New EHR Certification Rules Including Self-Declaration – MACRA Monday

This post is part of the MACRA Monday series of blog posts where we dive into the details of the MACRA Quality Payment Program (QPP) and related topics.

Elise Sweeney Anthony and Steven Posnack recently announced on the ONC Health IT Blog two major changes to the EHR certification program. In some ways, it shows a maturity of the EHR certification program, but in other ways, it’s ONC kind of taking a more hands off approach to EHR certification.

Here are the two big changes they made:

  1. Approving more than 50% of test procedures to be self-declaration; and
  2. Exercising discretion for randomized surveillance of certified health IT products.

The first one is really fascinating since they’re making 30 out of the 55 certification criteria as “self-declaration only.” That basically means that EHR vendors will just have to claim they meet the requirements. The ONC-ACBs won’t be certifying those 30 test procedures. In many ways, it reminds me of the meaningful use self-attestation. Does that mean that ONC-ACBs will cut their costs in half? Don’t be holding your breath on that one.

Let’s just hope that most EHR vendors don’t self-certify the way eCW approached EHR certification. Although, the eCW EHR certification issues are the perfect example of why a company self certifying their EHR software or the ONC-ACB certifying the EHR software is just about the same. I haven’t seen which test procedures will be self-declared, but my guess is that it was the ones that the ONC-ACBs weren’t really doing much to test and certify anyway. Ideally, this will free up the ONC-ACBs to dive deeper into the 25 test procedures they’ll still complete so they can avoid another eCW like incident.

Some might wonder why we don’t just take the self-declared EHR certification tests altogether if there’s no one that’s going to be checking them. What those people miss is that the self-declaration still keeps the EHR vendors on the hook for properly implementing the EHR certification criteria. If it’s discovered that they claimed to be compliant but aren’t, then the government can go after the EHR vendor for false claims.

The second change has me a little more puzzled. I’m not sure why they would want to release ONC-ACBs from the requirement to randomly audit EHR certifications. Maybe they didn’t discover any issues during their random audits and so they didn’t see a need to continue them. Or maybe the ONC-ACBs said they were going to pull out as certifying bodies if the government didn’t lighten the EHR Certification load. This is all conjecture, but they could be some of the reasons why ONC decided to make this change. They did offer the following insight into their reasoning:

This exercise of enforcement discretion will permit ONC-ACBs to prioritize complaint driven, or reactive, surveillance and allow them to devote their resources to certifying health IT to the 2015 Edition.

I wonder how many complaints the ONC-ACBs have gotten about the EHR software they’ve certified. Have they just been so overwhelmed with complaints that they need more time to deal with those complaints and so audits aren’t needed? I’d be surprised if this was the case. At this point I imagine most people with EHR certification issues will be calling the whistle blower attorneys, but I could be wrong.

All in all, I don’t think these EHR certification changes are a huge deal. It’s largely a maturing of the EHR certification program and does little to help the EHR certification burden on software vendors. Maybe the ONC-ACBs will charge a little less for their certification, but that’s always been a negligible cost compared to the development costs to become a certified EHR. I’m sure the ONC-ACBs are happy with these changes though.

What do you think of these changes? Any other impacts I haven’t described above that we should consider?

About the author

John Lynn

John Lynn

John Lynn is the Founder of the, a network of leading Healthcare IT resources. The flagship blog, Healthcare IT Today, contains over 13,000 articles with over half of the articles written by John. These EMR and Healthcare IT related articles have been viewed over 20 million times.

John manages Healthcare IT Central, the leading career Health IT job board. He also organizes the first of its kind conference and community focused on healthcare marketing, Healthcare and IT Marketing Conference, and a healthcare IT conference,, focused on practical healthcare IT innovation. John is an advisor to multiple healthcare IT companies. John is highly involved in social media, and in addition to his blogs can be found on Twitter: @techguy.


  • ONC should be ashamed of themselves in my opinion. There are several “certified” EHRs in the market that are NOT meeting certification standards. One of my clients was told “We just had to prove we had the capability, we didn’t have to prove it worked and have no intention of further development”. And now these same vendors get to self-certify?

    Further, where is the oversight of the testing bodies? It’s obvious they haven’t fully done their job to this point. Even filing a complaint really hasn’t moved the needle. Frustrating.

  • Kevin,
    That’s the real problem. Self certification is just as good as what they’ve been doing. However, not taking complaints seriously is where I think they should spend their effort.

Click here to post a comment