other requirements for grandfathered & non-grandfathered plans
Special enrollment, preexisting condition & other eligibility mandates for grandfathered & non-grandfathered plans under new Affordable Care Act, new FMLA, COBRA, Michelle’s Law, HIPAA & other federal regulations
Mental health & substance abuse, provider choice & other benefit mandates under Affordable Care Act, Mental Health Parity & other federal rules
Update on other recent & pending Affordable Care Act group health plan rule guidance
Tips to review & update your plans, vendor agreements & processes to meet Affordable Care Act & other federal group health plan dictates
Expected future Affordable Care Act & other federal rule changes & tips for preparing
Practical strategies for responding to new requirements & changing rules
Participant questions

About The Presenter

About Solutions Law Press

[†] Discounts available for groups registering three or more participants. E-mail support@solutionslawyer.net.

Comments Off on 2010 Health Plan Update: Learn What You Must Do Now To Meet Key 2010/2011 Affordable Care Act & Other Federal Health Plan Deadlines | ADA, Affordable Care Act, Disease Management, EEOC, Employee Benefits, Employers, ERISA, Excise Tax, family leave, Fiduciary Responsibility, FMLA, GINA, H.R. 4872, Health Care Reform, Health Plans, HIPAA, Human Resources, Insurance, Leave, medical leave, Medicare Part D, Mental Health, Mental Health Parity, Military Leave, Patient Protection and Affordable Care Act, Payroll Tax, Prescription Drugs, Public Policy, Reporting & Disclosure, Union, USERRA, Wellness, Wellness Programs | Tagged: Affordable Care Act, broker, Employers, grandfathered plan, Group Health plans, health coverage, Health Plans, Insurer, Mental Health Parity, Patient Protection and Affordable Care Act, plan sponsor, pre-existing conditions, preventive care | Permalink
Posted by Cynthia Marcotte Stamer

CBO Raises Estimated Cost of Health Care Reforms As Employers, Health Plans Brace Costs Of Newly Effective & Impending Mandates

May 15, 2010

By Cynthia Marcotte Stamer

New analysis released Tuesday, May 11 by the non-partisan Congressional Budget Office shows H.R. 3590, the Patient Protection and Affordable Care Act, Public Law 111-148 (Health Care Reform Law) passed in March will cost $115 Billion more than originally estimated in the CBO’s March 15, 2010 discretionary spending analysis. News of the cost estimate increase comes as U.S. employer and other health plan sponsors, insurers and others are bracing for the first wave of new federal health plan mandates enacted as part of the Health Care Reform Law to take effect in September and a host of other federal mandates previously enacted that take effect in the 2009 and 2010 plan years.

Projected Cost of Health Care Reform Increased

According to CBO, additional information about the potential effects of the Health Care Reform Law on spending funded through the annual appropriation process (discretionary spending). By their nature all such potential effects on discretionary spending are subject to future appropriation actions, which could result in greater or smaller costs than the sums authorized by the legislation. While still limited in certain respects, the updated CBO analysis provides information on the major components of such costs in three general categories:

The costs that will be incurred by federal agencies to implement the new policies established by the Health Care Reform Law, such as administrative expenses for the Department of Health and Human Services and the Internal Revenue Service for carrying out key requirements of the legislation.
Explicit authorizations for future appropriations for a variety of grant and other program spending for which the act identifies the specific funding levels it envisions for one or more years. (Such cases include provisions where a specified funding level is authorized for an initial year along with the authorization of such sums as may be necessary for continued funding in subsequent years.)
Explicit authorizations for future appropriations for a variety of grant and other program spending for which no specific funding levels are identified in the legislation. That type of provision generally includes legislative language that authorizes the appropriation of “such sums as may be necessary,” often for a particular period of time.

According to the updated analysis, CBO estimates that total authorized costs in the first two categories probably exceed $115 billion over the 2010-2019 period. CBO still does not have an estimate of the potential costs of authorizations in the third category.

CBO previously issued an estimate of the Health Care Reform Law’s direct spending and revenue effects in combination with the Reconciliation Act of 2010 (Public Law 111-152), which amended it. (Direct spending effects are those that do not require subsequent appropriation action.) CBO estimated that those two laws, in combination, would produce a net reduction in federal deficits of $143 billion over the 2010-2019 period as a result of changes in direct spending and revenues.

Impending Federal Health Plan Mandate Changes Bring New Costs, Risks Now

CBO’s adjustment to its cost projections comes as U.S. employers and insurers already are bracing to cope with a host of new federally imposed health plan mandates and accompanying costs that already have or will in the next 12-months impact their existing health benefit programs. Examples of these new mandates include:

COBRA Stimulus Bill Premium Subsidy and Other Mandates
New FMLA and USERRA Coverage Continuation Mandates
Dependent Care Coverage Extension Mandates For Students Requiring Medical Leave Effective
Genetic and Other Disability Discrimination Mandates under GINA, ADA Amendments Act of 2008, HIPAA Portability and Other Federal Mandates
Expanded Mental Health Parity Mandates
HIPAA Data Breach and Other Protected Health Information Privacy and Data Security Mandates
New IRS Excise Tax Self-Assessment & Reporting Mandates For Plans Violating COBRA, Mental Health Parity and Wide Range of Other Federal Mandates
Changes To Retiree Medical Subsidy Rules
Early Retiree Medical Reinsurance Program For Employers Providing Qualifying Retiree Coverage
New Small Employer Tax Credit Rules
Mandated extension of dependent coverage to age 26
Prohibition of Pre-Existing Condition Limits on Dependent Coverage
New restrictions on annual and lifetime benefit limitations
Mandate to cover 100% of preventative care
Prohibition against coverage rescissions
Primary Care Physician choice mandates
Restrictions on coverage limitations for emergency and obstetrical care
Extension of Internal Revenue Code Section 105(h) nondiscrimination mandates to certain insured health plans
Many others

Employer and other health plan sponsors, their insurers, administrators and others responsible for updating and administering group and other health plans must move immediately to meet these evolving mandates while bracing for anticipated increased costs and other obligations expected to result as the Health Care Reform Law takes effect over the next few years. Employers, administrators and insurers needing additional information about these changes can review the resources and training materials available here and/or contact the author of this update, attorney and consultant Cynthia Marcotte Stamer, for assistance at (469) 767-8872 or here

Responsible & Prompt Action Needed

Employer and other health plan sponsors, administrators, fiduciaries and insurers both should act quickly to update their programs, plan documents, communications and practices to comply with federal mandates that have and are scheduled to take effect and stay involved with regulators and Congress as the regulatory rules and processes to implement the Health Care Reform Law are developing. Ultimately, the cost and other implications of the Health Care Reform Law will depend largely upon how its provisions are construed and implemented by federal and state regulators, along with any subsequent adjustments, if any that Congress may elect to enact. With federal officials hard at work preparing implementing regulations and other guidance and procedures, health industry leaders and other concerned Americans should stay informed and continue to share their input on these critical issues as these decisions are shaped. Join the discussion by participating in the Coalition For Responsible Health Care Policy linked in group and/or its subgroup, Project COPE: Coalition for Patient Empowerment and/or register to receive updates Coalition for Responsible Heath Care Policy by RSS Feed.Coalition for Responsible Health Care Policy Coalition for Responsible Health Care Policy Coalition for Responsible Health Care Policy

The author of this update, Cynthia Marcotte Stamer, recently has conducted briefings on the implications of the Affordable Care Act and other regulatory changes impacting health plans and their employer and other sponsors, insurers, administrators and others for the Society of Professional Benefits Administrators, the Dallas Bar Association and others. Several other presentations and update are scheduled in the upcoming months. For information about these programs or to register to receive information about these programs, see here.

About Ms. Stamer

Board Certified in Labor & Employment Law by the Texas Board of Legal Specialization, management attorney and consultant Ms. Stamer is nationally and internationally recognized for more than 22 years of work helping businesses manage labor and employment, employee benefits, performance management and discipline, compliance and internal controls, risk management, and public policy matters including significant, cutting edge experience advising employer and other health plan sponsors, fiduciaries, insurers, administrators and others design, administer, and defend defensible, cost-effective health and other employee benefit programs.

The Chair of the American Bar Association (ABA) RPTE Employee Benefits & Other Compensation Committee, a Council Representative on the ABA Joint Committee on Employee Benefits, Government Affairs Committee Legislative Chair for the Dallas Human Resources Management Association, Vice President of the North Texas Health Care Compliance Professionals Association, past Chair of the ABA Health Law Section Managed Care & Insurance Interest Group, and the editor and publisher of Solutions Law Press HR & Benefits Update and other Solutions Law Press Publications Ms. Stamer also is recognized for her publications, industry leadership, workshops and presentations on these and other health industry and human resources concerns. She regularly speaks and conducts training for the ABA, American Health Lawyers Association (AHLA), Health Care Compliance Association, Institute of Internal Auditors, Harris County Medical Society, the Medical Group Management Association, Society for Professional Benefits Administrators, Southwest Benefits Association, Harris County Medical Society, Medical Group Management Association, Society of Human Resources Management, and many other organizations. Publishers of her many highly regarded writings on health industry and human resources matters include the Bureau of National Affairs, Aspen Publishers, ABA, AHLA, Aspen Publishers, Schneider Publications, Spencer Publications, World At Work, SHRM, HCCA, State Bar of Texas, Business Insurance, James Publishing and many others. You can review other highlights of Ms. Stamer’s experience here. Her insights on these and other matters appear in Managed Care Executive, Modern Health Care, the Wall Street Journal, the Dallas Business Journal, the Houston Business Journal, MDNews, Kentucky Physician, and many other national and local publications.

Other Resources

If you found this information of interest, you also may be interested in reviewing other updates and publications by Ms. Stamer including:

If you or someone else you know would like to receive future updates about developments on these and other concerns, please be sure that we have your current contact information – including your preferred e-mail – by creating or updating your profile here or e-mailing this information here or registering to receive our Solutions Law Press distributions here. For important information about this communication click here. If you do not wish to receive these updates in the future, send an e-mail with the word “Remove” in the Subject to here.

Comments Off on CBO Raises Estimated Cost of Health Care Reforms As Employers, Health Plans Brace Costs Of Newly Effective & Impending Mandates | Affordable Care Act, ARRA, CHIP, COBRA, COBRA Subsidy, Disease Management, Employee Benefits, Employers, Employment Tax, ERISA, Excise Tax, family leave, Fiduciary Responsibility, FMLA, GINA, H.R. 4872, Health Plans, HIPAA, Human Resources, Income Tax, Leave, medical leave, Medicare Part D, Mental Health, Mental Health Parity, Military Leave, Payroll Tax, Prescription Drugs, Privacy, Protected Health Information, Public Policy, Risk Management, Stimulus Bill, Tax, Uncategorized, Wellness | Tagged: Affordable Care Act, dependent coverage, Employer, Health Care Reform, Health Plans, Insurer, Mental Health Parity, preexisting condition | Permalink
Posted by Cynthia Marcotte Stamer

Stamer To Discuss “Health Care Reform’s Implications For Employers, Health Plans & Employee Benefits Practitioners” At May 5 Dallas Bar Association Meeting

March 22, 2010

Cynthia Marcotte Stamer will discuss “Health Care Reform: Implications for Employers, Health Plans and Employee Benefits Practitioners” at the May 5, 2010 meeting of Dallas Bar Association Employee Benefits/Executive Compensation Section to be held from 12:00 noon – 1:00 p.m. in the Haynes & Boone Ballroom of Dallas Bar Association Belo Mansion located at 2101 Ross Avenue in Dallas, Texas.

Narrowly passed by Congress in March after a year of contentious debate, the comprehensive health care reform legislation imposes a complex array of reforms impacting employment based health plans, employers, and the insurers and other vendors and administrators of these programs. Ms. Stamer will explore key elements of these reforms impacting employers and employment based health coverage and their implications for employers, employment based health plans, and employee benefits and other attorneys providing advice about these arrangements.

Chair of the American Bar Association RPTE Employee Benefits & Compensation Committee, an ABA Joint Committee on Employee Benefits Council member, Chair of the Curran Tomko Tarski Labor, Employment & Employee Benefits Practice and former Chair of the ABA Health Law Section Managed Care & Insurance Interest Group and the Dallas Bar Association Employee Benefits & Executive Compensation Section, Ms. Stamer is nationally recognized for more than 22 years of work with employer and other health plan sponsors, fiduciaries, administrative and other service providers, insurers, and other clients on health benefit program and product design, documentation, administration, compliance, risk management, and public policy matters. The publisher of Solutions Law Press, Ms. Stamer also publishes, conducts training and speaks extensively on these and related concerns for the ABA, the Bureau of National Affairs and many other organizations. For additional information about Ms. Stamer and her experience or to access other publications by Ms. Stamer see here or contact Ms. Stamer directly. For additional information about the experience and services of Ms. Stamer and other members of the Curran Tomko Tarksi LLP team, see here.

If you need assistance with evaluating or responding to this new legislation or other employee benefits, employment, compensation or other management concerns, wish to inquire about compliance, risk management or training, or need legal representation on other matters please contact Cynthia Marcotte Stamer at cstamer@cttlegal.com, 214.270.2402; or your other preferred Curran Tomko Tarski LLP attorney.

If you found this information of interest, you also may be interested in reviewing other updates and publications by Ms. Stamer including:

You can review other recent human resources, employee benefits and internal controls publications and resources and additional information about the employment, employee benefits and other experience of Ms. Stamer here and learn more about other Curran Tomko Tarski LLP attorneys here. If you or someone else you know would like to receive future updates about developments on these and other concerns, please be sure that we have your current contact information – including your preferred e-mail – by creating or updating your profile here or e-mailing this information to Cstamer@CTTLegal.com or registering to participate in the distribution of these and other updates on our Solutions Law Press distributions here. For important information concerning this communication click here.

Comments Off on Stamer To Discuss “Health Care Reform’s Implications For Employers, Health Plans & Employee Benefits Practitioners” At May 5 Dallas Bar Association Meeting | Corporate Compliance, Disease Management, Employers, Employment Tax, ERISA, Excise Tax, GINA, Health Plans, Human Resources, Income Tax, Insurance, Internal Controls, Payroll Tax, Risk Management, Tax | Tagged: COBRA, Corporate Compliance, Disability Discrimination, Disease Management, Employee Benefits, Employer, Employment, ERISA, GINA, Health Care Reform, Health Insurance, Health Plans, HIPAA, Human Resources, Insurance, Insurer, Managed Care, Medical Coverage, Risk Management, Wellness | Permalink
Posted by Cynthia Marcotte Stamer

Privacy Rule Changes & Posting of Breach Notices On OCR Website Signal New Enforcement Risks For Health Plans, Their Sponsors & Business Associates

February 23, 2010

By Cynthia Marcotte Stamer

The Department of Health and Human Services Office of Civil Rights (OCR) has begun disclosing on its website the employer and other health plans, health care providers, health care clearinghouses and their business associates (Covered Entities) that report breaches of unsecured protected health information (UPIC) affecting more than 500 individuals as required by new rules enacted as part of the Health Information Technology for Economic and Clinical Health Act (HITECH Act). This posting of Covered Entities reporting breaches comes just days after these and other Covered Entities became subject on February 17, 2010 to a host of other tighter federal requirements for the use, access, protection and disclosure of protected health information under Privacy & Security Standards of the Health Insurance Portability & Accountability Act (HIPAA) also enacted as part of the HITECH Act. As failing to comply with the amended rules effective February 17, 2010 can trigger obligations under the Breach Regulations and other exposures, prompt action to manage risk under both the Breach Regulations and the revised HIPAA rules is critical to minimize Covered Entity and business associate exposures under both these rules. With criminal, administrative and civil prosecutions of such violations increasing and likely to expand, timely action to manage compliance and other risks is warranted. Health plans and their business associates also should prepare for increased awareness and oversight of the adequacy of their medical information safeguards as these disclosures and other enforcement actions heighten interest and awareness of employees and others in these rules.

Covered Entity Breach Notification Requirements

OCR posted the initial list of Covered Entities disclosing these breaches on its website for the first time yesterday (February 22, 2010) to comply with breach notification requirements imposed by Section 164.408 of the interim “Breach Notification For Unsecured Protected Health Information” regulation (Breach Regulation) published here.

The Breach Regulation requires Covered Entities subject to the Health Insurance Portability & Accountability Act (HIPAA) to notify affected individuals, OCR and certain other parties following a “breach” of “unsecured” protected health information occurring on or after September 23, 2009. The Breach Regulation implements new breach notification requirements added to HIPAA by Section 13402(e)(3) of the Health Information Technology for Economic and Clinical Health Act (HITECH Act). It and the posting of Covered Entities reporting breaches of protected health information are part of the ongoing implementation and enforcement of new and stricter personal health information privacy and data security requirements for Covered Entities added to HIPAA under provisions of the HITECH Act and expanded remedies for violations signed into law on February 17, 2009 as part of American Recovery and Reinvestment Act of 2009 (ARRA).

You can review the list of Covered Entities that have reported breaches on the OCR website here. Learn more about the Breach Regulation requirements here.

Broader & Stricter Medical Privacy Mandates Effective 2/17/210

Just last Wednesday (February 17, 2010) Covered Entities and their business associates also became subject to tighter federal requirements for the use, access, protection and disclosure of protected health information under amendments to HIPAA’s Privacy & Security Standards enacted by the HITECH Act. The changes that became effective on February 17, 2010 generally require that Covered Entities and their business associates make specific changes to update their written policies, operational procedures, privacy notices, business associate agreements, training, and other management procedures in several respects. For more details, see here.

While the HITECH Act gave Covered Entities and business associates a year to complete the necessary arrangements to comply with these HITECH Act changes, many Covered Entities and business associates have remain unnecessarily exposed under these new requirements by not completing or otherwise failing to adequately implement the necessary arrangements despite expanding liability exposures that can result from noncompliance. To mitigate these exposures, Covered Entities and their business associates should act quickly to review and update their policies, procedures, training, business associate and other services agreements, and other practices and procedures, as well as to implement the training, oversight, and other management necessary to comply with the HITECH Act changes and to mitigate other HIPAA risks.

Exposures Significant & Growing

Covered Entities and business associates failing to devote adequate attention and resources to managing HIPAA compliance and associated risks risk increasing peril. Aside from the potential implications that disclosures of violations may have on patients and others impacting their business, the legal risks of noncompliance for Covered Entities, business associates and others mishandling protected health information are real and growing.

Timely action to comply with the amended HIPAA requirements and Breach Regulations is important both to preserve critical trust in the business, to avoid triggering breach notifications that can undermine this trust and fuel legal complaints, and to avoid exposure to an expanding range of sanctions that can result when a violation occurs.

Amendments made under the HITECH Act have expanded the size and availability of remedies that can be imposed for HIPAA violations as well as the parties empowered to pursue these remedies. Wrongful use, access or disclosure of protected health information in violation of HIPAA subjects participating health plans, health care providers, health care clearinghouses, their business associates and other workforce members and others to civil penalties, criminal prosecution and, since February 17, 2009, civil lawsuits brought by state attorneys general on behalf of citizens of their states whose HIPAA rights were violated. Since September 23, 2009, health plans and other HIPAA Covered Entities as well as their business associates also became obligated to provide breach notification under new mandates imposed by the HITECH Act. Coupled with increased enforcement emphasis by regulators, these expansions to HIPAA’s remedy provisions increase the risk that Covered Entities or business associates violating HIPAA face investigation and sanction. Furthermore, the wrongful use, access or disclosure of protected health information or other confidential information also increasingly is the basis of civil or criminal actions brought under a variety of other federal and state laws.

Expanded HIPAA & Other Federal Prosecutions & Remedies

The expanded requirements imposed under the Breach Regulation and the other HITECH Act changes that took effect on February 17, 2010 follow the implementation changes to HIPAA’s civil and criminal sanctions that took effect on February 17, 2009, when President Obama signed the HITECH Act into law. The HITECH Act amendments to HIPAA’s remedies significantly increase the risk that health plans and other Covered Entities and their business associates will face civil lawsuits, civil or criminal penalties or other consequences for violating HIPAA. Noncompliance with these and other HIPAA requirements subjects Covered Entities and business associates to civil penalties, criminal prosecution, civil damage awards under lawsuits brought by state attorneys general, and other legal remedies. In addition, timely update written policies, procedures, business associate agreements, training and documentation is imperative in order for Covered Entities and their business associates to fulfill their breach notification obligations under new rules enacted as part of the HITECH Act.

HITECH Amendments Expand Liability Exposures

The expanded risks stem in part from the HITECH Act’s amendments to HIPAA’s remedy provisions. Among other things, the HITECH Act amended HIPAA to:

Allow a State Attorney General to sue health plans or other Covered Entities, business associates or both that harm state citizens by committing HIPAA violations after February 16, 2009;
Expand the mandate by OCR to investigate violations and audit compliance with HIPAA;
Require Office of Civil Rights to impose civil sanctions against Covered Entities and business associates involved in violations of HIPAA in accordance with tightened standards added to HIPAA by the HITECH Act;
Revise the criminal sanctions that the Department of Justice can seek against Covered Entities, their business associates and others for violations of HIPAA; and
Amend HIPAA to make clear that HIPAA’s criminal sanctions also can imposed on business associates, workforce members and other persons that improperly use, access and disclose protected health information in violation of HIPAA.

State Attorney General Lawsuit Exposures

Covered Entities and their business associates now also need to be concerned about the potential that a state Attorney General may bring civil suit to remedy damages caused to state citizens by a breach of HIPAA.

The HITECH Act empowers a state attorney general to sue Covered Entities or business associates engaging in HIPAA violations that harms citizens of the state for statutory damages equal to the sum of the number of violations multiplied by 100 up to a maximum of $25,000 per calendar year plus attorneys fees and costs

A HIPAA civil lawsuit filed on January 13, 2010 demonstrates the willingness of at least some states to exercise the new authority created by the HITECH Act on February 17, 2009 to sue Covered Entities and business associates that violate HIPAA for civil damages.

On January 13, 2010 Connecticut Attorney General Richard Blumenthal sued Health Net of Connecticut, Inc. (Health Net) for failing to secure private patient medical records and financial information involving 446,000 Connecticut enrollees and promptly notify consumers endangered by the security breach. The suit also names UnitedHealth Group Inc. and Oxford Health Plans LLC, who have acquired Health Net. The first attorney general enforcement action brought based on amendments made to HIPAA under the HITECH Act, Connecticut charges that Health Net violated HIPAA by failing to safeguard protected medical records and financial information on almost a half million Health Net enrollees in Connecticut then allowing this information to remain exposed for at least six months before notifying authorities and consumers.

Stepped Up Federal Enforcement

Even before the HITECH Act amendments, however, OCR and Department of Justice already were stepping up HIPAA investigation and enforcement. The Department of Justice has obtained a variety of criminal convictions against violators of HIPAA. See, e.g., 2 New HIPAA Criminal Actions Highlight Risks From Wrongful Use/Access of Health Information. Meanwhile, OCR also is emphasizing HIPAA enforcement. In February, 2009, for instance, OCR announced that CVS Pharmacies, Inc. would pay $2.25 million to resolve HIPAA charges. This announcement followed OCR’s announcement in July, 2008 that Providence Health Care would pay $100,000 to resolve HIPAA violation charges. OCR also has taken HIPAA enforcement actions against a broad range of other Covered Entities to redress HIPAA violations or other compliance concerns. To review examples of these other actions, see here. While not resulting in the significant payments involved in CVS or Providence, all Covered Entities involved in these and other enforcement actions or investigations have incurred significant legal and other defense costs, loss of community trust, or both.

In addition to these HIPAA-specific exposures, wrongful use, access or disclosure of medical information also can give rise to liability for health plans and other Covered Entities, business associates, employees and other members of their workforce and others improperly using, accessing or disclosing protected health information. Federal and state prosecutions may and increasingly do criminally prosecute individuals for improperly accessing or using medical or other personal information under a variety of other federal or state laws . See e.g., Cybercrime & Identity Theft: Health Information Security Beyond HIPAA; NY AG Cuomo Announcement of 1st Settlement For Violation of NY Security Breach Notification Law; Woman Who Revealed AIDs Info Gets A Year. Additionally, State courts also increasingly are permitting individuals harmed by HIPAA violations to use HIPAA as the foundation of state law duties used to maintain state negligence, invasion of privacy, retaliation or other claims for damages. Read more here.

State Civil Lawsuits

Meanwhile, disgruntled employees or other business partners also increasingly raise alleged HIPAA misconduct as a basis of their legal complaints. For instance, private plaintiffs employed by Covered Entities also are increasingly pointing to HIPAA as the basis for their retaliation or wrongful discharge claims. See, e.g., Retaliation For Filing HIPAA Complaint Recognized As Basis For State Retaliatory Discharge Claim. Coupled with the HITECH Act changes, these and other enforcement actions signal growing potential hazards for Covered Entities and their business associates that fail to properly manage their HIPAA compliance obligations and risks.

Given these and other developments, Covered Entities and their business associates generally should resist the temptation to underestimate their potential HIPAA exposure for a variety of reasons. In fact, a number of factors demonstrate that the risks are significant and growing for Covered Entities, business associates and others that breach HIPAA’s mandates or otherwise inappropriately access protected health information.

Covered Entities & Business Associates Urged To Act Promptly To Manage Expanded HIPAA Risks & Obligations

As a consequence of these collective HITECH Act changes and growing HIPAA-related and other exposures, Covered Entities, their business associates and business associates generally will find it necessary or advisable among other things to:

Conduct well-documented due diligence within the scope of attorney-client privilege on their own practices and procedures;
Review the adequacy of the practices, policies and procedures of the Covered Entities, business associates, and others that may come into contact with protected health information;;
Renegotiate their service provider agreements to detail the specific compliance obligations of each party relating to for auditing compliance, investigating potential breaches; providing required breach notifications; specify leadership and required cooperation in the event of a breach, charge, or other concern; indemnification and other liability allocations; and other related matters;
Update policies, privacy and other notices, practices, procedures, training and other practices as needed to promote compliance and defensibility;
Conduct well-documented training as necessary to ensure that business associates and other members of the Covered Entity’s workforce understand and are prepared to comply with the expanded requirements of HIPAA, can detect potential breaches or other compliance concerns, and understand and are prepared to follow appropriate procedures for reported suspected violations; and
Pursue appropriate liability and other protection as appropriate to improve their ability to demonstrate both their commitment to compliance and their realistic efforts to ensure that these commitments are both appropriately documented on paper and operationalized in performance.

As part of these compliance and risk management efforts, most Covered Entities and their business associates will find it advisable to devote significant attention to the business associate relationship and its associated business associate agreements. Proper management of the expanded compliance obligations and liability exposures created by the HITECH Act generally will necessitate that Covered Entities and their business associates focus significant attention on the reworking of their operating and contractual relationships including the definition of detailed procedures for monitoring, reporting, investigating, and resolving potential breaches or other compliance concerns.

Even before the impending HIPAA changes scheduled to take effect on February 17, 2010, a strong need for more detailed contracting and planning of these relationships already existed. Since the enactment of HIPAA, the practice of many Covered Entities and their business associates of appending generic “business associate” representations onto existing services contracts without specific tailoring and planning has created undesirable ambiguities in these agreements. Further updating and tailoring of these and other provisions of services agreements has become even more important over the past year in light of the new breach notification mandates that took effect under the HITECH Act in September, 2009, changes to HIPAA’s civil and criminal sanctions that took effect on February 17, 2009, and the impending extension by the HITECH Act to business associates of direct liability for compliance with HIPAA scheduled to occur on February 17, 2010.

These and other stepped up oversight and enforcement activities make it critical that all Covered Entities and their business associates update their policies and practices, conduct training, tighten their compliance and data breach monitoring processes, strengthen their internal controls and documentation, and take other steps to prepare to defend their actions under the newly strengthened Privacy Rules. Covered Entities and their business associates more than ever must ensure their ability to demonstrate to federal regulators the effectiveness of their HIPAA compliance efforts by both adopting the written policies and procedures required by HIPAA and continuously monitoring and administering these safeguards. Covered Entities should consider reviewing the adequacy of their current HIPAA Privacy and Security compliance practices taking into consideration the Corrective Action Plan, published OCR noncompliance and enforcement statistics, their own and reports of other security and privacy breaches and near misses, and other developments to determine if additional steps are necessary or advisable.

For Assistance With Compliance Or Other Concerns

If your organization need advice or assistance in reviewing, updating, administering or defending its HIPAA or other privacy policies, practices, business associate or other agreements, notices or other related activities, consider contacting the author of this article, Curran Tomko Tarski LLP Partner Cynthia Marcotte Stamer at (214) 270-2402 or via e-mail here.

Ms. Stamer is nationally known for her work, training and presentations, and publications on privacy and security of health and other sensitive information in health and managed care, employment, employee benefits, financial services, education and other contexts.

Vice President of the North Texas Health Care Compliance Professionals Association, Past Chair of the ABA Health Law Section Managed Care & Insurance Section and the former Board Compliance Chair of the National Kidney Foundation of North Texas, Ms. Stamer has more than 22 years experience advising clients about health and other privacy and security matters. A popular lecturer and widely published author on privacy and data security and other related health care and health plan matters, Ms. Stamer is the Editor in Chief of the forthcoming 2010 edition of the Information Security Guide to be published by the American Bar Association Information Security Committee in 2010, as well as the author of “Protecting & Using Patient Data In Disease Management: Opportunities, Liabilities And Prescriptions,” “Privacy Invasions of Medical Care-An Emerging Perspective,” “Cybercrime and Identity Theft: Health Information Security Beyond HIPAA,” and a host of other highly regarded publications. She has continuously advises employers, health care providers, health insurers and administrators, health plan sponsors, employee benefit plan fiduciaries, schools, financial services providers, governments and others about privacy and data security, health care, insurance, human resources, technology, and other legal and operational concerns. Ms. Stamer also publishes and speaks extensively on health and managed care industry privacy, data security and other technology, regulatory and operational risk management matters. Her insights on health care, health insurance, human resources and related matters appear in the Atlantic Information Service, Bureau of National Affairs, World At Work, The Wall Street Journal, Business Insurance, the Dallas Morning News, Managed Healthcare, Health Leaders, and a many other national and local publications. For additional information about Ms. Stamer, her experience, involvements, programs or publications, see here.

Other Recent Developments

If you found this information of interest, you also may be interested in information about upcoming programs to be presented by Ms. Stamer, acquiring a copy of a recording or materials from previous programs she has presented, or arranging training for your organization. For more information about these opportunities, contact Ms. Stamer directly.

If you found this information of interest, you also may be interested in reviewing some of the following recent Updates available online by clicking on the article title:

Curran Tomko Tarski LLP Can Help

If your organization need advice or assistance in reviewing, updating, administering or defending its HIPAA or other privacy policies, practices, business associate or other agreements, notices or other related activities, consider contacting Curran Tomko Tarski LLP Partner Cynthia Marcotte Stamer.

A widely published author and speaker on HIPAA and other employee benefit and human resources related matters, Ms. Stamer has extensive experience advising health plans, their employer and other sponsors, health insurers, TPAs and other business associates and others about HIPAA and other health plan and privacy matters. Currently serving as both Chair of the American Bar Association (ABA) RPTE Employee Benefits & Other Compensation Group and as an ABA Joint Committee on Employee Benefits Council representative and Former Chair of the ABA Health Law Section Managed Care & Insurance Interest Group, Ms. Stamer has more than 23 years experience assisting employers, insurers, plan administrators and fiduciaries and others to design, implement, draft and administer health and other employee benefit plans and to defend audits, litigation or other disputes by private parties, the IRS, Department of Labor, Office of Civil Rights, Medicare, state insurance regulators and other federal and state regulators. A nationally recognized author and lecturer, Ms. Stamer also speaks and writes extensively on these and other related matters. For additional information about Ms. Stamer and her experience or to access other publications by Ms. Stamer see here or contact Ms. Stamer directly. For additional information about the experience and services of Ms. Stamer and other members of the Curran Tomko Tarksi LLP team, see here.

Other Information & Resources

We hope that this information is useful to you. If you or someone else you know would like to receive future updates about developments on these and other concerns, please be sure that we have your current contact information – including your preferred e-mail – by creating or updating your profile here or e-mailing this information here or registering to participate in the distribution of our Solutions Law Press HR & Benefits Update distributions here. Examples of other recent updates that may be of interest include:

For important information concerning this communication click here. If you do not wish to receive these updates in the future, send an e-mail with the word “Remove” in the Subject here.

Comments Off on Privacy Rule Changes & Posting of Breach Notices On OCR Website Signal New Enforcement Risks For Health Plans, Their Sponsors & Business Associates | Corporate Compliance, Data Security, Employee Benefits, Employers, ERISA, Fiduciary Responsibility, GINA, Health Plans, HIPAA, Human Resources, Insurance, Internal Controls, Privacy, Risk Management, Wellness Programs | Tagged: Corporate Compliance, Employee Benefits, Employer, ERISA, GINA, Health Care Reform, Health Insurance, Health Plans, HIPAA, Human Resources, Insurance, Internal Controls, Medical Coverage, Privacy, Risk Management | Permalink
Posted by Cynthia Marcotte Stamer

Health Plan Liability Heats Up As Plans & Businesses Face New Obligations, Costs & Exposures under New HIPAA Privacy Rules Effective 2/17 & Other Expanding Federal Health Plan Mandates

February 17, 2010

Today (February 17, 2010), employer and other health plans and health insurers (“covered entities”) and service providers performing functions on behalf of these entities (“business associates”) must begin complying with tighter federal requirements for the use, access, protection and disclosure of protected health information under Privacy & Security Standards of the Health Insurance Portability & Accountability Act (HIPAA), as amended by the Health Information Technology for Economic and Clinical Health Act (HITECH Act). Coming as U.S. employers continue to struggle to provide health benefits in the face of skyrocketing health benefit costs, these and other new federal regulations impacting employment-based health plans and their sponsoring businesses, fiduciaries and administrators are forcing U.S. business leaders to make appropriate health plan cost and compliance management a key management priority.

2/17/10 & Other HIPAA Privacy Rule Changes Require Prompt Attention

The HIPAA Privacy Rule changes scheduled to take effect February 17, 2010 are likely to require that health plans and their business associates update their written policies, operational procedures, privacy notices and business associate agreements in several respects.

While the HITECH Act gave covered entities and business associates a year to complete the necessary arrangements to comply with these impending HITECH Act changes, many health plans and business associates have not completed the necessary arrangements despite expanding liability exposures that can result from noncompliance. To mitigate these exposures, covered entities and their business associates should act quickly both to update their services agreements, plans and policies, practices, and procedures, and to implement the training, oversight, and other management procedures necessary to comply with the HITECH Act changes and to mitigate other HIPAA risks.

The risks of noncompliance for health plans, business associates and others mishandling protected health information are real and growing. Wrongful use, access or disclosure of protected health information in violation of HIPAA subjects participating health plans, health care providers, health care clearinghouses, their business associates and other workforce members and others to civil penalties, criminal prosecution and, since February 17, 2009, civil lawsuits brought by state attorneys general on behalf of citizens of their states whose HIPAA rights were violated. Since September 23, 2009, health plans and other HIPAA covered entities as well as their business associates also became obligated to provide breach notification under new mandates imposed by the HITECH Act.

In addition to these HIPAA-specific exposures, wrongful use, access or disclosure of medical information also can give rise to liability for health plans and other covered entities, business associates, employees and other members of their workforce and others improperly using, accessing or disclosing protected health information. Federal and state prosecutions may and increasingly do criminally prosecute individuals for improperly accessing or using medical or other personal information under a variety of other federal or state laws . See e.g., Cybercrime & Identity Theft:Health Information Security Beyond HIPAA; NY AG Cuomo Annoucment of 1st Settlement For Violation of NY Security Breach Notification Law; Woman Who Revealed AIDs Info Gets A Year. Additionally, State courts also increasingly are permitting individuals harmed by HIPAA violations to use HIPAA as the foundation of state law duties used to maintain state negligence, invasion of privacy, retaliation or other claims for damages. Read more here.

To manage these and other HIPAA-related risks, sponsoring employers, fiduciaries, administrators, insurers and their vendors should begin with carefully and timely reviewing and updating existing plan documents, vendor agreements, privacy notices and other communications and associated practices and policies. The focus of these efforts definitely should seek both to adopt the specific technical changes necessary to make the health plans and their contracts technically comply on paper with these and other HIPAA mandates, and to tailor these documents, communications and practices promote operational compliance and minimize exposure to associated risks. In relation to these efforts, sponsoring employers, insurers, fiduciaries and administrators also should ensure that required certifications from employers and other plan sponsors, representations from business associates, training and other compliance conditions are properly in place. In this respect, employers sponsoring health plans should not overlook the potential need to adopt appropriate policies and implement needed training and safeguards to enable the health plan and the employer demonstrate, if necessary that HIPAA’s requirements for sharing protected health information with members of the employer’s workforce for plan administration, underwriting or certain other purposes have been satisfied.

Other Health Plan Updates Also Required

The HIPAA Privacy Rule changes effective today are only part of the ever-growing list of federal mandates that group health plan sponsors, fiduciaries, insurers, administrators and service providers need to be concerned about. In addition to the new HIPAA Privacy Rule requirements taking effect today, health plans, their sponsors, administrators, fiduciaries, insurers, business associates and other service providers face a host of other new federal health plan and privacy mandates that have taken effect over the past year, and will become subject to additional mandates in upcoming months. Consequently, while focusing on HIPAA compliance, health plans, their employer or other sponsors, insurers, fiduciaries, administrators and service providers also should not overlook the need to review and update their health plans in response to a host of other changes in federal health plan mandates.

In addition to otherwise applicable civil damage awards and civil penalty exposures that can result from violations of these requirements, new Internal Revenue Service regulations that took effect January 1, 2010 also require that employers, health plans or others self-report violations of certain of these requirements and self assess and pay resulting excise taxes arising under the Internal Revenue Code. See, e.g., COBRA, HIPAA, GINA, Mental Health Parity or Other Group Health Plan Rule Violations Trigger New Excise Tax Self-Assessment & Reporting Obligations.

The highly volatile health plan regulatory environment makes it likely that many health plans are not appropriately updated to comply with these and other federal requirements. In recent months, health plans, their employer or other sponsors, administrators and others also have become obligated to comply with a host of other expanded federal health plan rules and requirements. See e.g., New Mental Health Parity Regulations Require Health Plan Review & Updates; New Labor Department Rule Allows Employers 7 Days To Deliver Employee Contributions To Employee Benefit Plans; Newly Extended COBRA Subsidy Rules Require Employers, Administrators Send Required Notices & Update Health Plan Documents & Procedures Quickly; Employer & Other Health Plans & Other HIPAA-Covered Entities & Their Business Associates Must Comply With New HHS Health Information Data Breach Rules By September 23.

These and other developments make it imperative that health plans, their employer or other sponsors, administrators, insurers, fiduciaries and service providers get serious about complying with these and other federal health plan mandates and managing health plan related liabilities and costs. Sponsors, insurers, fiduciaries and administrators should ensure that health plan documents, insurance and other vendor contracts, policies, procedures and communications are timely updated to comply with these and other emerging mandates. When implementing these updates, parties concerned about costs or liabilities also should exercise care to ensure that plan documents, communications, contracts, administrative forms and procedures are optimally designed and drafted not only to be technically compliant, but also to support the enforceability of plan design and cost expectations, minimize administrative and other avoidable costs, and minimize liability exposures. In furtherance of these efforts, employer and other plan sponsors also should consider tightening their practices and requirements for credentialing, selection, oversight and contracting with administrators and vendors, and take other prudent steps to manage health plan related risks.

Curran Tomko Tarski LLP Can Help

If your organization need advice or assistance in reviewing, updating, administering or defending its HIPAA or other privacy policies, practices, business associate or other agreements, notices or other related activities, consider contacting Curran Tomko Tarski LLP Partner Cynthia Marcotte Stamer.

Other Information & Resources

For important information concerning this communication click here.

Comments Off on Health Plan Liability Heats Up As Plans & Businesses Face New Obligations, Costs & Exposures under New HIPAA Privacy Rules Effective 2/17 & Other Expanding Federal Health Plan Mandates | COBRA, Corporate Compliance, Data Security, ERISA, Fiduciary Responsibility, FMLA, GINA, Health Care Reform, Health Plans, HIPAA, Human Resources, Insurance, Internal Controls, Prescription Drugs, Privacy, Wellness Programs | Tagged: Corporate Compliance, Employer, Health Plans, HIPAA, internal control, Mental Heatlh Parity, Privacy, Privacy Standards, Risk Management | Permalink
Posted by Cynthia Marcotte Stamer

Health Plans & Business Associates Face 2/17 Deadline To Update Policies, Contracts & Procedures For HIPAA Privacy Rule Changes

February 15, 2010

Connecticut AG Lawsuit Highlights Expanding Civil Damage Exposure Risks Of Noncompliance

By Cynthia Marcotte Stamer

By Wednesday, February 17, 2010, employer and other health plans and health insurers (“covered entities”) and service providers performing functions on behalf of these entities (“business associates”) must begin complying with tighter federal requirements for the use, access, protection and disclosure of protected health information under Privacy & Security Standards of the Health Insurance Portability & Accountability Act (HIPAA), as amended by the Health Information Technology for Economic and Clinical Health Act (HITECH Act). The changes scheduled to take effect February 17, 2010 are likely to require that health plans and their business associates update their written policies, operational procedures, privacy notices and business associate agreements in several respects.

2/17/10 Deadline To Comply With HITECH Act HIPAA Amendments

On February 17, 2010, health plans and other covered entities and their business associates will become subject to the latest to take effect in a series of amendments to the HIPAA enacted under the HITEC Act. The new rules are part of a broader series of changes to HIPAA made by the HITECH Act that collectively both significantly expand the obligations of covered entities and their business associates to regarding the use, protection and disclosure of protected health information and the liability exposures that can result when covered entities or business associates violate these requirements.

The changes scheduled to take effect February 17, 2010 are likely to require that health plans and their business associates update their written policies, operational procedures, privacy notices and business associate agreements in several respects. For instance, effective February 17, 2010, the HITECH Act generally requires that covered entities and their business associates revise their written privacy policies, privacy notices and operating procedures:

To meet expanded requirements to honor individual’s requests for special restrictions on uses and disclosures of protected health information to health plans for payment purposes
To restrict protected health information disclosures to the minimum necessary required to accomplish otherwise allowable purpose;
To comply with new rules that require that the covered entity and its business associates treat any use, access or disclosure of any protected health information made for purposes of making communications about products or services as made for marketing, rather than operational, purposes which are prohibited by HIPAA except where HIPAA’s requirements are met;
To comply with new restrictions on certain fundraising communications made for operational purposes including expanded obligations to allow recipients to opt out of further fundraising communications;
To prohibit covered entities or business associates from selling protected health information without meeting the amended requirements of HIPAA that a valid HIPAA authorization from the subject of the information and specific reassurances from the purchaser concerning its subsequent use of the protected health information except as otherwise permitted by HIPAA;
To take into account these tightened restrictions on the use, access or disclosure of protected health information for purposes of complying with new HITECH Act breach notification requirements that took effect in September, 2009, which apply when a covered entity or its business associate knows or should know a breach of “unsecured protected health information” has occurred and for purposes of making the necessary changes in written policies and business associate agreements, training and operational procedures necessary to comply with these rules;
To directly require business associates comply with HIPAA’s requirements in the same manner as other covered entities and make it necessary or advisable that that service provider agreements between health plans and business associates be updated to reflect these and other changes to HIPAA; and
To implement the necessary written policy changes, notification updates, business associate agreement amendments, training, management oversight and other procedural changes necessary to demonstrate fulfillment with these requirements.

Noncompliance with these and other HIPAA requirements subjects covered entities and business associates to civil penalties, criminal prosecution, civil damage awards under lawsuits brought by state attorneys general, and other legal remedies. In addition, timely update written policies, procedures, business associate agreements, training and documentation is imperative in order for covered entities and their business associates to fulfill their breach notification obligations under new rules enacted as part of the HITECH Act.

Under the HITECH Act, health plans and other covered entities and their business associates have been obligated since September 23, 2009 to notify individuals who are the subject of protected health information, the Department of Health & Human Services and in some cases the media if and when a breach of “unsecured protected health information occurs. Failing to timely update written policies, procedures and training increases the likelihood that health plans, other covered entities or business associates will be obligated to provide breach notifications under these new rules, in addition to their otherwise applicable exposures under HIPAA.

HIPAA Enforcement & Liability Exposures Real and Rising

Health plans and other covered entities, their business associates and others involved in health plan design and operations generally should resist the temptation to underestimate their potential HIPAA exposure based on the limited enforcement of HIPAA by the Office of Civil Rights between 2003 and 2009 for a variety of reasons.

First, the changes taking effect on February 17, 2010 follow the implementation changes to HIPAA’s civil and criminal sanctions that took effect on February 17, 2009, when President Obama signed the HITECH Act into law and the new breach notification requirements added by the HITECH Act that took effect on September 23, 2009. The HITECH Act amendments to HIPAA’s remedies significantly increase the risk that health plans and other covered entities and their business associates will face civil lawsuits, civil or criminal penalties or other consequences for violating HIPAA.

The expanded risks stem in part from the HITECH Act’s amendments to HIPAA’s remedy provisions. Among other things, the HITECH Act amended HIPAA to:

Allow a State Attorney General to sue health plans or other covered entities, business associates or both that harm state citizens by committing HIPAA violations after February 16, 2009;
Expand the mandate by the Office of Civil Rights to investigate violations and audit compliance with HIPAA;
Require Office of Civil Rights to impose civil sanctions against health plans and other covered entities and their business associates involved in violations of HIPAA in accordance with tightened standards added to HIPAA by the HITECH Act;
Revise the criminal sanctions that the Department of Justice can seek against health plans and other covered entities, their business associates and others for violations of HIPAA;
Amend HIPAA to make clear that HIPAA’s criminal sanctions also can imposed on business associates, workforce members and other persons that improperly use, access and disclose protected health information in violation of HIPAA.

A HIPAA civil lawsuit filed on January 13, 2010 demonstrates the willingness of at least some states to exercise the new authority created by the HITECH Act on February 17, 2009 to sue covered entities and business associates that violate HIPAA for civil damages.

The HITECH Act empowers a state attorney general to sue covered entities or business associates engaging in HIPAA violations that harms citizens of the state for statutory damages equal to the sum of the number of violations multiplied by 100 up to a maximum of $25,000 per calendar year plus attorneys fees and costs

Even before the HITECH Act amendments, however, the Office of Civil Rights and Department of Justice already were stepping up HIPAA investigation and enforcement. The Department of Justice has obtained a variety of criminal convictions against violators of HIPAA. See, e.g., 2 New HIPAA Criminal Actions Highlight Risks From Wrongful Use/Access of Health Information. Meanwhile, the Office of Civil Rights in February, 2009 announced that CVS Pharmacies, Inc. would pay $2.25 million to resolve HIPAA charges. This announcement followed the Office of Civil Rights announcement in July, 2008 that Providence Health Care would pay $100,000 to resolve HIPAA violation charges. While not resulting in the significant payments involved in CVS or Providence, the Office of Civil Rights also taken HIPAA enforcement actions against a broad range of other covered entities to redress HIPAA violations or other compliance concerns. To review examples of these other actions, see here.

Along side these governmental actions, state courts also increasingly are willing to allow individual plaintiffs to rely on violations of HIPAA as the basis for bringing state privacy, retaliation or other actions. While prior to the recent HITECH Act amendments, federal courts had ruled that private plaintiffs could not sue under HIPAA for damages they incurred from a covered entity’s violation of HIPAA, state courts have allowed private plaintiff’s to use the obligations imposed by HIPAA as the basis of a covered entity’s duty for purposes of certain state law lawsuits. In Sorensen v. Barbuto, 143 P.3d 295 (Utah Ct. App. 2006), for example, a Utah appeals court ruled a private plaintiff could use HIPAA standards to establish that a physician owed a duty of confidentiality to his patients for purposes of maintaining a state law damages claim. Similarly, the Court in Acosta v. Byrum, 638 S.E. 2d 246 (N.C. Ct. App. 2006) ruled that a plaintiff could use HIPAA to establish the “standard of care” in a negligence lawsuit. Meanwhile, private plaintiffs employed by covered entities also are increasingly pointing to HIPAA as the basis for their retaliation claims. See, e.g., Retaliation For Filing HIPAA Complaint Recognized As Basis For State Retaliatory Discharge Claim. Coupled with the HITECH Act changes, these and other enforcement actions signal growing potential hazards for covered entities and their business associates that fail to properly manage their HIPAA compliance obligations and risks.

Health Plans & Business Associates Should Take Timely Action To Comply & Manage Risks

As a consequence of these collective HITECH Act changes and growing HIPAA-related exposures, both health plans and business associates generally will find it necessary or advisable among other things to:

Conduct well-documented due diligence on each other’s practices and procedures to improve their ability to demonstrate both their commitment to compliance and their realistic efforts to ensure that these commitments are operationalized in performance;
Renegotiate their service provider agreements to detail the specific compliance obligations of each party relating to for auditing compliance, investigating potential breaches; providing required breach notifications; specify leadership and required cooperation in the event of a breach, charge, or other concern; indemnification and other liability allocations; and other related matters; and
Pursue appropriate liability and other protection as appropriate.

As part of these compliance and risk management efforts, most covered entities and their business associates will find it advisable to devote significant attention to the business associate relationship and its associated business associate agreements.

Proper management of the expanded compliance obligations and liability exposures created by the HITECH Act generally will necessitate that health plans and other covered entities and their business associates focus significant attention on the reworking of their operating and contractual relationships.

Further updating and tailoring of these and other provisions of services agreements has become even more important over the past year in light of the new breach notification mandates that took effect under the HITECH Act in September, 2009, changes to HIPAA’s civil and criminal sanctions that took effect on February 17, 2009, and the impending extension by the HITECH Act to business associates of direct liability for compliance with HIPAA scheduled to occur on February 17, 2010.

Given these changes and the associated obligations and risks, both health plans and other covered entities and their business associates generally should act quickly to manage their own compliance and to minimize exposures that may result from the other’s compliance deficiencies. As part of these efforts, both covered entities and their business associates generally should review and tighten business associate and other service agreement provisions to provide for more specific and comprehensive HIPAA-related contractual assurances, as well as improved cooperation, coordination, management and oversight.

Curran Tomko Tarski LLP Can Help

If your organization need advice or assistance in reviewing, updating, administering or defending its HIPAA or other privacy policies, practices, business associate or other agreements, notices or other related activities, consider contacting Curran Tomko Tarski LLP Partner Cynthia Marcotte Stamer.

A widely published author and speaker on HIPAA and other related matter, Ms. Stamer has extensive experience advising health plans, their employer and other sponsors, health insurers, TPAs and other business associates and others about HIPAA and other health plan and privacy matters. Currently serving as both Chair of the American Bar Association (ABA) RPTE Employee Benefits & Other Compensation Group and as an ABA Joint Committee on Employee Benefits Council representative and Former Chair of the ABA Health Law Section Managed Care & Insurance Interest Group, Ms. Stamer has more than 23 years experience assisting employers, insurers, plan administrators and fiduciaries and others to design, implement, draft and administer health and other employee benefit plans and to defend audits, litigation or other disputes by private parties, the IRS, Department of Labor, Office of Civil Rights, Medicare, state insurance regulators and other federal and state regulators. As part of this work, she regularly assists clients to review and update policies, practices, contracts, notices and procedures to comply with HIPAA and other requirements. A nationally recognized author and lecturer, Ms. Stamer also speaks and writes extensively on these and other related matters. For additional information about Ms. Stamer and her experience or to access other publications by Ms. Stamer see here or contact Ms. Stamer directly. For additional information about the experience and services of Ms. Stamer and other members of the Curran Tomko Tarksi LLP team, see here.

Other Information & Resources

For important information concerning this communication click here. If you do not wish to receive these updates in the future, send an e-mail with the word “Remove” in the Subject here.

Comments Off on Health Plans & Business Associates Face 2/17 Deadline To Update Policies, Contracts & Procedures For HIPAA Privacy Rule Changes | ARRA, Employers, ERISA, Fiduciary Responsibility, GINA, Health Plans, HIPAA, Human Resources, Insurance, Internal Controls, Internal Investigations, Privacy, Protected Health Information, Risk Management, Stimulus Bill | Tagged: Breach Notice, Corporate Compliance, Data Breach, Employee Benefits, Employers, ERISA, GINA, Health Insurance, Health Plans, HIPAA, Human Resources, Insurance, Insurer, Internal Controls, Internal Investigations, Managed Care, Medical Coverage, PHI, Privacy, Privacy Rule, Risk Management, Security Rule | Permalink
Posted by Cynthia Marcotte Stamer

Health Plans & Employers Can Expect Pressure To Pay For Childhood Obesity Counseling From New American Academy of Pediatrics Report

January 25, 2010

By Cynthia Marcotte Stamer

New American Academy of Pediatrics recommendations calling for early intervention and intensive behavioral therapy to treat childhood obesity promise to increase demands for employer sponsored and other health plans to reimburse the costs of these treatments.

With health care providers and government officials increasingly emphasizing the need for prevention and intervention, employers and health insurers face greater pressure to offer health benefit coverage for weight management and other obesity prevention and treatment. Aside from determining what treatments to coverage generally, recent changes in the Americans With Disabilities Act statute and its enforcement and interpretation by the Equal Employment Opportunity Commission, the recently effective employment and health plan nondiscrimination rules of the Genetic Information and Nondiscrimination Act, health information and other privacy rules and other legal changes make the appropriate design and administration of obesity and other wellness, disease management and other programs targeting obesity or other chronic conditions legally and operationally challenging. Employers and insurers concerned with these issues should exercise care to properly understand and appropriately manage the legal and operational complexities, risks, costs and benefits when designing health and other programs to manage health care, disability and other costs of obesity and other chronic diseases.

Read the report and about discrimination and other issues that employers and insurers may need to manage under evolving federal rules when deciding how to design and manage obesity and other wellness and disease management programs here.

If you have questions about wellness, disease management or other health and wellness benefit, disability prevention and management, or other employee benefit, employment, compensation, workplace health and safety, corporate ethics and compliance practices, concerns or claims, please contact the author of this article, Curran Tomko Tarski LLP Labor & Employment Practice Group Chair Cynthia Marcotte Stamer.

Chair of the American Bar Association (ABA) RPTE Employee Benefits & Other Compensation Group, an ABA Joint Committee on Employee Benefits Council Member, Past Chair of the ABA Managed Care & Insurance Group and RPTE Welfare Benefits Committee and Board Certified in Labor & Employment Law by the Texas Board of Legal Specialization, Ms. Stamer is experienced advising and assisting government leaders, employers, health and other employee benefit plans and their fiduciaries, insurers, financial advisory services, and administrators, health care providers, and others about obesity and other disease management and wellness programs, as well as other related employee benefit and employment matters. A widely published author on these and other health and disability benefit and management concerns, Ms. Stamer has advised and represented employers, health plans and others on these and other matters for more than 20 years. Author of the Personal Health Care Toolkit, Ms. Stamer also has lead the development of wellness and disease management initiatives for the National Kidney Foundation of North Texas and other organizations. Ms. Stamer also speaks and writes extensively on these and other related matters. For additional information about Ms. Stamer and her experience, see here or to access other publications by Ms. Stamer see here or contact Ms. Stamer directly. For additional information about the experience and services of Ms. Stamer and other members of the Curran Tomko Tarksi LLP team, see here.

Other Information & Resources

We hope that this information is useful to you. If you or someone else you know would like to receive future updates about developments on these and other concerns, please be sure that we have your current contact information – including your preferred e-mail – by creating or updating your profile here or e-mailing this information here or registering to participate in the distribution of our Solutions Law Press HR & Benefits Update distributions here. Some other recent updates that may be of interested include the following, which you can access by clicking on the article title:

For important information concerning this communication click here. If you do not wish to receive these updates in the future, send an e-mail with the word “Remove” in the Subject here.

Comments Off on Health Plans & Employers Can Expect Pressure To Pay For Childhood Obesity Counseling From New American Academy of Pediatrics Report | Corporate Compliance, EEOC, Employee Benefits, ERISA, Fiduciary Responsibility, GINA, Health Plans, Human Resources, Internal Investigations, Leave, Mental Health, Rehabilitation Act, Wellness, Wellness Programs | Tagged: ADA, Disability, Disease Management, EEOC, GINA, Health Care, Health Insurance, Health Plans, HIPAA, Obesity, Wellness | Permalink
Posted by Cynthia Marcotte Stamer

Stamer Speaks To CPAs About “Privacy & Information Security: Managing Your Accounting Practice’s Liabilities & Counseling Your Clients” January 12, 2010

December 28, 2009

Accountants and their clients face increasing regulatory and business pressures to protect the sensitive business and personal information collected and maintained in the course of their operation to minimize their exposure to personal identity theft and other cybercrime scams by employees, business partners and others. Curran Tomko Tarski LLP Partner Cynthia Marcotte Stamer will speak about “Privacy & Information Security: Managing Your Accounting Practice’s Liabilities & Counseling Your Clients” to members of the Dallas CPA Society on January 12, 2010 beginning at 2:00 p.m.

Part of the Dallas CPA Society Member Appreciation CPE Series Meeting, Ms. Stamer’s presentation will be part of four hours of free CPE training to be provided at a program open to members only at the Hilton Lincoln Centre Hotel located at 5410 LBJ Freeway, Dallas TX 75240 from 1 p.m. to 4:50 p.m. Central Time. (Parking at the facility costs $5.00). To register or for additional information, see here.

If you need help responding to these developments or other legislative, regulatory or enforcement concerns, Curran Tomko Tarski LLP can help. Curran Tomko and Tarski LLP and its attorneys have significant experience assisting businesses and business leaders to manage and defend privacy, data security, tax employee benefit, employment, health care, environmental, safety, securities and other compliance and risk management concerns.

Curran Tomko Tarksi LLP Partner Cynthia Marcotte Stamer has more than 22 years experience helping businesses to use the law, process and technology to manage people and processes, and to manage technology, privacy and data security, employment and other legal and operational risks affecting their businesses. Author of “Privacy & Securities Standards-A Brief Nutshell,” “Privacy Invasions of Medical Care-An Emerging Perspective,” and “E-Health Business and Transactional Law Other Liability-Tort and Regulatory;” published by The Bureau of National Affairs, Inc., and many other publications, Ms. Stamer has extensive experience advising a accounting firms, law firms, banks and financial services organizations, insurers, consultants, health plans, health care providers and others about HIPAA, FACTA, and other privacy, trade secret and other information security and data breach risk management and compliance concerns. Ms Stamer also speaks, publishes and provides public policy input extensively on data security, technology and other internal controls and risk management matters. Chair of the American Bar Association RPTE Employee Benefits & Compensation Committee, an ABA Joint Committee on Employee Benefits Council member, and Chair of the Curran Tomko Tarski Labor, Employment & Employee Benefits Practice, Ms. Stamer also is Board Certified in Labor & Employment law. For additional information about Ms. Stamer and her experience or to access other publications by Ms. Stamer see here or contact Ms. Stamer directly. For additional information about the experience and services of Ms. Stamer and other members of the Curran Tomko Tarksi LLP team, see here.

If you need assistance with these or other compliance concerns, wish to inquire about federal or state regulatory compliance audits, risk management or training, assistance investigating or responding to a known or suspected compliance or risk management concern, or need legal representation on other matters please contact the author of this update, Cynthia Marcotte Stamer, CTT Labor & Employment Practice Chair at cstamer@cttlegal.com, 214.270.2402; or your other preferred Curran Tomko Tarski LLP attorney.

You can review other recent human resources, employee benefits and internal controls publications and resources and additional information about the employment, employee benefits and other experience of Ms. Stamer here /the Curran Tomko Tarski LLP attorneys here. If you or someone else you know would like to receive future updates about developments on these and other concerns, please be sure that we have your current contact information – including your preferred e-mail – by creating or updating your profile here or e-mailing this information to Cstamer@CTTLegal.com or registering to participate in the distribution of these and other updates on our Solutions Law Press HR & Benefits Update distributions here. For important information concerning this communication click here. If you do not wish to receive these updates in the future, send an e-mail with the word “Remove” in the Subject to here.

Comments Off on Stamer Speaks To CPAs About “Privacy & Information Security: Managing Your Accounting Practice’s Liabilities & Counseling Your Clients” January 12, 2010 | Corporate Compliance, Data Security, EEOC, Employee Benefits, Employers, ERISA, Fiduciary Responsibility, GINA, Health Plans, Human Resources, Internal Controls, Malpractice, Privacy, Professional Liability, Protected Health Information, Risk Management | Tagged: Acountant's Liability, Corporate Compliance, CPA, CPE, Employee Benefits, Employer, GINA, Health Insurance, Health Plans, Human Resources, Internal Controls, Medical Coverage, Privacy, Risk Management, Tax | Permalink
Posted by Cynthia Marcotte Stamer

Labor Department To Expand Employee Benefits, Wage & Hour, OSHA & Other Reporting & Disclosure Requirements & To Implement Other New Employee Benefit Regulations

December 8, 2009

By Cynthia Marcotte Stamer

The U.S. Department of Labor (Labor Department) plans to implement a host of new employee benefit and employment regulations seeking to strengthen employee benefit, wage and hour, safety and other protections with greater transparency and disclosure, the Labor Department announced yesterday.

Employee Benefits, Wage & Hour, OSHA & Other Rules Seek To Protect Workers With Transparency

Employee Benefits Security Administration (EBSA) plans to implement a host of new rules designed to strengthen retirement security by expanding the private employee benefit plan disclosure requirements and enhancing the availability of information to pension plan participants and beneficiaries and employers, according to the Department of Labor (DOL) 2009 Regulatory Agenda (the “Regulatory Agenda”) announced yesterday.

According to the Regulatory Agenda, EBSA plans to promote these goals through the implementation of a host of new rules including:

Fiduciary Requirements for Disclosure in Participant-Directed Individual Account Plans, which would increase transparency between individual account pension plans and their participants and beneficiaries by ensuring that participants and beneficiaries are provided the information they need, including information about fees and expenses, to make informed investment decisions.
Amendment of Standards Applicable to General Statutory Exemption for Services, which would require service providers to disclose to plan fiduciaries services, fees, compensation and conflicts of interest information.
Annual Funding Notice for Defined Benefit Plans, which would require defined benefit plan administrators to provide all participants, beneficiaries and other parties with detailed information regarding their plan’s funding status.
Periodic Pension Benefits Statements, which would require pension plans to provide participants and certain beneficiaries with periodic benefit statements.
Multiemployer Plan Information Made Available on Request, which would require pension plan administrators to provide copies of financial and actuarial reports to participants and beneficiaries, unions and contributing employers on request.

The 2009 Regulatory Agenda highlights the most noteworthy and significant regulatory projects that the Labor Department has established for the EBSA, the Employment Standards Administration (ESA), Mine Safety and Health Administration (MSHA), Occupational Safety and Health Administration (OSHA), and Employment and Training Administration (ETA) for the upcoming year. In addition to the transparency rules planned for EBSA, the 2009 Regulatory Agenda also indicates that employers can expect new Labor Department regulations targeting transparency in other areas. These include:

The MSHA to propose a rule on Notification of Legal Identity, which would require mine operators to provide increased identification information, would allow the agency to better target the most egregious and persistent violators and deter future violations.
The Office of Labor-Management Standards’ to propose regulations on Notification of Employee Rights Under Federal Labor Laws, which would implement Executive Order 13496 and require all Government contracting agencies to include a contract clause requiring contractors to inform workers of their rights under Federal labor laws.
The Wage and Hour Division to update its regulations about Records to be Kept by Employers Under the Fair Labor Standards Act to enhance the transparency and disclosure to workers as to how their wages are computed and to allow for new workplace practices such as telework and flexiplace arrangements.
OSHA to modify its Hazard Communication Standard to require standardized labeling requirements and order of information for safety data sheets and to update its Occupational Injury and Illness Recording and Reporting Requirements rule, which would propose the collection of additional data to help employers and workers track injuries at individual workplaces, improve the Nation’s occupational injury and illness information data, and assist the agency in its enforcement of the safety and health workplace requirements.

Other Employee Benefit Regulations Planned

Beyond its planned EBSA transparency initiative, the 2009 Regulatory Agenda reflects that other EBSA regulatory priorities for the year ahead include:

Issue guidance implementing the group health plan Genetic Information Nondiscrimination Act of 2008 (GINA) amendments to ERISA which generally prohibit group health plans from discriminating in health coverage based on genetic information and from collecting genetic information. This will be a joint rulemaking action with the Departments of Health and Human Services and the Treasury.
Provide guidance regarding the Paul Wellstone and Pete Domenici Mental Health Parity and Addiction Equity Act of 2008 (MHPAEA) amendments to ERISA. MHPAEA creates parity for mental health and substance use disorder benefits under group health plans by mandating that any financial requirements and treatment limitations applicable to mental health and substance abuse disorder benefits to be no more restrictive than predominant requirements or limitations applied to substantially all medical and surgical benefits covered by a plan.
Issue guidance clarifying the circumstances under which health care arrangements established or maintained by state or local governments for the benefit of non-governmental employees do not constitute an employee welfare benefit plan for purposes of ERISA.
Propose amendments to its regulations to clarify the circumstances under which a person will be considered a fiduciary when providing investment advice to employee benefit plans and their participants and beneficiaries of such plans.
Explore steps it can take by regulation, or otherwise, to encourage the offering of lifetime annuities or similar lifetime benefits distribution options for participants and beneficiaries of defined contribution plans.

Employers and employee benefit plan sponsors, fiduciaries, and service providers should take into account these planned regulatory changes for budgeting and program design purposes and keep alert for announcements of proposed or final regulations or other guidance in these and other areas.

If your organization needs assistance with monitoring, assessing, managing or defending these or other labor and employment, compensation or benefit practices, please contact the author of this article, Curran Tomko Tarski LLP Labor & Employment Practice Group Chair Cynthia Marcotte Stamer or another Curran Tomko Tarski LLP attorney of your choice. Board Certified in Labor & Employment Law by the Texas Board of Legal Specialization and Chair of the American Bar Association RPTE Employee Benefits & Other Compensation Group and a nationally recognized author and speaker, Ms. Stamer is experienced with advising and assisting employers with these and other labor and employment, employee benefit, compensation, risk management and internal controls matters. Ms. Stamer is experienced with assisting employers and others about compliance with federal and state equal employment opportunity, compensation, health and other employee benefit, workplace safety, and other labor and employment laws, as well as advising and defending employers and others against tax, employment discrimination and other labor and employment, and other related audits, investigations and litigation, charges, audits, claims and investigations by the IRS, Department of Labor and other federal and state regulators. She has counseled and represented employers on these and other workforce matters for more than 22 years. Ms. Stamer also speaks and writes extensively on these and other related matters. For additional information about Ms. Stamer and her experience or to access other publications by Ms. Stamer see here or contact Ms. Stamer directly. For additional information about the experience and services of Ms. Stamer and other members of the Curran Tomko Tarksi LLP team, see here.

Other Information & Resources

For important information concerning this communication click here. If you do not wish to receive these updates in the future, send an e-mail with the word “Remove” in the Subject here.

Comments Off on Labor Department To Expand Employee Benefits, Wage & Hour, OSHA & Other Reporting & Disclosure Requirements & To Implement Other New Employee Benefit Regulations | Absenteeism, ADA, Affirmative Action, Corporate Compliance, Defined Benefit Plans, EEOC, Employee Benefits, Employers, ERISA, family leave, GINA, Government Contractors, Human Resources, Military Leave, OFCCP, OSHA, Retirement Plans, Risk Management, Safety, Uncategorized, Wellness | Tagged: COBRA, Corporate Compliance, defined benefit plan, Disability Discrimination, Disease Management, Employee Benefits, Employers, Employment, ERISA, GINA, Human Resources, Insurance, Internal Controls, Medical Coverage, Military Leave, Minimum Wage, Occupational Injury, Overtime, Privacy, Retirement Plans, Risk Management, Wellness | Permalink
Posted by Cynthia Marcotte Stamer

DOL Shares 2010 Regulatory Plans Monday, December 7; Get A Sneak Peek on Its Plans

December 5, 2009

Get a peek at the U.S. Department of Labor’s (DOL’s) regulatory plans for 2010 on Monday, December 10, 2009.

On Monday, Dec. 7, the DOL will release its annual regulatory agenda for the upcoming year. The same day, it also will video cast remarks by Secretary Hilda L. Solis outlining the department’s regulatory agenda beginning at 10 a.m. EST. From 2 to 3 p.m. EST Ssecretary Solis alsowill host a live Web chat open to the public to discuss the contents of the agenda. Questions may be submitted in advance of the chat following the video presentation. Register to join the chat on Monday here.

If your organization needs assistance with assessing, managing or defending labor and employment, compensation or benefit practices, please contact the author of this article, Curran Tomko Tarski LLP Labor & Employment Practice Group Chair Cynthia Marcotte Stamer or another Curran Tomko Tarski LLP attorney of your choice. Board Certified in Labor & Employment Law by the Texas Board of Legal Specialization and Chair of the American Bar Association RPTE Employee Benefits & Other Compensation Group and a nationally recognized author and speaker, Ms. Stamer is experienced with advising and assisting employers with these and other labor and employment, employee benefit, compensation, risk management and internal controls matters. Ms. Stamer is experienced with assisting employers and others about compliance with federal and state equal employment opportunity, compensation, health and other employee benefit, workplace safety, and other labor and employment laws, as well as advising and defending employers and others against tax, employment discrimination and other labor and employment, and other related audits, investigations and litigation, charges, audits, claims and investigations by the IRS, Department of Labor and other federal and state regulators. She has counseled and represented employers on these and other workforce matters for more than 22 years. Ms. Stamer also speaks and writes extensively on these and other related matters. For additional information about Ms. Stamer and her experience or to access other publications by Ms. Stamer see here or contact Ms. Stamer directly. For additional information about the experience and services of Ms. Stamer and other members of the Curran Tomko Tarksi LLP team, see here.

Other Information & Resources

IRS Publishes Table For Determining Qualified Plan Covered Compensation for Purposes of Code § 401(l)(5)(E) PBGC Expands Pension Benefit Protection For Military Service Members As Justice Department Files 22nd USERRA Military Leave Lawsuit Against An Employer Since January Rising Defined Benefit Plan Underfunding & Changing Rules Create New Obligations & Risks For Business Justice Department Suit against MasTec Advanced Technologies For Violating Army Reserve Member’s Rights Highlights Expanding Employer Military Leave Risks & Liabilities Preventive HR Strategies to Minimize Post Holiday Celebration Legal Hangovers Employer H1N1 Virus Risk Management Requires Employer Care To Manage Virus Risks Without Violating Employment Discrimination or Other Laws

New GINA Genetic Information Based Employment Discrimination & Confidentiality Mandates Take EffectBusinesses Cautioned To Strengthen Investigation & Employment Practices To Minimize Potential Exposure To Retaliation Claims In Light Of Recent Supreme Court Retaliation Decision OFCCP To Apply Special Procedures, Heightened Scrutiny To Equal Employment Practices of Government Contractors, Subcontractors On ARRA Funded Projects US and UK Agree to Share Information & Cooperate On Pension Security As US Defined Benefit Plan Sponsors Face Tough New Defined Benefit Plan Funding Requirements Congress Considering Extending & Expanding Group Health Plan COBRA Subsidy Mandates On Heels of Enactment of Expanded Military Leave-Related Family Leave Mandates EEOC Prepares To Broaden “Disability” Definition Under ADA Regulations Tighten Employment, Ethics & Internal Controls Policies & Practices To Minimize DOJ & Other Antitrust Exposures OSHA Final Rule Updates OSHA Personal Protective Equipment Standards “Disability” Definition Not Retroactive, Employer Action Needed To Manage Post 1/1/2009 Risks Employer & Other Health Plans & Other HIPAA-Covered Entities & Their Business Associates Must Comply With New HHS Health Information Data Breach Rules By September 23

For important information concerning this communication click here. If you do not wish to receive these updates in the future, send an e-mail with the word “Remove” in the Subject here.

Comments Off on DOL Shares 2010 Regulatory Plans Monday, December 7; Get A Sneak Peek on Its Plans | Absenteeism, Affirmative Action, COBRA, Corporate Compliance, Disease Management, EEOC, Employee Benefits, Employers, Employment Agreement, ERISA, family leave, FMLA, GINA, Government Contractors, Health Plans, HIPAA, Human Resources, Internal Controls, Internal Investigations, Leave, medical leave, Military Leave, Nonresident aliens, OFCCP, OSHA, Public Policy, Reporting & Disclosure, Retaliation, Safety, USERRA, Wage & Hour, Wellness, Whistleblower | Tagged: ADA, COBRA, Compensation, Corporate Compliance, defined benefit plan, Disease Management, EEOC, Employee Benefits, Employer, Employers, Employmemnt Liability, Employment, Employment Agreements, employment discrimination, ERISA, GINA, Health Care Reform, Health Insurance, Health Plans, Human Resources, Internal Controls, Internal Investigations, Labor, Light Duty, Managed Care, Medical Coverage, Military Leave, Minimum Wage, Occupational Injury, Overtime, Risk Management, Wellness | Permalink
Posted by Cynthia Marcotte Stamer

Employer H1N1 Virus Risk Management Requires Employer Care To Manage Virus Risks Without Violating Employment Discrimination or Other Laws

November 30, 2009

As the Centers for Disease Control (CDC) continues cautioning Americans to expect a resurgence of the H1N1 virus, employers should continue to take prudent steps to defend their organization and their workers against a widespread H1N1 outbreak and the attendant lost time, health and disability costs, OSHA and other liability exposures and other personal and financial consequences likely to result from an outbreak.

Employers wishing to deter the spread of the disease in their workplace should educate workers about these recommendations and consider taking steps to encourage workers to comply with these recommendations. When planning or taking steps to protect their workplaces from the H1N1 virus pandemic or other outbreaks of communicable diseases, however, employers must use care to avoid violating the Americans With Disabilities Act or other employment laws.

Preventing, Recognizing & Mitigating Risks of H1N1

Although the number of reported cases of H1N1 virus cases has declined in many states in recent weeks, CDC officials are warning American’s that the crisis is not over yet. CDC officials last week warned Americans to expect H1N1 infection to rise as the holiday approaches and the winter progresses. With flu activity already higher than what is seen during the peak of many regular flu seasons and the H1NA virus accounting for almost all of the flu viruses identified so for this season, Accordingly, the CDC continues to encourage Americans to be alert for symptoms of H1N1 or other flu and to take other precautions including to get vaccinated.

Employers should continue to encourage workers and their families to take precautions to avoid catching the virus, to be on the watch for H1N1 virus or other flu infection and to respond appropriately if they, members of their families or others in the workplace exhibit these symptoms. To help promote health habits within their workforce, many businesses may want to download and circulate to employees and families the free resources published by the CDC here. Businesses and other concerned parties also can track governmental reports about the swine flu and other pandemic concerns at here.

For those not already suffering from the virus and particularly for those at higher risk, the CDC continues to recommend vaccination. People recommended by the CDC to receive the vaccine as soon possible include: health care workers; pregnant women; people ages 25 through 64 with chronic medical conditions, such as asthma, heart disease, or diabetes; anyone from 6 months through 24 years of age; and people living with or caring for infants under 6 months old. As the vaccine becomes available, many employers are encouraging workers and their families to get vaccinated by offering vaccination clinics at or near their worksites, arranging for health plan coverage for vaccinations with reduced or no co-payments or deductibles, and/or sharing information about government sponsored or other vaccination clinics.

While the CDC says getting employees and their families to get a flu shot remains the best defense against a flu outbreak, it also says getting employees and family members to consistently practice good health habits like covering a cough and washing hands also is another important key to prevent the spread of germs and prevent the spread of respiratory illnesses like the flu. Employers should encourage employees and their families to take the following steps:

Avoid close contact with people who are sick. When you are sick, keep your distance from others to protect them from getting sick too;
Stay home when you are sick to help prevent others from catching your illness;
Cover your mouth and nose;
Cover your mouth and nose with a tissue when coughing or sneezing. It may prevent those around you from getting sick;
Clean your hands to protect yourself from germs;
Avoid touching your eyes, nose or mouth;
Germs are often spread when a person touches something that is contaminated with germs and then touches his or her eyes, nose, or mouth; and
Practice other good health habits. Get plenty of sleep, be physically active, manage your stress, drink plenty of fluids, and eat nutritious food.

Employers also should encourage workers and their families to be alert to possible signs of H1N1 or other flu symptoms and to respond appropriately to possible infection. According to the CDC, all types of flu including H1NA typically include many common symptoms, including:

Fever
Coughing and/or sore throat
Runny or stuffy nose
Headaches and/or body aches
Chills
Fatigue

Patients suffering from H1N1 flu usually report these same symptoms, but the symptoms often are more severe. In addition to the above symptoms, a number of H1N1 flu cases reported vomiting and diarrhea.

CDC recommends individuals diagnosed with H1N1 flu should:

Stay home and avoid contact with others for at least 24 hours after a fever (100°F or 37.8°C) is gone without the use of fever reducing medicine except to get medical care or for other things that must be done that no one else can do;
Avoid close contact with others, especially those who might easily get the flu, such as people age 65 years and older, people of any age with chronic medical conditions (such as asthma, diabetes, or heart disease), pregnant women, young children, and infants;
Clean hands with soap and water or an alcohol-based hand rub often, especially after using tissues or coughing/sneezing into your hands;
Cover coughs and sneezes;
Wear a facemask when sharing common spaces with other household members to help prevent spreading the virus to others. This is especially important if other household members are at high risk for complications from influenza;
Drink clear fluids such as water, broth, sports drinks, or electrolyte beverages made for infants to prevent becoming dehydrated;
Get plenty of rest;
Follow doctor’s orders; and
Watch for signs for a need for immediate medical attention. Suffers should get medical attention right away if the sufferer has difficulty breathing or chest pain, purple or blue discoloration of the lips, is vomiting and unable to keep liquids down, or shows signs of dehydration, such as feeling dizzy when standing or being unable to urinate.

In seeking to contain the spread of the virus within their workplace, employers also should be sensitive to workplace policies or practices that may pressure employees with a contagious disease to report to work despite an illness and consider whether the employer should adjust these policies temporarily or permanently in light of the ongoing pandemic. For instance, financial pressures and the design and enforcement of policies regarding working from home and/or qualifying for paid or unpaid time off significantly impact the decisions employees make about whether to come to work when first experiencing symptoms of illness. Employers of workers who travel extensively – may wish to delay or restrict travel for some period.

Employers Must Employment Discrimination & Other Legal Compliance Risks

Many employers may want to evaluate and appropriately revise existing policies with an eye to better defending their workforce against a major outbreak. Whether or not the disease afflicts any of its workers, businesses can anticipate the swine flu outbreak will impact their operations – either as a result of occurrences affecting their own or other businesses or from workflow disruptions resulting from safeguards that the business or other businesses implement to minimize swine flu risks for its workforce or its customers. Many businesses also will want to prepare backup staffing and production strategies to prepare for disruptions likely to result if a significant outbreak occurs.

Employers planning for or dealing with an H1N1 or other epidemic in their workplace should exercise care to avoid violating the nondiscrimination and medical records confidentiality provisions of the Americans with Disabilities Act (ADA) and/or the Genetic Information Nondiscrimination Act (GINA), the Family & Medical Leave Act of 1990 (FMLA), the Fair Labor Standards Act (FLSA) and applicable state wage and hour laws, and other employment and privacy laws.

Improperly designed or administered medical inquiries, testing, vaccination mandates and other policies or practices intended to prevent the spread of disease may expose an employer to disability discrimination liability under the ADA or GINA. For instance, the ADA generally prohibits an employer from making disability-related inquiries and requiring medical examinations of employees, except under limited circumstances permitted by the ADA. Likewise, improperly designed or communicated employer inquiries into family medical status which could be construed as inquiring about family medical history also may raise exposures under genetic information nondiscrimination and privacy mandates of GINA that took effect November 21, 2009.

During employment, the ADA prohibits employee disability-related inquiries or medical examinations unless they are job-related and consistent with business necessity. Generally, a disability-related inquiry or medical examination of an employee is job-related and consistent with business necessity when an employer has a reasonable belief, based on objective evidence, that:

An employee’s ability to perform essential job functions will be impaired by a medical condition; or
An employee will pose a direct threat due to a medical condition.

This reasonable belief “must be based on objective evidence obtained, or reasonably available to the employer, prior to making a disability-related inquiry or requiring a medical examination.”

Additionally, the ADA prohibits employers from making disability-related inquiries and conducting medical examinations of applicants before a conditional offer of employment is made. It permits employers to make disability-related inquiries and conduct medical examinations if all entering employees in the same job category are subject to the same inquiries and examinations. All information about applicants or employees obtained through disability-related inquiries or medical examinations must be kept confidential. Information regarding the medical condition or history of an employee must be collected and maintained on separate forms and in separate medical files and be treated as a confidential medical record. The EEOC Pandemic Preparedness In The Workplace and The Americans With Disabilities Act Guidance makes clear that employer inquiries and other H1N GINA’s inclusion of information about the “manifestation of a disease or disorder in family members” is likely to present a liability trap door for many unsuspecting employers H1N1 and other epidemic planning and response activities should be carefully crafted to avoid violating these proscriptions.

GINA’s inclusion of information about the “manifestation of a disease or disorder in family members” also could present a liability trap door for some employers designing pandemic or other workplace wellness, disease management or other programs. GINA defines “genetic information” broadly as including not only information about genetic tests about an individual or his family member as well as information about the “manifestation of a disease or disorder in family members of such individual, GINA also specifies that any reference to genetic information concerning an individual or family member includes genetic information of a fetus carried by a pregnant woman and an embryo legally held by an individual or family member utilizing an assisted reproductive technology. For more information about the new GINA genetic information employment discrimination rules, see here.

As part of their pandemic planning, employers also generally should review their existing wage and hour and leave of absence practices. Employers should ensure that their existing or planned practices for providing paid or unpaid leave are designed to comply with the FLSA and other wage and hour and federal and state leave of absence laws. Employers also should review and update family and medical leave act and other sick leave policies, group health plan medical coverage continuation rules and notices and other associated policies and plans for compliance with existing regulatory requirements, which have been subject to a range of statutory and regulatory amendments in recent years. If considering allowing or requiring employees to work from home, employers also need to implement appropriate safeguards to monitor and manage employee performance, to protect the employer’s ability to comply with applicable wage and hour, worker’s compensation, OSHA and other safety, privacy and other legal and operational requirements.

Businesses, health care providers, schools, government agencies and others concerned about preparing to cope with pandemic or other infectious disease challenges also may want to review the publication “Planning for the Pandemic” authored by Curran Tomko Tarski LLP partner Cynthia Marcotte Stamer available at here. FLU.gov is a one-stop resource with the latest updates on the H1N1 flu. An additional resource is CDC INFO, 1-800-CDC-INFO (1-800-232-4636), which offers services in English and Spanish, 24 hours a day, 7 days a week. Schools, health care organizations, restaurants and other businesses whose operations involve significant interaction with the public also may need to take special precautions. These and other businesses may want to consult the special resources posted here.

Cynthia Marcotte Stamer and other members of Curran Tomko and Tarski LLP are experienced with advising and assisting employers with these and other labor and employment, employee benefit, compensation, and internal controls matters. If your organization needs assistance with assessing, managing or defending these or other labor and employment, compensation or benefit practices, please contact the author of this article, Curran Tomko Tarski LLP Labor & Employment Practice Group Chair Cynthia Marcotte Stamer. Board Certified in Labor & Employment Law by the Texas Board of Legal Specialization and Chair of the American Bar Association RPTE Employee Benefits & Other Compensation Group and a nationally recognized author and speaker, Ms. Stamer is experienced with assisting employers and others about compliance with federal and state equal employment opportunity, compensation, health and other employee benefit, workplace safety, and other labor and employment laws, as well as advising and defending employers and others against tax, employment discrimination and other labor and employment, and other related audits, investigations and litigation, charges, audits, claims and investigations by the IRS, Department of Labor and other federal and state regulators. Ms. Stamer has advised and represented employers on these and other labor and employment, compensation, health and other employee benefit and other personnel and staffing matters for more than 22 years. Ms. Stamer also speaks and writes extensively on these and other related matters. For additional information about Ms. Stamer and her experience or to access other publications by Ms. Stamer see here or contact Ms. Stamer directly. For additional information about the experience and services of Ms. Stamer and other members of the Curran Tomko Tarksi LLP team, see here.

Other Information & Resources

For important information concerning this communication click here. If you do not wish to receive these updates in the future, send an e-mail with the word “Remove” in the Subject here.

Comments Off on Employer H1N1 Virus Risk Management Requires Employer Care To Manage Virus Risks Without Violating Employment Discrimination or Other Laws | ADA, COBRA, Disease Management, EEOC, Employee Benefits, Employers, family leave, FMLA, GINA, Health Plans, HIPAA, Human Resources, Insurance, Internal Controls, Leave, medical leave, OSHA, Pandemic, Privacy, Protected Health Information, Risk Management, Safety, Swine Flu, Wage & Hour, Wellness | Tagged: ADA, COBRA, Corporate Compliance, Disability Discrimination, Disease Management, Employee Benefits, Employers, Employment, Health Insurance, Health Plans, Human Resources, Internal Controls, Labor, Medical Coverage, Minimum Wage, Pandemic, Privacy, Risk Management, Wellness | Permalink
Posted by Cynthia Marcotte Stamer

New GINA Genetic Information Based Employment Discrimination & Confidentiality Mandates Take Effect

November 24, 2009

Updated Employment Poster, Policies & Procedures Required Immediately

Employers, unions, employment agencies, employment training agencies and their agents face significant new employment discrimination liability risks if they violate new genetic information-based employment non-discrimination or fail to comply with genetic information confidentiality requirements that took effect under Title II of the Genetic Information Nondiscrimination Act (GINA) on Saturday, November 21, 2009. Employers need immediately to update their employment posters, carefully audit their existing records and practices to identify existing information and practices that may create special risks under GINA and take appropriate action to comply with the GINA rules. Employers needing an updated poster can find a copy on the Equal Employment Opportunity Commission website here.

Under the newly effective employment provisions of Title II of GINA, Federal law now prohibits employers of 15 or more employees and certain other entities from using individuals’ “genetic information” when making hiring, firing, job placement, or promotion decisions, requires “genetic information” be kept separately and confidential, and prohibits retaliation.

When assessing their risk under GINA, employers should be careful not to overlook or underestimate the genetic information collected or possessed by their organizations and the risks attendant to this information. Many employers will be surprised by the breadth of the depth of “genetic information.” GINA defines “genetic information” broadly as including not only information about genetic tests about an individual or his family member as well as information about the “manifestation of a disease or disorder in family members of such individual. GINA also specifies that any reference to genetic information concerning an individual or family member includes genetic information of a fetus carried by a pregnant woman and an embryo legally held by an individual or family member utilizing an assisted reproductive technology. Pending issuance of regulatory guidance, GINA’s inclusion of information about the “manifestation of a disease or disorder in family members” is likely to present a liability trap door for many unsuspecting employers.

While the agency responsible for construing and enforcing Title II of GINA, the Equal Employment Opportunity Commission (EEOC), to date has published only limited guidance about it, the absence of this final guidance should not be read by employers as a sign their compliance may be delayed. While not yet issued in final form, proposed regulations interpreting Title II of GINA accessible here published by the EEOC in March, 2009 and a subsequently released factsheet accessible here published by the EEOC in May, 2009 titled “Background Information for EEOC Notice of Proposed Rulemaking On Title II of the Genetic Information Nondiscrimination Act of 2008” provide insights about how the EEOC may be expected to view its provisions. While many employers have delayed taking action to update their policies and procedures in hopes that final guidance would be forthcoming before Title II took effect, time has now run out. Accordingly, employers who have not already done so should act quickly to implement all necessary changes to position themselves to defend against a potential claim that their organization may have violated GINA Title II.

Employment-Related Genetic Information Nondiscrimination Rules In Focus

Applicable to employers, unions, employment agencies, employment training agencies and their agencies based on genetic information by employers, Title II imposes sweeping prohibitions against employment discrimination based on genetic information. Title II generally has three components:

Employment Discrimination Prohibited. Section 202 of GINA makes it illegal for an employer:

To fail or refuse to hire, or to discharge, any employee, or otherwise to discriminate against any employee with respect to the compensation, terms, conditions, or privileges of employment of the employee, because of genetic information with respect to the employee;
To limit, segregate, or classify the employees of the employer in any way that would deprive or tend to deprive any employee of employment opportunities or otherwise adversely affect the status of the employee as an employee, because of genetic information with respect to the employee; or
To request, require, or purchase genetic information with respect to an employee or a family member of the employee except as specifically permitted by GINA and otherwise applicable law.

GINA §§ 203 and 204 extend similar prohibitions to employment agencies, labor unions and training programs.

Confidentiality Mandates. Under GINA § 206, an employer, employment agency, labor organization, or joint labor-management committee that possesses genetic information about an employee or member must protect the confidentiality of that information. Under its provisions, employers and other covered entities must:

Treat the genetic information as a confidential medical record of the employee or member and maintain it on separate forms and in separate medical files in the same manner as required for other medical records required to be maintained as confidential by Americans With Disabilities Act § 102(d)(3)(B); and
Only disclose it in the narrow circumstances specifically allowed by GINA.

Anti-Retaliation. GINA also prohibits retaliation or other discrimination against any individual because such individual has opposed any act or practice prohibited by GINA, for making a charge, testifying or assisting or participating in any manner in an investigation, proceeding, or hearing under GINA.

GINA’s Additional Group Health Plan Nondiscrimination & Privacy Rules Also Require Attention

In addition to taking appropriate steps to comply with the employment rules of Title II of GINA, employers and their group health plan fiduciaries and service providers also should ensure that the group health plan has been appropriately updated to comply with the group health plan nondiscrimination and privacy mandates of Title I of GINA.

Effective for all group health plan years beginning on or after May 21, 2009, GINA’s new restrictions on the collection and use of genetic information by group health plans added under Title I of GINA are accomplished through the expansion of a series of already existing group health plan nondiscrimination and privacy rules. GINA’s group health plan provisions amend and expand the Health Insurance Portability and Accountability Act of 1996 (HIPAA), the Employee Retirement Income Security Act of 1974 (ERISA), Title VII of the Civil Rights Act, the Public Health Service Act, the Internal Revenue Code of 1986, and Title XVIII (Medicare) of the Social Security Act to implement sweeping new federal restrictions on the collection, use, and disclosure of information that falls within its broad definition of “genetic information” by group health plans. For individual health insurers, GINA’s restrictions take effect May 22, 2009. The broad definition of the term “genetic information” in GINA will require group health plan sponsors and insurers to carefully review and update their group health plan documents, communications, policies and practices to comply with forthcoming implementing regulations to avoid liability under new GINA’s rules governing genetic information collection, use, protection and disclosure in a series of areas.

In this respect, wellness and disease management programs are likely to require special scrutiny and attention. GINA’s inclusion of information about the “manifestation of a disease or disorder in family members” raises potential challenges for a broad range of group health plan health assessment and other wellness and disease management programs which provide financial incentives or condition eligibility on the provision of family health histories or other information that could be construed as genetic information. The implications of these GINA prohibitions are further complicated by recent changes in the disability nondiscrimination rules and guidance under the Americans With Disabilities Act.

Title I of GINA generally prohibits group health plans from collecting genetic information for underwriting or eligibility purposes. It also expands already existing federal rules prohibiting group health plans from discriminating among individuals for purposes of determining eligibility or setting premiums based on health status previously enacted as part of HIPAA. These existing rules already prohibit group health plans and health insurance issuers from discriminating based on health related factors including genetic information for purposes of determining eligibility or premiums. GINA expands these existing nondiscrimination requirements to further regulate group health plan’s use and collection of genetic information. Under GINA’s nondiscrimination rules, group health plans and health insurers may not:

Request, require or purchase genetic information for underwriting purposes or in advance of an individual’s enrollment;
Adjust premiums or contribution amounts of the group based on genetic information;
Request or require an individual or family member to undergo a genetic test except in limited situations specifically allowed by GINA;
Impose a preexisting condition exclusion based solely on genetic information, in the absence of a diagnosis of a condition;
Discriminate against individuals in eligibility and continued eligibility for benefits based on genetic information; or
Discriminate against individuals in premium or contribution rates under the plan or coverage based on genetic information, although such a plan or issuer may adjust premium rates for an employer based on the manifestation of a disease or disorder of an individual enrolled in the plan.

GINA also prohibits insurers providing individual health insurance from establishing rules for eligibility, adjusting premiums or contribution amounts for an individual, imposing preexisting condition exclusions based on, requesting or requiring individuals or family members to undergo genetic testing.

Of particular concern to many plan sponsors and fiduciaries are the potential implications of these new rules on existing wellness and disease management features group health plans. Of particular concern is how regulators will treat the collection of family medical history and certain other information as part of health risk assessments used in connection with these programs. Although official guidance is still pending, many are concerned that regulators will construe certain commonly used practices of requiring covered persons to provide family medical histories or other genetic information through health risk assessments (HRAs) to qualify for certain financial incentives as a prohibited underwriting practice under GINA. Even where health risk assessments are not used, however, most group health plan sponsors should anticipate that GINA will require specific amendments to their plan documents, communications and processes.

Taking timely action to comply with these nondiscrimination and collection prohibitions is important. Under amendments to ERISA made by GINA, group health plan noncompliance can create significant liability for both the plan and its sponsor. Participants or beneficiaries will be able to sue noncompliant group health plans for damages and equitable relief. If the participant or beneficiary can show an alleged violation would result in irreparable harm to the individual’s health, the participant or beneficiary may not have to exhaust certain otherwise applicable Department of Labor administrative remedies before bringing suit. In addition to these private remedies, GINA also authorizes the imposition of penalties against employers and other sponsors of group health plans that violate applicable requirements of GINA of up to $500,000. The minimum penalties generally are set at the greater of $100 per day or a minimum penalty amount ranging from $2,500 for de minimus violations corrected before the health plan received notice of noncompliance to $15,000 in cases in which the violations are more than de minimus. GINA also includes language allowing the Secretary of Labor to reduce otherwise applicable penalties for violations that could not have been identified through the exercise of due diligence or when the plan corrects the violation quickly.

GINA Amendments To Health Plan Privacy Rules Under HIPAA

In addition to its nondiscrimination rules, GINA also amends HIPAA to make clear that “genetic information” as defined by HIPAA is protected health information protected by HIPAA’s Privacy & Security Standards of HIPAA. This means that it will require that all genetic information be treated as protected health information subject to the Privacy and Security Standards applicable to group health plans covered by HIPAA. Although the statutory provisions that accomplish these changes are deceptively simple, compliance with these requirements likely will require group health plans and their business associates to amend existing privacy policies, notices and practices to appropriately restrict disclosures for underwriting, operations and certain other uses to withstand scrutiny under the GINA privacy rule amendments.

When contemplating these changes, many plan sponsors and administrators also will want to consider and begin preparing to comply with other refinements to their existing privacy and security practices required in response to HIPAA privacy and security rule amendments enacted as part of the HITECH Act provisions of the Health Information Technology for Economic and Clinical Health Act (“HITECH Act”) provisions of the American Recovery and Reinvestment Act of 2009 (ARRA). As GINA specifies that violations of its privacy rule restrictions trigger the same sanctions as other privacy rule violations, group health plans and their business associates also should give due consideration to these penalty exposures. The HITECH Act amended and increased civil penalties for HIPAA privacy violations in many circumstances effective February 17, 2009.

GINA’s fractured assignment of responsibility and authority to develop, implement and enforce regulatory guidance of its genetic information rules can create confusion for parties involved in compliance efforts. Because the group health plan requirements of Title I of GINA are refinements to the group health plan privacy and nondiscrimination rules previously enacted as part of HIPAA, GINA specifically assigned authority to construe and enforce its group health plan requirements to the agencies responsible for the interpretation and enforcement of those original rules: (1) the Department of Labor Employee Benefit Security Administration (EBSA); (2) the Internal Revenue Services (IRS), and (3) the Department of Health & Human Services.

These three agencies in early October published the interim final regulations construing the group health plan manatees of Title II of GINA, which are available for review here. Group health plans, their employer and other sponsors, fiduciaries and service providers should act quickly to review and update their group health plan documents, procedures and other materials to comply with these new mandates.

Other Information & Resources

For important information concerning this communication click here. If you do not wish to receive these updates in the future, send an e-mail with the word “Remove” in the Subject here.

Comments Off on New GINA Genetic Information Based Employment Discrimination & Confidentiality Mandates Take Effect | ADA, Corporate Compliance, EEOC, Employee Benefits, Employers, ERISA, GINA, Health Plans, HIPAA, Human Resources, Immigration, Privacy | Tagged: ADA, Disease Management, EEOC, Employee Benefits, Employer, Employers, Employment, Employment Agreements, Genetic Inforamtion, GINA, Health Insurance, Human Resources, Insurance, Insurer, Risk Management, Wellness | Permalink
Posted by Cynthia Marcotte Stamer

EEOC Prepares To Broaden “Disability” Definition Under ADA Regulations

September 18, 2009

Proposed regulations modifying existing Equal Employment Opportunity Commission (EEOC) rules concerning the conditions that an individual must meet to qualify as having a “disability” for purposes of claiming protection under the Americans with Disabilities Act (ADA) are expected to be published in the Federal Register the week of September 21, 2009.

On September 16, 2009, the EEOC announced that Commissioners had approved a Notice of Proposed Rulemaking (Proposed Regulation) which would make several significant changes to the its current regulatory definition of the term “disability” for purposes of the ADA. The EEOC announced this week that the Proposed Regulation is expected to be published in the Federal Register the week of September 21, 2009. Interested persons will have 60 days from the publication date of the Proposed Rule to submit comments to the EEOC concerning the Proposed Regulation.

Why The Change?

The proposed changes are intended to respond to amendments enacted under the ADA Amendments Act (ADAAA), which took effect January 1, 2009. Enacted on September 25, 2008, the ADAAA made a number of significant changes to the definition of “disability” in the ADA as well as directed EEOC to amend its existing ADA regulation to reflect the changes made by the ADAAA.

The ADAAA amendments to the ADA definition of “disability” make it easier for certain individuals alleging employment discrimination based on disability to establish disability status under the ADA’s definition of “disability” by overruling various Supreme Court holdings and portions of EEOC’s existing ADA regulations considered by many members of Congress as too narrowly applying the definition of “disability.”

While the ADAAA retains the ADA’s basic definition of “disability” as an impairment that substantially limits one or more major life activities, a record of such an impairment, or being regarded as having such an impairment, provisions of the ADAAA that took effect on January 1, 2009 change the required interpretation of these terms. Under the ADAAA, “major life activities” now include both many activities that the EEOC has recognized (e.g., walking) as well as activities that EEOC has not specifically recognized (e.g., reading, bending, and communicating), as well as major bodily functions (e.g., “functions of the immune system, normal cell growth, digestive, bowel, bladder, neurological, brain, respiratory, circulatory, endocrine, and reproductive functions”).

In addition to these clarifications, the ADAAA also broadens the reach of the ADA’s definition of “disability” in various other respects. For instance, the ADAAA:

Asserts that mitigating measures other than “ordinary eyeglasses or contact lenses” shall not be considered in assessing whether an individual has a disability;
Clarifies that an impairment that is episodic or in remission is a disability if it would substantially limit a major life activity when active;
Changes the definition of “regarded as” so that it no longer requires a showing that the employer perceived the individual to be substantially limited in a major life activity, and instead says that an applicant or employee is “regarded as” disabled if he or she is subject to an action prohibited by the ADA (e.g., failure to hire or termination) based on an impairment that is not transitory and minor; and
Provides that individuals covered only under the “regarded as” prong are not entitled to reasonable accommodation.

As part of the required implementation of its provisions, the ADAAA also mandates that the EEOC revise that portion of its existing regulations defining the term “substantially limits” and “major life activities” to comport to the changes enacted by the ADAAA. In response to this statutory direction, the Proposed Regulation to be published next week proposes changes both to the ADA regulation itself and to the Interpretive Guidance (also known as the Appendix) that was published at the same time as the original ADA regulation. See 29 C.F.R. section 1630. The Appendix provides further explanation from the EEOC on how its ADA regulations should be interpreted.

About The New Guidance and Proposed Regulations

In anticipation of the publication of the Proposed Regulation, the EEOC on September 16, 2009 sought to provided a peek into its new post-ADAAA construction of the ADA definition of disability by releasing its “Questions and Answers on the Notice of Proposed Rulemaking for the ADA Amendments Act of 2008” Questions and answers on the Notice of Proposed Rulingmaking for the ADA Amendments Act of 2008 (the “Q&As”).

The Q&As and other EEOC statements released this week indicate that the Proposed Regulation will emphasize that the definition of disability — an impairment that poses a substantial limitation in a major life activity — must be construed broadly. It will provide that that major life activities include “major bodily functions;” that mitigating measures, such as medications and devices that people use to reduce or eliminate the effects of an impairment, are not to be considered when determining whether someone has a disability; and that impairments that are episodic or in remission, such as epilepsy, cancer, and many kinds of psychiatric impairments, are disabilities if they would “substantially limit” major life activities when active. The regulation also will provides a streamlined means through which persons claiming disability may demonstrate a substantial limitation in the major life activity of working, and implements the ADAAA’s new standard for determining whether someone is “regarded as” having a disability.

Required Response

Employers face increasing exposure to disability claims as a result of the ADAAA amendments, new genetic information nondiscrimination rules enacted under the Genetic Information Nondiscrimination Act (GINA), and a heightened emphasis on disabilities discrimination law enforcement by the Obama Administration. In light of this rising exposure, employers and others covered by the ADA should evaluate their existing practices in light of the Q&As and make adjustments, submit comments regarding the Proposed Regulations or both as part of their efforts to manage their organization’s ADA liability exposure. Because the ADAAA already is in effect, employers already face the possibility of being called upon to defend their hiring and employment practices under the amended ADAAA definition of disability, even though the EEOC has not issued final guidance. For this reason, it is important that employers take timely action both to update relevant written policies and procedures, as well as to change hiring and other operational processes, conduct training, implement appropriate oversight and monitoring and take other steps to mitigate these exposures.

If you have questions about or need assistance evaluating, commenting on or responding to the Proposed Regulations, the Q&As, or other employment, compensation, employee benefit, workplace health and safety, corporate ethics and compliance practices, concerns or claims, please contact the author of this article, Curran Tomko Tarski LLP Labor & Employment Practice Group Chair Cynthia Marcotte Stamer. Board Certified in Labor & Employment Law by the Texas Board of Legal Specialization and Chair of the American Bar Association RPTE Employee Benefits & Other Compensation Group, Ms. Stamer is experienced with assisting employers and others about compliance with federal and state equal employment opportunity, compensation and employee benefit, workplace safety, and other labor and employment, as well as advising and defending employers and others against tax, employment discrimination and other labor and employment, and other related audits, investigations and litigation, charges, audits, claims and investigations by the IRS, Department of Labor and other federal and state regulators. Ms. Stamer has advised and represented employers on these and other labor and employment, compensation, employee benefit and other personnel and staffing matters for more than 20 years. Ms. Stamer also speaks and writes extensively on these and other related matters. For additional information about Ms. Stamer and her experience or to access other publications by Ms. Stamer see here or contact Ms. Stamer directly. For additional information about the experience and services of Ms. Stamer and other members of the Curran Tomko Tarksi LLP team, see here.

Other Information & Resources

We hope that this information is useful to you. If you or someone else you know would like to receive future updates about developments on these and other concerns, please be sure that we have your current contact information – including your preferred e-mail – by creating or updating your profile here or e-mailing this information here or registering to participate in the distribution of our Solutions Law Press HR & Benefits Update distributions here. Some other recent updates that may be of interested include the following, which you can access by clicking on the article title:

IRS Proposes To Update Regulations On Exclusion of Damages Received on Account of Personal Physical Injuries or Physical Sickness To Eliminate Tort Test
OSHA Final Rule Updates OSHA Personal Protective Equipment Standards
DOL Proposes Changes To H-2A Temporary & Seasonal Agricultural Nonimmigrant Worker Certification Procedures & Related Rules
Register Now For HITECH Act Health Data Security & Breach Update: Learn What You Must Do This Month To Comply With New Health Data Breach Regulations
ADAAA Amendment Broader ADA “Disability” Definition Not Retroactive, Employer Action Needed To Manage Post 1/1/2009 Risks
New Study Shares Data On Migrant Health Care Challenges Along The Border
Employer & Other Health Plans & Other HIPAA-Covered Entities & Their Business Associates Must Comply With New HHS Health Information Data Breach Rules By September 23
Stamer, Others To Discuss Technology Use/Risks in Employee Benefits, Tax & HR Consulting & Administration
Businesses Cautioned To Strengthen Investigation & Employment Practices To Minimize Potential Exposure To Retaliation Claims In Light Of Recent Supreme Court Retaliation Decision
OFCCP To Apply Special Procedures, Heightened Scrutiny To Equal Employment Practices of Government Contractors, Subcontractors On ARRA Funded Projects
With September 8 Deadline For Government Contractors To Use E-Verify, USCIS Invites Comments On E-Verify Program Designated Agent Processr Enforcement

For important information concerning this communication click here. If you do not wish to receive these updates in the future, send an e-mail with the word “Remove” in the Subject here.

Comments Off on EEOC Prepares To Broaden “Disability” Definition Under ADA Regulations | ADA, Disease Management, EEOC, Employee Benefits, Employers, GINA, Human Resources, Internal Controls, Internal Investigations, OFCCP, Retaliation, Retirement Plans | Tagged: ADA, Disability Discrimination, Employee Benefits, Employer, Employers, Employment, Employment Agreements, GINA, Human Resources, Internal Controls, Internal Investigations, Light Duty, Risk Management | Permalink
Posted by Cynthia Marcotte Stamer

Register Now For HITECH Act Health Data Security & Breach Update: Learn What You Must Do This Month To Comply With New Health Data Breach Regulations

September 2, 2009

September 10, 2009 – Noon to 1:30 P.M. Central Time Participate In Person or Via Remote!

Health care providers, health plans, health clearinghouses and their business associates (Covered Entities) must comply with the new “Breach Notification For Unsecured Protected Health Information” regulation (Breach Regulation) by September 23, 2009.

Catch up on what the Breach Rule means for your organization and how it must respond by participating in the “HITECH Act Health Data Security & Breach Update” on Thursday, September 10, 2009 from Noon to 1:30 P.M. Central Time for a registration fee of $45.00. Registrants will have the option to participate via teleconference or in person at the offices of Curran Tomko Tarski LLP, 2001 Bryan Street, Suite 2050, Dallas Texas 75201. For information about registering for this program or other questions here,

The Breach Rule requires Covered Entities to notify affected individuals following a “breach” of “unsecured” protected health information. Just published August 24^th, the Breach Regulation is part of a series of guidance that HHS is issuing to implement new and stricter personal health information privacy and data security requirements for Covered Entities added to HIPAA under the Health Information Technology for Economic and Clinical Health (HITECH) Act signed into law on February 17, 2009 as part of American Recovery and Reinvestment Act of 2009 (ARRA). The briefing will cover:

Who must comply, health plans, employers, others?
What your organization must do
How to qualify protected health information as exempt from the breach regulations as “secure” protected health information
What is considered a breach of unsecured protected health information
What steps must a covered entity take if a breach of unsecured protected information happens
What liabilities do covered entities face for non-compliance
What new contractual requirements, policies and procedures Covered Entities and Business Associates will need
How the Breach Regulation, the Privacy Regulation, impending FTC red flag rules and state data breach and privacy rules interrelate
Other recent developments
Practical tips for assessing, planning, moving to and defending compliance
Participant questions
More

About The Presenter

The program will be presented by Curran Tomko and Tarski LLP Health Care & Employee Benefits Practice Leader and Partner Cynthia Marcotte Stamer. Ms. Stamer is nationally known for her work, publications and presentations on privacy and security of health and other sensitive information in health and managed care, employment, employee benefits, financial services, education and other contexts. Chair of the ABA RPTE Employee Benefits & Other Compensation Committee, a ABA Joint Committee on Employee Benefits Council Representative, Vice President of the North Texas Health Care Compliance Professionals Association, Past Chair of the ABA Health Law Section Managed Care & Insurance Section and the former Board Compliance Chair of the National Kidney Foundation of North Texas, Ms. Stamer has more than 20 years experience advising clients about health and other privacy and security matters. A popular lecturer and widely published author on privacy and data security and other related health care and health plan matters, Ms. Stamer is the Editor in Chief of the forthcoming 2010 edition of the Information Security Guide to be published by the American Bar Association Information Security Committee in 2010, as well as the author of “Protecting & Using Patient Data In Disease Management: Opportunities, Liabilities And Prescriptions,” “Privacy Invasions of Medical Care-An Emerging Perspective,” “Cybercrime and Identity Theft: Health Information Security Beyond HIPAA,” and a host of other highly regarded publications. She has continuously advises employers, health care providers, health insurers and administrators, health plan sponsors, employee benefit plan fiduciaries, schools, financial services providers, governments and others about privacy and data security, health care, insurance, human resources, technology, and other legal and operational concerns. Ms. Stamer also publishes and speaks extensively on health and managed care industry privacy, data security and other technology, regulatory and operational risk management matters. Her insights on health care, health insurance, human resources and related matters appear in the Atlantic Information Service, Bureau of National Affairs, World At Work, The Wall Street Journal, Business Insurance, the Dallas Morning News, Managed Healthcare, Health Leaders, and a many other national and local publications. For additional information about Ms. Stamer, her experience, involvements, programs or publications, see here.

We hope that this information is useful to you. If you need assistance monitoring, evaluating or responding to these or other compliance, risk management, transaction or operation concerns, please contact the author of this update, Cynthia Marcotte Stamer, at (214) 270-2402, cstamer@cttlegal.com or another Curran Tomko Tarski LLP Partner of your choice.

Other Helpful Resources & Other Information

If you find this of interest, you also be interested in one or more of the following other recent articles published on our electronic Curran Tomko Tarski LLP publications available for review here. If you or someone else you know would like to receive future updates about developments on these and other concerns, please be sure that we have your current contact information – including your preferred e-mail- by creating or updating your profile at here. You can access other recent updates and other informative publications and resources provided by Curran Tomko Tarski LLP attorneys and get information about its attorneys’ experience, briefings, speeches and other credentials here.

For important information concerning this communication click here. If you do not wish to receive these updates in the future, send an e-mail with the word “Remove” in the Subject to support@cttlegal.net.

Comments Off on Register Now For HITECH Act Health Data Security & Breach Update: Learn What You Must Do This Month To Comply With New Health Data Breach Regulations | Corporate Compliance, Data Security, Disease Management, Employers, GINA, Health Plans, HIPAA, Human Resources, Insurance, Internal Controls, Privacy, Protected Health Information | Tagged: Corporate Compliance, Employee Benefits, Employer, Employers, Employment, ERISA, GINA, Health Care Reform, Health Insurance, Health Plans, Human Resources, Insurance, Insurer, Internal Controls, Managed Care, Medical Coverage, Privacy | Permalink
Posted by Cynthia Marcotte Stamer

ADAAA Amendment Broader ADA “Disability” Definition Not Retroactive, Employer Action Needed To Manage Post 1/1/2009 Risks

August 25, 2009

Provisions of the ADA Amendments Act (ADAAA) that expand the definition of “disability” under the Americans with Disabilities Act (ADA) “in favor of broad coverage of individuals” do not apply to actions taken before effective date of the ADAAA, January 1, 2009, according to a recent decision of the U.S. Circuit Court of Appeals for the District of Columbia. While the holding provides some comfort for employers in relation to pre-January 1, 2009 actions, employers need to take appropriate steps to mitigate disability claim risks for actions on or after the January 1, 2009 effective date of the ADAAA.

As signed into law on September 25, 2008, the ADAAA amended the definition of “disability” for purposes of the disability discrimination prohibitions of the ADA to make it easier for an individual seeking protection under the ADA to establish that that has a disability within the meaning of the ADA. The ADAAA retains the ADA’s basic definition of “disability” as an impairment that substantially limits one or more major life activities, a record of such an impairment, or being regarded as having such an impairment. However, provisions of the ADAAA that took effect January 1, 2009 change the way that these statutory terms should be interpreted in several ways. Most significantly, the Act:

Directs EEOC to revise that portion of its regulations defining the term “substantially limits;”
Expands the definition of “major life activities” by including two non-exhaustive lists: (1) The first list includes many activities that the EEOC has recognized (e.g., walking) as well as activities that EEOC has not specifically recognized (e.g., reading, bending, and communicating); and (2) The second list includes major bodily functions (e.g., “functions of the immune system, normal cell growth, digestive, bowel, bladder, neurological, brain, respiratory, circulatory, endocrine, and reproductive functions”);
States that mitigating measures other than “ordinary eyeglasses or contact lenses” shall not be considered in assessing whether an individual has a disability;
Clarifies that an impairment that is episodic or in remission is a disability if it would substantially limit a major life activity when active;
Changes the definition of “regarded as” so that it no longer requires a showing that the employer perceived the individual to be substantially limited in a major life activity, and instead says that an applicant or employee is “regarded as” disabled if he or she is subject to an action prohibited by the ADA (e.g., failure to hire or termination) based on an impairment that is not transitory and minor; and
Provides that individuals covered only under the “regarded as” prong are not entitled to reasonable accommodation.

The ADAAA also emphasizes that the definition of disability should be construed in favor of broad coverage of individuals to the maximum extent permitted by the terms of the ADA and generally shall not require extensive analysis.

In Lytes v. DC Water and Sewer Authority, D.C. Cir. No. 08-7002 (July 21, 2009), the D.C. Court of Appeals considered and rejected the retroactivity argument made by Lytes in his appeal from a trial court’s finding that he was not disabled under the ADA. As the ADAAA took effect while his action was pending, Lytes sought to convince the Appeals Court to apply the ADAAA amended definition retroactively. Contending that the ADAAA amendment merely clarified the existing law under the ADA, Lytes argued that the Court should apply the broader definition of disability when considering the legality of his termination from employment in 2004.

Rejecting Lytes’ retroactivity argument, the Court of Appeals ruled that the ADAAA amendment of the definition of “disability” under the ADA applies only on a prospective basis based on its finding that Congress had clearly provided that the ADAAA amendments only would apply to post-December 31, 2008 actions. Accordingly, the Court of Appeals affirmed the District Court’s finding that Lytes termination in 2004 did not violate the ADA as then effective as his lack of disabled status under the then-applicable definition of disability meant he was not entitled to accommodation.

In adopting these changes, Congress expressly sought to overrule existing employer-friendly judicial precedent construing the current provisions of the ADA and to require the Equal Employment Opportunity Commission (EEOC) to update its existing guidance to confirm with the ADAAA Amendments.

Violations of the ADA can expose businesses to substantial liability. Violations of the ADA may be prosecuted by the EEOC or by private lawsuits. Employees or applicants that can prove they were subjected to prohibited disability discrimination under the ADA generally can recover actual damages, attorneys’ fees, and up to $300,000 of exemplary damages (depending on the size of the employer).

While the Lytes decision indicates that businesses will not be required to defend pre-2009 actions under the amended disability standards enacted by the ADAAA, businesses should prepare to meet new challenges in defending ADA claims arising from actions taken after December 31, 2008. The ADAAA amendments make it likely that businesses generally will face more disability claims from a broader range of employees and will possess fewer legal shields to defend themselves against these claims. These changes will make it easier for certain employees to qualify as disabled under the ADA. Consequently, businesses should act strategically to mitigate their ADA exposures in anticipation of these changes.

To help mitigate the expanded employment liability risks created by the ADAAA amendments, businesses generally should act cautiously when dealing with applicants or employees with actual, perceived, or claimed physical or mental impairments to minimize exposures under the ADA. Management should exercise caution to carefully and appropriate the potential legal significance of physical or mental impairments or conditions that might be less significant in severity or scope, correctable through the use of eyeglasses, hearing aids, daily medications or other adaptive devices, or that otherwise have been assumed by management to fall outside the ADA’s scope. Employers should no longer assume, for instance, that a visually impaired employee won’t qualify as disabled because eyeglasses can substantially correct the employee’s visual impairment.

Likewise, businesses should be prepared for the EEOC and the courts to treat a broader range of disabilities, including those much more limited in severity and life activity restriction, to qualify as disabling for purposes of the Act. Businesses should assume that a greater number of employees with such conditions are likely to seek to use the ADA as a basis for challenging hiring, promotion and other employment decisions. For this reason, businesses generally should tighten job performance and other employment recordkeeping to enhance their ability to demonstrate nondiscriminatory business justifications for the employment decisions made by the businesses.

Businesses also should consider tightening their documentation regarding their procedures and processes governing the collection and handling records and communications that may contain information regarding an applicant’s physical or mental impairment, such as medical absences, worker’s compensation claims, emergency information, or other records containing health status or condition related information. The ADA generally requires that these records be maintained in separate confidential files and disclosed only to individuals with a need to know under circumstances allowed by the ADA.

As part of this process, businesses also should carefully review their employment records, group health plan, family leave, disability accommodation, and other existing policies and practices to comply with, and manage exposure under the new genetic information nondiscrimination and privacy rules enacted as part of the Genetic Information and Nondiscrimination Act (GINA) signed into law by President Bush on May 21, 2008. Effective November 21, 2009, Title VII of GINA amends the Civil Rights Act to prohibit employment discrimination based on genetic information and restricts the ability of employers and their health plans to require, collect or retain certain genetic information. Under GINA, employers, employment agencies, labor organizations and joint labor-management committees face significant liability for violating the sweeping nondiscrimination and confidentiality requirements of GINA concerning their use, maintenance and disclosure of genetic information. Employees can sue for damages and other relief like currently available under Title VII of the Civil Rights Act of 1964 and other nondiscrimination laws. For instance, GINA’s employment related provisions include rules that will:

Prohibit employers and employment agencies from discriminating based on genetic information in hiring, termination or referral decisions or in other decisions regarding compensation, terms, conditions or privileges of employment;
Prohibit employers and employment agencies from limiting, segregating or classifying employees so as to deny employment opportunities to an employee based on genetic information;
Bar labor organizations from excluding, expelling or otherwise discriminating against individuals based on genetic information;
Prohibit employers, employment agencies and labor organizations from requesting, requiring or purchasing genetic information of an employee or an employee’s family member except as allowed by GINA to satisfy certification requirements of family and medical leave laws, to monitor the biological effects of toxic substances in the workplace or other conditions specifically allowed by GINA;
Prohibit employers, labor organizations and joint labor-management committees from discriminating in any decisions related to admission or employment in training or retraining programs, including apprenticeships based on genetic information;
Mandate that in the narrow situations where limited cases where genetic information is obtained by a covered entity, it maintain the information on separate forms in separate medical files, treat the information as a confidential medical record, and not disclosure the genetic information except in those situations specifically allowed by GINA;
Prohibit any person from retaliating against an individual for opposing an act or practice made unlawful by GINA; and
Regulate the collection, use, access and disclosure of genetic information by employer sponsored and certain other health plans.

These employment provisions of GINA are in addition to amendments to the Health Insurance Portability and Accountability Act of 1996 (HIPAA), the Employee Retirement Income Security Act of 1974 (ERISA), the Public Health Service Act, the Internal Revenue Code of 1986, and Title XVIII (Medicare) of the Social Security Act that are effective for group health plan for plan years beginning after May 20, 2009.

If you have any questions or need help reviewing and updating your organization’s employment and/or employee practices in response to the ADAAA, GINA or other applicable laws, or if we may be of assistance with regard to any other workforce management, employee benefits or compensation matters, please do not hesitate to contact the author of this update, Curran Tomko Tarksi LLP Labor & Employment Practice Chair Cynthia Marcotte Stamer at 214.270.2402.

About The Author

Management attorney and consultant Cynthia Marcotte Stamer helps businesses, governments and associations solve problems, develop and implement strategies to manage people, processes, and regulatory exposures to achieve their business and operational objectives and manage legal, operational and other risks. Board certified in labor and employment law by the Texas Board of Legal Specialization, with more than 20 years human resource and employee benefits experience, Ms. Stamer helps businesses manage their people-related risks and the performance of their internal and external workforce though appropriate human resources, employee benefit, worker’s compensation, insurance, outsourcing and risk management strategies domestically and internationally. Recognized in the International Who’s Who of Professionals and bearing the Martindale Hubble AV-Rating, Ms. Stamer also is a highly regarded author and speaker, who regularly conducts management and other training on a wide range of labor and employment, employee benefit, human resources, internal controls and other related risk management matters. Her writings frequently are published by the American Bar Association (ABA), Aspen Publishers, Bureau of National Affairs, the American Health Lawyers Association, SHRM, World At Work, Government Institutes, Inc., Atlantic Information Services, Employee Benefit News, and many others. For a listing of some of these publications and programs, see here. Her insights on human resources risk management matters also have been quoted in The Wall Street Journal, various publications of The Bureau of National Affairs and Aspen Publishing, the Dallas Morning News, Spencer Publications, Health Leaders, Business Insurance, the Dallas and Houston Business Journals and a host of other publications. Chair of the ABA RPTE Employee Benefit and Other Compensation Committee, a council member of the ABA Joint Committee on Employee Benefits, and the Legislative Chair of the Dallas Human Resources Management Association Government Affairs Committee, she also serves in leadership positions in numerous human resources, corporate compliance, and other professional and civic organizations. For more details about Ms. Stamer’s experience and other credentials, contact Ms. Stamer, information about workshops and other training, selected publications and other human resources related information, see here or contact Ms. Stamer via telephone at 214.270.2402 or via e-mail here.

Other Helpful Resources & Other Information

If you found these updates of interest, you also be interested in one or more of the following other recent articles published in this electronic Solutions Law publication available for review here. If you or someone else you know would like to receive future updates about developments on these and other concerns, please be sure that we have your current contact information – including your preferred e-mail- by creating or updating your profile at here.

Comments Off on ADAAA Amendment Broader ADA “Disability” Definition Not Retroactive, Employer Action Needed To Manage Post 1/1/2009 Risks | ADA, Corporate Compliance, EEOC, Employers, GINA, Human Resources, OFCCP, Retaliation | Tagged: ADA, Corporate Compliance, Disability Discrimination, Employee Benefits, Employers, Employment, Health Insurance, Health Plans, Human Resources | Permalink
Posted by Cynthia Marcotte Stamer

Employer & Other Health Plans & Other HIPAA-Covered Entities & Their Business Associates Must Comply With New HHS Health Information Data Breach Rules By September 23

August 24, 2009

Employer and other health plans, health care providers, health clearinghouses and their business associates must start complying with new federal data breach notification rules on September 23, 2009.

The new “Breach Notification For Unsecured Protected Health Information” regulation (Breach Regulation) published here in today’s Federal Register requires health plans, health care providers, health care clearinghouses and their business associates (Covered Entities) covered under the personal health information privacy and security rules of the Health Insurance Portability & Accountability Act (HIPAA) to notify affected individuals following a “breach” of “unsecured” protected health information.The Breach Regulation is part of a series of guidance that HHS is issuing to implement new and stricter personal health information privacy and data security requirements for Covered Entities added to HIPAA under the Health Information Technology for Economic and Clinical Health (HITECH) Act signed into law on February 17, 2009 as part of American Recovery and Reinvestment Act of 2009 (ARRA).

You are invited to catch up on what these new rules mean for your organization and how it must respond by participating in the “HITECH Act Health Data Security & Breach Update” on Wednesday, September 9 2009 from Noon to 1:30 P.M. Central Time.

HITECH Act Data Breach and Unsecured PHI Rules

Published in the August 24, 2009 Federal Register, the new Breach Regulation implements the HITECH Act requirement that Covered Entities and their business associates notify affected individuals, the Secretary of HHS, and in some cases, the media, when a breach of “unsecured protected health information” happens and the form, manner, and timing of that notification. Covered Entities must begin complying with the new Breach Regulation on September 23, 2009.

Part of a series of new HHS rules implementing recent changes to HIPAA enacted under the HITECH Act to strengthen existing federally mandates requiring Covered Entities to safeguard protected health information, the Breach Regulation will obligate Covered Entities and business associates to provide certain notifications following a breach of “protected health information” that not secured at the time of the breach through the use of a technology or methodology meeting minimum standards issued by HHS pursuant to other provisions of the HITECH Act.

Under the HITECH Act, the breach notification obligations contained in the Breach Notification only apply to a breach of “unsecured protected health information.” The Breach Regulation exempts breaches of protected health information that qualify as “secured” under separately issued HHS and Federal Trade Commission (FTC) standards for encryption and destruction of protected health information from its breach notification requirements.

For purposes of the HITECH Act, electronic protected health information is considered “unsecured” unless the Covered Entity has satisfied certain minimum standards for the protection of that data established pursuant to the HITECH Act. Earlier this year, HHS and the FTC issued interim rules defining the minimum encryption and destruction technologies and methodologies that Covered Entities must use to render protected health information unusable, unreadable, or indecipherable to unauthorized individuals for purposes of determining when protected health information is “unsecured” for purposes of the HITECH Act. Concurrent with its publication of the Breach Regulation, HHS also released guidance updating and clarifying this previously issued guidance.

Read the Breach Regulation here . To review the HITECH Act Breach Notification Guidance and Request for Information, see here .

Register For September 9, 2009 “HITECH Act Health Data Security & Breach Update”

Interested persons are invited to register here now to learn what these new rules mean for your organization and how it must respond by participating in the “HITECH Act Health Data Security & Breach Update” on Wednesday, September 9, 2009 from Noon to 1:30 P.M. Central Time. For a registration fee of $45.00, registrants will have the option to participate via teleconference or in person at the offices of Curran Tomko Tarski LLP, 2001 Bryan Street, Suite 2050, Dallas Texas 75201. For questions or other information about this program, e-mail here.

Conducted by Curran Tomko and Tarski LLP Partner Cynthia Marcotte Stamer, the briefing will cover:

Who must comply
What your organization must do
How to qualify protected health information as exempt from the breach regulations as “secure” protected health information
What is considered a breach of unsecured protected health information
What steps must a covered entity take if a breach of unsecured protected information happens
What liabilities do covered entities face for non-compliance
What new contractual requirements, policies and procedures Covered Entities and Business Associates will need
How the Breach Regulation, the Privacy Regulation, impending FTC red flag rules and state data breach and privacy rules interrelate
Other recent developments
Practical tips for assessing, planning, moving to and defending compliance
Participant questions
More

About The Presenter

The program will be presented by Curran Tomko Tarski LLP Partner Cynthia Marcotte Stamer. Ms. Stamer is nationally known for her work, publications and presentations on privacy and security of health and other sensitive information in health and managed care, employment, employee benefits, financial services, education and other contexts.

Past Chair of the ABA Health Law Section Managed Care & Insurance Section and currently the Chair of the American Bar Association (ABA) RPTE Employee Benefits & Other Compensation Section and a Council Representative of the ABA Joint Committee On Employee Benefits, Ms. Stamer has more than 20 years experience advising clients about health and other privacy and security matters. A popular lecturer and widely published author on privacy and data security and other related health care and health plan matters, Ms. Stamer is the Editor in Chief of the forthcoming 2010 edition of the Information Security Guide to be published by the American Bar Association Information Security Committee in 2010, as well as the author of “Protecting & Using Patient Data In Disease Management: Opportunities, Liabilities And Prescriptions,” “Privacy Invasions of Medical Care-An Emerging Perspective,” “Cybercrime and Identity Theft: Health Information Security Beyond HIPAA,” and a host of other highly regarded publications. She has continuously advises employers, health care providers, health insurers and administrators, health plan sponsors, employee benefit plan fiduciaries, schools, financial services providers, governments and others about privacy and data security, health care, insurance, human resources, technology, and other legal and operational concerns. Ms. Stamer also publishes and speaks extensively on health and managed care industry privacy, data security and other technology, regulatory and operational risk management matters. Her insights on health care, health insurance, human resources and related matters appear in the Atlantic Information Service, Bureau of National Affairs, World At Work, The Wall Street Journal, Business Insurance, the Dallas Morning News, Managed Healthcare, Health Leaders, and a many other national and local publications. For additional information about Ms. Stamer, her experience, involvements, programs or publications, see here.

We hope that this information is useful to you. If you need assistance monitoring, evaluating or responding to these or other compliance, risk management, transaction or operation concerns, please contact the author of this update, Cynthia Marcotte Stamer, at (214) 270-2402, cstamer@cttlegal.com or another Curran Tomko Tarski LLP Partner of your choice.

Other Helpful Resources & Other Information

If you found these updates of interest, you also be interested in one or more of the following other recent articles published on our electronic Curran Tomko Tarski LLP publications available for review here. If you or someone else you know would like to receive future updates about developments on these and other concerns, please be sure that we have your current contact information – including your preferred e-mail- by creating or updating your profile at here. You can access other recent updates and other informative publications and resources provided by Curran Tomko Tarski LLP attorneys and get information about its attorneys’ experience, briefings, speeches and other credentials here.

Comments Off on Employer & Other Health Plans & Other HIPAA-Covered Entities & Their Business Associates Must Comply With New HHS Health Information Data Breach Rules By September 23 | ARRA, Corporate Compliance, Data Security, Employee Benefits, Employers, ERISA, GINA, Health Plans, HIPAA, Human Resources, Insurance, Internal Controls, Preemption, Privacy, Protected Health Information, Risk Management, Stimulus Bill, Tax | Tagged: Corporate Compliance, Data Security, Employee Benefits, Employer, Employers, Employment, ERISA, GINA, Health Care Reform, Health Insurance, Health Plans, HealthP Plans, Human Resources, Insurance, Insurer, Internal Controls, Internal Investigations, Labor, Managed Care, Medical Coverage, Privacy, Risk Management, Subsidy Bill, Tax | Permalink
Posted by Cynthia Marcotte Stamer

Health Plans Must Comply with New HHS Interim Final Data Breach Rules Beginning September 24; Register to Participate In September 10th Briefing on New Rules In Person or Via Telephone

August 20, 2009

Employers and other health plan sponsors, fiduciaries, insurers and service providers need to move quickly to prepare to comply with “breach notification” regulations issued by the U.S. Department of Health and Human Services (HHS) yesterday (August 19, 2009). The new data breach regulations will require health plans, as well as health care providers, business associates and other covered entities (Covered Entities) under the personal health information privacy and security rules of the Health Insurance Portability & Accountability (HIPAA) to notify affected individuals following a “breach” of “unsecured” protected health information. Scheduled for publication in the Federal Register on August 24, 2009, the new breach notification regulations are part of a series of new rules that implement new electronic personal health information data security and data breach notification requirements for Covered Entities added to HIPAA under the Health Information Technology for Economic and Clinical Health (HITECH) Act signed into law on February 17, 2009 as part of American Recovery and Reinvestment Act of 2009 (ARRA). Covered entities must begin complying with the new rules no later than September 24, 2009.

Curran Tomko Tarski, LLP Health Practice leader Cynthia Marcotte Stamer will conduct a briefing on these new protected health information data security and data breach rules on Thursday, September 10, 2009 from Noon to 1:30 P.M. Central Time. For a registration fee of $45.00, registrants will have the option to participate via teleconference or in person at the offices of Curran Tomko Tarski LLP, 2001 Bryan Street, Suite 2050, Dallas Texas 75201. For more information, e-mail here.

HITECH Act Data Breach and Unsecured PHI Rules

The new data breach notification rules are part of a series of recent HIPAA enacted under the HITECH Act to strengthen the federal rules requiring HIPAA covered entities to safeguard electronic and certain other protected health information. Enhanced data security and data breach rules added as part of these HITECH Act amendments obligate covered entities and business associates to provide certain notifications following a breach of “unsecured” “protected health information” within the meaning of HIPAA, as amended. “Unsecured protected health information” is defined as protected health information that is not secured through the use of a technology or methodology specified by the HHS Secretary.

The new data breach regulations implement the HITECH Act requirement that Covered Entities and their business associates notify affected individuals, the Secretary of HHS, and in some cases, the media, of a breach and the form, manner, and timing of that notification. For purposes of the HITECH Act, electronic protected health information is considered “unsecured” unless the covered entity has satisfied certain minimum standards for the protection of that data established pursuant to the HITECH Act. HHS and the Federal Trade Commission previously issued certain initial guidance concerning the HITECH Act standards for determining when electronic personal health information qualifies as secure. To help further define when electronic health information is treated as “unsecured” and therefore subject to the breach notification requirements, the data breach rules also update and clarify the previously issued existing HHS guidance specifying encryption and destruction as the technologies and methodologies that render protected health information unusable, unreadable, or indecipherable to unauthorized individuals published earlier this year by HHS to for purposes of determining when protected health information will be considered “unsecured” for purposes of the HITECH Act data breach rules. Entities subject to the HHS and FTC regulations that secure health information as specified by the guidance through encryption or destruction are relieved from having to notify in the event of a breach of such information.

The HHS interim final regulations are effective September 24, 2009, which is the date 30 days after the date they will be published on the Federal Register and include a 60-day public comment period. To review the interim final data breach regulations, see here. To review the HITECH Act Breach Notification Guidance and Request for Information, see here.

For More Information

The author of this article, Curran Tomko and Tarski LLP Labor and Employment and Health Care Practice Chair Cynthia Marcotte Stamer has extensive experience advising and assisting employer and other health plan sponsors, insurers, managed care providers and other health and insurance industry clients about HIPAA and other privacy and data security matters, as well as a diverse range of health care, employment, and emplyee benefit policy, regulatory, compliance, risk management and operational concerns.

Current Chair of the American Bar Association (ABA) Real Property, Trusts & Estates Employee Benefit & Other Compensation Committee, an ABA Joint Committee on Employee Benefits Council member, past chair of the American Bar Association Health Law Section Managed Care & Insurance Section, Martindale Hubble AV-rated and recognized in International Who’s Who of Professionals, Ms. Stamer continuously advises health care providers, health care payers and administrators, employers, governments and others about health care, insurance, human resources, privacy and data security, technology, and other legal and operational concerns. A popular lecturer and widely published author on privacy and data security and other related health care and health plan matters, Ms. Stamer also writes and speaks extensively on health and managed care industry privacy, data security and other technology, regulatory and operational risk management matters. She currently serves as the Editor in Chief of the forthcoming 2010 edition of the Information Security Guide to be published by the American Bar Association Information Security Committee in 2010. Examples of her other works include “Protecting & Using Patient Data In Disease Management: Opportunities, Liabilities And Prescriptions,” “Privacy Invasions of Medical Care-An Emerging Perspective,” “Cybercrime and Identity Theft: Health Information Security Beyond HIPAA,” and a host of others. Her insights on health care, health insurance, human resources and related matters appear in the Atlantic Information Service Privacy Report, The Wall Street Journal, Business Insurance, the Dallas Morning News, Managed Healthcare, Health Leaders, and a various other national and local publications. For additional information about Ms. Stamer, her experience, involvements, programs or publications, see here.

We hope that this information is useful to you. If you need assistance monitoring, evaluating or responding to these or other proposed health care or other regulatory reforms or with other health care compliance, risk management, transaction or operation concerns, please contact the author of this update, Curran Tomko Tarski LLP Health Practice Group Chair, Cynthia Marcotte Stamer, at (214) 270-2402, cstamer@cttlegal.com or your other favorite Curran Tomko Tarski LLP Partner.

We also encourage you and others to join the discussion about these and other health care reform proposals and concerns by joining the Coalition for Responsible Health Care Reform Group on Linkedin, registering to receive these updates here.

Other Helpful Resources & Other Information

We hope that this information is useful to you. If you found these updates of interest, you also be interested in one or more of the following other recent articles published on our electronic Solutions Law Press Health Care Update publication available here. If you or someone else you know would like to receive future updates about developments on these and other concerns, please register to receive this Solutions Law Press Health Care Update here and be sure that we have your current contact information – including your preferred e-mail- by creating or updating your profile at here. You can access other recent updates and other informative publications and resources provided by Curran Tomko Tarski LLP attorneys and get information about its attorneys’ experience, briefings, speeches and other credentials here.

Comments Off on Health Plans Must Comply with New HHS Interim Final Data Breach Rules Beginning September 24; Register to Participate In September 10th Briefing on New Rules In Person or Via Telephone | Corporate Compliance, ERISA, GINA, Health Plans, HIPAA, Human Resources, Insurance, Internal Controls, Internal Investigations | Tagged: Corporate Compliance, Data Breach, Data Security, Date Security, Employee Benefits, Employers, ERISA, GINA, Health Plans, HIPAA, Human Resources, Insurance, Insurer, Internal Controls, Managed Care, PHI, Privacy, Privacy Rule, Protected Health Information, Security Rule | Permalink
Posted by Cynthia Marcotte Stamer

Registration Open For June 23 Dallas HR 2009 Health Plan Eligibility Update Program

June 9, 2009

Amid soaring health care costs and tightening corporate budgets, employers and other group health plan sponsors, fiduciaries and administrations now also must update their group health plan eligibility and enrollment practices to comply with the American Recovery and Reinvestment Act of 2009 (the “Stimulus Bill”), COBRA subsidy mandates, HIPAA special enrollment rule amendments and a host of other changes to federal eligibility mandates that already have or will take effect this year. Meanwhile, employers must keep a careful watch on Congress as it considers enacting sweeping health care reforms that are likely to place more obligations on employers.

Health plan eligibility design and administration plays a critical role in controlling health benefit costs and is a leading and growing source of health plan legal risk for employers, fiduciaries and administrators. Understanding and properly managing these concerns is imperative for employers and others sponsoring or administering these programs.

Stamer Discusses Health Plan Eligibility Rules June 23

Cynthia Marcotte Stamer will explain newly effective COBRA Subsidy Rules, genetic information nondiscrimination rules and other recent and impending changes to federal health plan eligibility mandates will be explained on June 23, 2009 during a 2009 Health Plan Eligibility Update briefing hosted by the Dallas Human Resources Management Association including:

Cynthia Stamer will explain to attendees what they need to know and do about:

New Stimulus Bill COBRA Subsidy Rules and other special COBRA rules that took effect on February 17
New GINA group health plan information scheduled to take place in 2009
Changes to HIPAA special enrollment and nondiscrimination rules
Implications for group health plans based on recent changes to FMLA and USERRA regulations
Medicare, Medicaid and CHIP nondiscrimination rules
Impending college student continuation mandates
And more….

Get details or register on line here or by telephoning Dallas Human Resources Management Association at 214-631-8775.

Stamer’s Health Plan Experience Extensive

The immediate past Chair of the American Bar Association’s Managed Care & Insurance Section, Cynthia Marcotte Stamer is a highly regarded legal advisor, author and speaker recognized both nationally and internationally for her expertise in the areas of health benefits and other human resource compliance matters. Board Certified in Labor and Employment Law by the Texas Board of Legal Specialization, “Cindy” recently joined Curran Tomko Tarski, LLP as the Chair of its Labor & Employment and Health Care Practices April 1, 2009.

The Managing Editor of Solutions Law Press and an Editorial Advisory Board Member and author for Employee Benefit News and other publications, Ms. Stamer is a widely published author and popular speaker. In addition to hundreds of publications on health plan and other human resources, employee benefit and internal controls issues, Ms. Stamer is the author of the “Health Plan Eligibility Toolkit.” Her work has been featured and published by the American Bar Association, BNA, SHRM, World At Work, Employee Benefit News and the American Health Lawyers Association. Her insights on human resources risk management matters have been quoted in The Wall Street Journal, the Dallas Business Journal, Managed Care Executive, HealthLeaders, Business Insurance, Employee Benefit News and the Dallas Morning News.

Ms. Stamer also serves in a number of professional leadership roles including the leadership council of the ABA Joint Committee on Employee Benefits, Vice Chair of the ABA Real Property, Probate & Trust Section and Employee Benefits & Compensation Group.

Cynthia Marcotte Stamer and other members of Curran Tomko and Tarski LLP are experienced with advising and assisting employers with these and other health plan and other employee benefit, labor and employment, compensation, and internal controls matters. If your organization needs assistance with assessing, managing or defending its wage and hour or other labor and employment, compensation or benefit practices, please contact Ms. Stamer via e-mail here, or by calling (214) 270-2402. For additional information about the experience, services, publications and involvements of Ms. Stamer specifically or to access some of her many publications, see here, For more information and other members of the Curran Tomko Tarksi, LLP team, see the Curran Tomko Tarski Website.

We hope that this information is useful to you. For additional information about the experience, services, publications and involvements of Ms. Stamer specifically or to access some of her many publications, see here, For more information and other members of the Curran Tomko Tarksi, LLP team, see the Curran Tomko Tarski Website.

You can register to receive future updates and information about upcoming programs, access other publications by Ms. Stamer and access other helpful resources here. If you or someone else you know would like to receive updates about developments on these and other human resources and employee benefits concerns, please be sure that we have your current contact information – including your preferred e-mail- by creating or updating your profile at here. If you would prefer not to receive these updates, please send a reply e-mail with “Remove” in the subject line to support@SolutionsLawyer.net. You also can register to participate in the distribution of these updates by registering to participate in the Solutions Law Press HR & Benefits Update Blog here.

Comments Off on Registration Open For June 23 Dallas HR 2009 Health Plan Eligibility Update Program | Absenteeism, ADA, COBRA, Disease Management, Employee Benefits, Employers, Employment Tax, ERISA, family leave, GINA, Health Care Reform, Health Plans, Human Resources, Income Tax, Insurance, Internal Controls, medical leave, Military Leave, Privacy, Risk Management, Stimulus Bill, Tax | Tagged: ADA, COBRA, Corporate Compliance, Disability Discrimination, Employee Benefits, Employer, Employers, Employment, Employment Agreements, ERISA, Health Insurance, HealthP Plans, Human Resources, Insurance, Insurer, Internal Controls, Labor, Managed Care, Medical Coverage, Military Leave, Occupational Injury, Premium Subsidy, Risk Management, Stimulus Bill, Subsidy Bill, Tax | Permalink
Posted by Cynthia Marcotte Stamer

New GINA Health Plan Nondiscrimination Rules Effective For Plan Years Beginning On or After Today

May 21, 2009

New restrictions on the collection, use and disclosure of genetic information applicable to employer and union-sponsored group health plans enacted under Title I of the Genetic Information Nondiscrimination Act of 2008, Public Law No. 110-233 (GINA) for group health plan years that begin on or after today (May 21, 2009). For non-calendar year plans with plan years beginning between June 1 and December 1, the effective date occurs on first day of their 2009 plan year. For example, the effective date will be June 1, 2009 for a plan with a 2009 plan year that begins June 1. For calendar year plans, the compliance deadline is January 1, 2010. All employer-sponsored group health plans are required to comply with GINA. There are no small group exceptions.

GINA In A Nutshell

GINA amended federal law to include specific prohibitions against certain discrimination based on genetic information by group health plans and health insurers (Title I) and to prohibit discrimination based on genetic information by employers of 15 or more employees (Title II).

Meanwhile, employers, unions and others face their own new prohibitions against genetic information based employment discrimination added by Title II of GINA, which take effect November 21, 2009. The Equal Employment Opportunity Commission (EEOC) published proposed regulations interpreting Title II of GINA in March, 2009.

Broad Definition of “Genetic Information”

The broad range of information included within GINA’s broad definition of “genetic information” means its new restrictions have a sweeping reach when applied to most group health plans. GINA defines “genetic information to include with respect to any individual, information about:

Such individual’s genetic tests;
The genetic tests of family members of such individual; and
The manifestation of a disease or disorder in family members of such individual.

GINA also specifies that any reference to genetic information concerning an individual or family member includes genetic information of a fetus carried by a pregnant woman and an embryo legally held by an individual or family member utilizing an assisted reproductive technology.

Pending issuance of regulatory guidance, GINA’s inclusion of information about the “manifestation of a disease or disorder in family members” raises potential challenges for a broad range of group health plan health assessment and other wellness and disease management programs which provide financial incentives or condition eligibility on the provision of family health histories or other information that could be construed as genetic information.

Group Health Plan Genetic Testing Collection and Nondiscrimination Rules

Under GINA’s nondiscrimination rules, group health plans and health insurers may not:

Request, require or purchase genetic information for underwriting purposes or in advance of an individual’s enrollment;
Adjust premiums or contribution amounts of the group based on genetic information;
Request or require an individual or family member to undergo a genetic test except in limited situations specifically allowed by GINA;
Impose a preexisting condition exclusion based solely on genetic information, in the absence of a diagnosis of a condition;
Discriminate against individuals in eligibility and continued eligibility for benefits based on genetic information; or
Discriminate against individuals in premium or contribution rates under the plan or coverage based on genetic information, although such a plan or issuer may adjust premium rates for an employer based on the manifestation of a disease or disorder of an individual enrolled in the plan.

GINA Amendments To Health Plan Privacy Rules Under HIPAA

The HITECH Act amended and increased civil penalties for HIPAA privacy violations in many circumstances effective February 17, 2009.

Regulatory Guidance Status

As the the deadline for compliance for post May 20, 2009 plan years is rapidly approaching, however, many group health plans and their sponsors will need forward with their compliance arrangements in the absence of regulatory guidance interpreting these requirements.

The Department of Labor Employee Benefit Security Administration (EBSA);
The Internal Revenue Services (IRS), and
The Department of Health & Human Services.

While these three agencies previously published a request for public comments about issues under Title I’s provisions, see http://edocket.access.gpo.gov/2008/pdf/E8-24194.pdf, none of these three agencies as of May 20, 2009 has published interim or other regulations interpreting the GINA provisions within their scope of responsibility since the formal comments period ended December 9, 2009. Although the EBSA Spring 2009 regulatory agenda reflected it intended to publish interim regulations by today and agency officials continue to indicate they intend to publish guidance “soon,” no guidance had been published as of May 20, 2009.

Even if the agencies issue guidance by the end of May plan sponsors and administrators of group health plans with new plan years beginning in the next 60 to 90 days are expressing concern that they will have inadequate time to complete compliance arrangements. As a result, in addition to guidance about GINA’s requirements generally, some are hopeful that the guidance with include transition rules or other relief to allow more time to comply with the regulations when finally issued. Regulators as of May 20, 2009 had not given any indication that they plan or perceive that they are authorized to provide such relief.

Other Information & Resources

We hope that this information is useful to you. You can register to receive future updates and information about upcoming programs, access other publications by Ms. Stamer and access other helpful resources at CynthiaStamer.com For additional information about Ms. Stamer and her experience, see here or contact Ms. Stamer directly. If you or someone else you know would like to receive updates about developments on these and other human resources and employee benefits concerns, please be sure that we have your Currant contact information – including your preferred e-mail- by creating or updating your profile at CynthiaStamer.com. If you would prefer not to receive these updates, please send a reply e-mail with “Remove” in the subject line to support@SolutionsLawyer.net. You also can register to participate in the distribution of these updates by registering to participate in the Solutions Law Press HR & Benefits Update Blog here.

Comments Off on New GINA Health Plan Nondiscrimination Rules Effective For Plan Years Beginning On or After Today | Corporate Compliance, EEOC, Employee Benefits, Employers, GINA, Health Plans, Privacy, Risk Management, Wellness | Tagged: Corporate Compliance, Disability Discrimination, Disease Management, Employee Benefits, Employer, Employers, Employment, ERISA, GINA, Health Insurance, Health Plans, Human Resources, Insurance, Insurer, Managed Care, Medical Coverage, Risk Management, Tax | Permalink
Posted by Cynthia Marcotte Stamer

EEOC GIVES EMPLOYERS LIMITED EMPLOYER GUIDANCE ABOUT ADA ISSUES IN SWINE FLU RESPONSE

May 13, 2009

Recent concerns over the H1N1 Swine Flu (swine flu) pandemic and warnings of a possible resurgence of the swine flu pandemic or some other pandemic in the future is forcing many employers to question when concerns that an employee suffers from a contagious disease can justify the employer making inquires about the health of an employee or the exclusion of the employee from the workplace. New guidance set forth in the “U.S. Equal Employment Opportunity Commission ADA-Compliant Employer Preparedness For the H1N1 Flu Virus” (Guidance) published by the U.S. Department of Labor Equal Employment Opportunity Commission (EEOC) on May 4, 2009 provides some insights for employers about the EEOC’s perspective on these questions.

The Guidance details the EEOC’s answers to certain basic questions about when the EEOC views certain workplace preparation strategies for responding to the 2009 flu virus as compliant with the Americans with Disabilities Act (ADA). Employers considering updates to their current pandemic and infectious disease response plans are cautioned that in addition to potential ADA exposures, practices for periods after November 21, 2009 also generally must be tailored to comply with new restrictions on employer’s collection of and discrimination based on genetic information based on the Genetic Information Nondiscrimination Act of 2008 (GINA). Proposed regulations interpreting the employment provisions of GINA published by the EEOC in March 2009 do not specifically address the implications of GINA on employer planning or response to pandemic concerns.

ADA Concerns Apply To Employers Planning For & Applying Swine Flu Response

Title I of the Americans with Disabilities Act (ADA) protects applicants and employees from disability discrimination. Among other things, the ADA regulates when and how employers may require a medical examination or request disability-related information from applicants and employees, regardless of whether the individual has a disability. The Guidance confirms that the EEOC views this requirement as affecting when and how employers may request health information from applicants and employees regarding H1N1 flu virus.

Effective January 1, 2009, Congress amended the Americans with Disabilities Act pursuant to the Americans with Disabilities Act Amendments Act of 2008 (ADAAA) to change the way that the ADA’s statutory definition of the term “disability” historically has been interpreted by certain courts. The ADAAA amendments generally are intended and expected to make it easier for certain individuals to qualify as disabled under the ADA. While the Guidance announces that the EEOC intends to revise its ADA regulations to reflect the broader group of persons protected as disabled under the ADAAA amendments, it also indicates that the EEOC does not perceive that the ADAAA changes the actions prohibited by the ADA as they relate to common pandemic planning and response activities. Consequently, the Guidance states that the EEOC views the guidance in “Disability-Related Inquiries & Medical Examinations of Employees Under the ADA” published by the EEOC in 2000 and its “Enforcement Guidance: Preemployment Disability-Related Questions & Medical Examinations” published in 1995 as setting forth the governing rules for medical testing, inquires and other pandemic response planning under the ADA.

Under the ADA, an employer’s ability to make disability-related inquiries or require medical examinations is analyzed in three stages: pre-offer, post-offer, and employment.

At the first stage (prior to an offer of employment), the ADA prohibits all disability-related inquiries and medical examinations, even if they are related to the job.
At the second stage (after an applicant is given a conditional job offer, but before s/he starts work), an employer may make disability-related inquiries and conduct medical examinations, regardless of whether they are related to the job, as long as it does so for all entering employees in the same job category.
At the third stage (after employment begins), an employer may make disability-related inquiries and require medical examinations only if they are job-related and consistent with business necessity.
The ADA requires employers to treat any medical information obtained from a disability-related inquiry or medical examination (including medical information from voluntary health or wellness programs), as well as any medical information voluntarily disclosed by an employee, as a confidential medical record. Employers may share such information only in limited circumstances with supervisors, managers, first aid and safety personnel, and government officials investigating compliance with the ADA.

Employers deviating from these requirements when administering their pandemic planning or response risk disability discrimination liability under the ADA unless they otherwise can defend their action under one of the exceptions to the ADA’s disability discrimination prohibitions. When making post-offer inquiries or requiring post offer examinations or imposing other conditions for safety reasons, the Guidance and EEOC in unofficial discussions have emphasized the importance of the employer’s ability to demonstrate the job or safety relevance of the medical inquiry or examination based on credible scientific evidence such as the latest scientific evidence available from the World Health Organization (WHO) and the Centers for Disease Control and Prevention (CDC).

Other than emphasizing the importance of acting appropriately in response to credible scientific evidence and pointing to preexisting guidance, the Guidance does not extensively address with specificity the circumstances under which the EEOC will view any particular action taken by an employer as defensible under the safety or other exceptions of the ADA. Likewise, the Guidance does not discuss in any details the conditions, if any, under which the EEOC would view suffering, a history of suffering or association with or exposure to swine flu as qualifying an individual as disabled or perceived to be disabled for purposes of the ADA. Consequently, employer must rely on other less specifically tailored guidance for purposes of assessing the defensibility of a proposed action on these grounds.

Planning for Absenteeism Under ADA

When planning for a possible pandemic, employers must be careful about when and how they ask employees about factors, including chronic medical conditions that may cause them to miss work in the event of a pandemic. According to the Guidance, an employer may survey its workforce to gather personal information needed for pandemic preparation if the employer asks broad questions that are not limited to disability-related inquiries. An inquiry would not be disability-related if it identified non-medical reasons for absence during a pandemic (e.g., mandatory school closures or curtailed public transportation) on an equal footing with medical reasons (e.g., chronic illnesses that weaken immunity). The Guidance includes a sample of what the EEOC views as ADA-compliant survey that could be given to all employees before a pandemic.

The Guidance also indicates that where appropriate safeguards are applied to comply with the ADA, it also may be appropriate for an employer under certain limited circumstances, to require entering employees to have a medical test post-offer to determine their exposure to the influenza virus. According to the EEOC, the ADA permits an employer to require entering employees to undergo a job relevant medical examination after making a conditional offer of employment but before the individual starts work, if all entering employees in the same job category must undergo such an examination. Thus, the Guidance reflects that the requirement by an employer as part of its pandemic influenza preparedness plan that all entering employees in the same job categories undergo the same post offer medical testing for the virus in accordance with recommendations by the WHO and the CDC in response to a new influenza virus may be ADA-compliant.

Infection Control in the Workplace Under the ADA

The Guidance also discusses the EEOC’s perceptions about the ADA implications of employer use of certain infection control practices in the workplace during a pandemic provided that the requirements are applied in a nondiscriminatory fashion consistent with the ADA. For instance, the Guidance states that employers generally may apply with following infection control practices without implicating the ADA:

Require all employees to comply with certain infection control practices, such as regular hand washing, coughing and sneezing etiquette, and tissue usage and disposal without implicating the ADA;
May require employees to wear personal protective equipment provided that where an employee with a disability needs a related reasonable accommodation under the ADA (e.g., non-latex gloves, or gowns designed for individuals who use wheelchairs), employer provides these accommodations absent undue hardship;
Encourage or require employees to telework as an infection-control strategy, based on timely information from public health authorities about pandemic conditions or offer telework as a possible reasonable accommodation.

In all cases, of course, the Guidance cautions that employers must not single out employees either to telework or to continue reporting to the workplace on a basis prohibited by the ADA or any of the other federal Equal Employment Opportunity laws.

Impending GINA Rules

As signed into law, GINA amends Title VII of the Civil Rights Act, the Health Insurance Portability and Accountability Act of 1996 (HIPAA), the Employee Retirement Income Security Act of 1974 (ERISA), the Public Health Service Act, the Internal Revenue Code of 1986, and Title XVIII (Medicare) of the Social Security Act to implement sweeping new federal restrictions on the collection, use, and disclosure of “genetic information” by employers, employment agencies, labor organizations, joint labor-management committees, group health plans and insurers and their agents. GINA’s group health plan restrictions are scheduled to take effect May 21, 2009. The employment related genetic testing rules of GINA take affect November 21, 2009. Employers and other covered entities will need to carefully review and timely update their pandemic and other infectious disease response practices as well as their group health plan, family leave, disability accommodation, and other existing policies in light of these new federal rules.

Although EEOC has not finalized its implementing regulations for GINA yet, employers should anticipate that GINA will impact their pandemic and other related practices. The implications of GINA for employers and other entities covered by its provisions because of its broad definition of genetic information.

Under GINA, “genetic information” is defined to mean with respect to any individual, information about:

Such individual’s genetic tests;
The genetic tests of family members of such individual; and
The manifestation of a disease or disorder in family members of such individual.

Pending issuance of final regulatory guidance, Gina’s inclusion of information about the “manifestation of a disease or disorder in family members” raises potential challenges for a broad range of wellness and safety, leave, and other employment and benefit practices, particularly as apparently will reach a broader range of conditions than those currently protected under the disability discrimination prohibitions of the Americans With Disabilities Act (“ADA”).

Depending on the contemplated inquiry or practice, certain inquiries or actions intended for use as part of an employer’s pandemic preparedness or response activities could fall within the scope of GINA’s protections. For this reason, employers also should consider the potential treatment of a proposed pandemic preparation or response activity intended to be applied after GINA takes effect in light of GINA. Additionally, employers also should consider the risk that information collected under existing or previously applied pandemic or other infectious disease prevention and response activities might qualify for additional protection when GINA takes effect in November, 2009.

Other Resources

“Planning for the Pandemic” authored available at http://www.cynthiastamer.com/documents/speeches/20070530%20Pan%20Flu%20Workplace%20Privacy%20Issues%20Final%20Merged.pdf;
“Dealing With Leave & Other Workplace Fallout of Swine Flu Pandemic Response” available at http://cttlegalhr.wordpress.com/2009/05/04/dealing-with-leave-other-workplace-fallout-of-swine-flu-pandemic-response; and
“Workforce Swine Flu Pandemic Survival Preparedness Tips For Business” available at http://cttlegalhr.wordpress.com/2009/04/29/hello-world.

Comments Off on EEOC GIVES EMPLOYERS LIMITED EMPLOYER GUIDANCE ABOUT ADA ISSUES IN SWINE FLU RESPONSE | Absenteeism, ADA, Disease Management, EEOC, Employee Benefits, GINA, Health Plans, Human Resources, Internal Controls, Pandemic, Privacy, Risk Management, Swine Flu, Telecommuting | Tagged: ADA, Corporate Compliance, Disability Discrimination, Disease Management, Employee Benefits, Employers, Employment, ERISA, genetic testing, GINA, Health Insurance, Health Plans, Human Resources, Internal Controls, Labor, Light Duty, Medical Coverage, Pandemic, Risk Management, Swine Flu, Wellness | Permalink
Posted by Cynthia Marcotte Stamer

Employer Assistance and Resource Network Offers Free Webinars For Employers During October In Honor of Disability Employment Awareness Month on Thursdays in October from 2:00 – 2:30 p.m. Eastern Time. Topics will include Employer Preparedness to Include Veterans with Disabilities

New Affordable Care Act Guidance Helps Some Health Plans Stay Grandfathered

OCR’s McAndrew Speaks At 5/16 JCEB HIPAA Teleconference; OCR/NIST To Share Other HIPAA Training On Line

EEOC Finalizes Updates To Disability Regulations In Response to ADA Amendments Act

Update Employment Practices To Manage Genetic Info Discrimination Risks Under New EEOC Final GINA Regulations

New Affordable Care Act Mandated High Risk Pre-Existing Condition Insurance Pool Program Regulations Prohibit Plan Dumping of High Risk Members, Set Other Rules

Register Now For 8/24 2010 Health Plan Update Briefing

CBO Raises Estimated Cost of Health Care Reforms As Employers, Health Plans Brace Costs Of Newly Effective & Impending Mandates

Stamer To Discuss “Health Care Reform’s Implications For Employers, Health Plans & Employee Benefits Practitioners” At May 5 Dallas Bar Association Meeting

Privacy Rule Changes & Posting of Breach Notices On OCR Website Signal New Enforcement Risks For Health Plans, Their Sponsors & Business Associates

Health Plan Liability Heats Up As Plans & Businesses Face New Obligations, Costs & Exposures under New HIPAA Privacy Rules Effective 2/17 & Other Expanding Federal Health Plan Mandates

Health Plans & Business Associates Face 2/17 Deadline To Update Policies, Contracts & Procedures For HIPAA Privacy Rule Changes

Health Plans & Employers Can Expect Pressure To Pay For Childhood Obesity Counseling From New American Academy of Pediatrics Report

Stamer Speaks To CPAs About “Privacy & Information Security: Managing Your Accounting Practice’s Liabilities & Counseling Your Clients” January 12, 2010

Labor Department To Expand Employee Benefits, Wage & Hour, OSHA & Other Reporting & Disclosure Requirements & To Implement Other New Employee Benefit Regulations

DOL Shares 2010 Regulatory Plans Monday, December 7; Get A Sneak Peek on Its Plans

Employer H1N1 Virus Risk Management Requires Employer Care To Manage Virus Risks Without Violating Employment Discrimination or Other Laws

New GINA Genetic Information Based Employment Discrimination & Confidentiality Mandates Take Effect

EEOC Prepares To Broaden “Disability” Definition Under ADA Regulations

Register Now For HITECH Act Health Data Security & Breach Update: Learn What You Must Do This Month To Comply With New Health Data Breach Regulations

ADAAA Amendment Broader ADA “Disability” Definition Not Retroactive, Employer Action Needed To Manage Post 1/1/2009 Risks

Employer & Other Health Plans & Other HIPAA-Covered Entities & Their Business Associates Must Comply With New HHS Health Information Data Breach Rules By September 23

Health Plans Must Comply with New HHS Interim Final Data Breach Rules Beginning September 24; Register to Participate In September 10th Briefing on New Rules In Person or Via Telephone

Registration Open For June 23 Dallas HR 2009 Health Plan Eligibility Update Program

New GINA Health Plan Nondiscrimination Rules Effective For Plan Years Beginning On or After Today

EEOC GIVES EMPLOYERS LIMITED EMPLOYER GUIDANCE ABOUT ADA ISSUES IN SWINE FLU RESPONSE

Email Subscription

Pages

Recent Posts

Archives

Share this blog

Solutions Law Press HR & Benefits Update