Frequently Asked Questions | Merit-Based Incentive Payment System (MIPS) | 3. I’m concerned about patient privacy and confidentiality. Is patient data submitted to MIPS de-identified?

Frequently Asked Questions Updated for 2023

3. I’m concerned about patient privacy and confidentiality. Is patient data submitted to MIPS de-identified?

When you submit patient data using an EHR (2015 Edition Certified EHR Technology), qualified registry, or qualified clinical data registry (QCDR), the vendor should be handling the data in a manner consistent with applicable information, privacy, security, and disclosure laws. If you are submitting your quality measures data using the claims reporting method, the claims will be submitted directly to CMS.