Part II: ONC’s Cures Act Info Blocking Rule: Compliance and Implementation Challenges

May 19, 2021

Access the on-demand version of part II here.

As patient health information travels to and from an increasing number of electronic medical record systems, health information exchanges, and smartphone applications, there are increasing compliance requirements for health care providers, including health centers.  The most recent requirements are found in the Office of the National Coordinator for Health Information Technology (ONC)’s “21st Century Cures Act:  Interoperability, Information Blocking and the ONC Health IT Certification Program” Final Rule (ONC’s Cures Act Final Rule).  Applicable to health care providers as of April 5th, the ONC’s Cures Act Final Rule: 

  • Requires health care providers to provide patients with access to their electronic health information (EHI) at no cost;  
  • Prohibits “information blocking” which includes practices that are likely to interfere with the access, exchange or use of EHI; and
  • Includes eight exceptions to information blocking – including exceptions for preventing harm to a patient or other person, protecting privacy and security, and infeasibility – under which a health care provider may prohibit access, exchange or use of EHI, if certain conditions are met.  

Patients (and other individuals and entities) can now report information blocking to the ONC, leading to investigations and potential penalties. 

This two-part webinar series includes two webinars and a discount on FTLF’s Confidentiality Toolkit which includes a new section on the ONC’s Cures Act Final Rule and updates to the related HIPAA Privacy Rule documents.  

In this second webinar, the presenters will address key implementation challenges, including:

  • Whether and how to provide patient education about the privacy and security risks of third-party apps
  • Details of how to respond to information blocking complaints, including investigations by the federal government
  • Responses to frequently asked questions, such as:
    • Whether access to the patient portal is a request for access, exchange or use of EHI
    • What to do when various systems (electronic medical records, dental records systems, portals, etc.) prohibit or delay access to EHI
    • Strategies for complying with other privacy and security laws, including state laws protecting adolescent health records 

Attendees are encouraged to submit their questions prior to, during and in between the webinars so the presenters can respond during the second webinar. To submit a question prior to the second webinar, please email Dianne Pledgie at

The On-Demand version of this webinar will be available for purchase after the conclusion of the live webinar. 

Target Audience

  • Compliance Officers and Risk Managers
  • HIPAA Privacy and Security Officers
  • Chief Information Officers
  • C-Suite Members
  • Site Managers

Learning Objectives

After this webinar series, attendees will be better able to:

  • Identify patient requests for their EHI and the requirements to respond under the ONC Cures Act Final Rule
  • Determine whether an exception to information blocking applies and develop documentation to support that conclusion
  • Develop informational resources for patients on the privacy and security of health apps
Course summary
Available credit: 
  • 1.00 Certificate of Attendance
Course opens: 
Course expires: 
Event starts: 
05/19/2021 - 3:00pm EDT
Event ends: 
05/19/2021 - 4:00pm EDT


A Partner in the firm’s health law practice group, Molly advises health centers on the management of clinical, employment and workforce related risks, with a particular focus on professional liability, Federal Tort Claims Act, and HIPAA matters. From her experience as both a private attorney and in-house counsel, Molly knows the importance of managing liability and risk issues in mission-driven organizations. [Full Bio]


As Partner and Compliance Counsel with the firm’s health law practice group, Dianne advises health centers on implementing effective compliance programs and on addressing top compliance risk areas. Dianne counsels health centers and other organizations on developing compliance programs that include the OIG’s seven elements, respond to identified compliance risk areas, and reflect the organization’s culture.  Dianne also advises health centers and other organizations on patient privacy and confidentiality, including the HIPAA Privacy Rule and 42 CFR Part 2.  She has experience responding to privacy and security incidents, including determining whether there has been a breach, notifying patients and the government, and creating corrective action plans. [Full Bio]

Participants can earn up to 1.20 CPE credits in Specialized Knowledge and Applications upon completion of all course requirements.


If you purchase CPE credit for this webinar you must satisfy the following conditions in order to receive your certificate:

  1. Answer at least 3 of the 5 polling questions during the webinar
  2. Complete the evaluation survey after the conclusion of the webinar or in the follow-up email

Upon completion of these requirements, FTLF will email you your CPE Certificate within seven (7) business days.


  • Prerequisites: None 
  • Target Audience: Compliance Officers and Risk Managers, HIPAA Privacy and Security Officers, Chief Information Officers, C-Suite Members, Site Managers
  • Advanced Preparation: None  
  • Program Level: All
  • Delivery Method: Group Internet Based
  • Attendance Requirements: In order to be awarded the full credits, you must respond to three (3) out of five (5) polling questions.

Feldesman Tucker Leifer Fidell LLP is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website (formerly

Available Credit

  • 1.00 Certificate of Attendance
Please login or register to take this course.

This webinar is Part II of a two-part series. To purchase the series, click here.

Access to the recorded version of this webinar is included in your purchase.


The recorded version of this webinar will be available within seven (7) business days after the conclusion of the live event. You will have access to the recording for 180 days after the live webinar series has concluded. Once posted to your account, you can view this webinar anytime on-demand during the access period identified in the Recorded Webinar Now Available email. For additional information on viewing and accessing webinars, view our full terms and conditions here.


All registrations made the day of a live webinar must be completed using a credit card or PayPal. We do not accept check payments or purchase orders for live webinars on the day of the webinar. If you wish to pay by check, please register in enough time for your check to reach our office; we must receive your check before we grant access to the webinar. If we receive your check after the live webinar, we will grant you access to the recorded webinar. For the most current information, please visit our FAQ page.


For orders of live webinars, FTLF will issue a full refund for cancellations requested at least one week PRIOR to the live webinar. We do not provide refunds for no-shows; however, you may request access to the recorded version of the webinar. If you ordered the wrong webinar and need to transfer your registration to a different program, please Contact Us. View our full policy on refunds and cancellations on our FAQ page.

Required Hardware/Software

Google Chrome and Mozilla Firefox are the preferred browsers.