The Centers for Medicare and Medicaid Services’ mandated use of Qualified Data Registries to report Clinical Quality Measures (CQMs) associated with Meaningful Use, PQRS, GPRO, DSRIP, HEDIS, CHIPRA, etc. spotlights the need to ensure that these entities meet the privacy and security obligations expected of all large-scale handlers of protected health information (PHI).
In response to the privacy and security challenges of healthcare data submission of this kind, we have developed the Data Registry Accreditation Program (DRAP), which establishes a trust framework between stakeholders to ensure a common level of system functionality across the industry. The accreditation program recognizes superior capabilities through the extensive review of data registry stakeholders in the areas of privacy, security, mandated standards, and key operational functions. The program assesses health information and oversight for meeting privacy and security, HIPAA, HITECH, 21st Century Cures Act, Omnibus Rule and ACA requirements, as well as technical performance, business processes and resource management.
The comprehensive third-party review provides an additional level of confidence for organizations that are under industry competitive pressures to demonstrate the rigor and structure of the registry database as envisioned and supported by the Centers for Medicare and Medicaid Services (CMS). The program is designed for those registry database stakeholders who provide these services to their stakeholders which can include health information exchanges (HIEs), regional extension centers (RECs) as well as others. With this recognition from DirectTrust, an organization raises awareness about the quality of its products and services as well as compliance with industry standards.
The program, developed by industry peers, includes the criteria, standards and framework for creating a core set of requirements for compliance. In addition, the program:
ensures trust for managing the registry credentials used between exchange users;
reviews the key functions of structure, portability, interoperability, clinical integration, compliance monitoring, reporting and industry certification/accreditation; and
serves as a baseline standard for stakeholders to assure compliance with CMS requirements and guidelines.
Criteria for the Data Registry Accreditation Program is available on our Criteria Page. To begin the application process, please complete the application form.
Also, are you looking for hands-on support to help you through the pre-assessment steps, readiness planning process and more? Learn about our Consulting and Advisory Services which have been designed to provide additional guidance in completing this accreditation program.