CMS Announces 90-Day Enforcement Delay for New HIPAA Standards

The Office of E-Health Standards and Services (OESS) within CMS announced Thursday that it would not initiate enforcement action until March 31, 2012, for any HIPAA covered entity that is not in compliance with new HIPAA Transaction Standards (5010). However, the compliance date for using the new standards remains January 1, 2012.

OESS is encouraging all covered entities to work with their trading partners to become compliant with the new HIPAA standards, and to determine their readiness to accept the new standards as of January 1, 2012. OESS will continue to accept complaints associated with compliance during the 90-Day Period of Enforcement Discretion (Jan. 1 – Mar. 31, 2012), but if requested by OESS, covered entities that are the subject of complaints must produce evidence of either compliance or a good faith effort to become compliant with the new HIPAA standard during the 90-day period.

Links to information on Version 5010 standards are available at:

See also, the NCMS Version 5010 & ICD10 Resources webpage at:


Share this Post