This year, the MIPS security risk assessment requirement (SRA) in MIPS, could impact your MIPS Advancing Care Information (ACI) score if you have not completed your annual SRA. The ACI represents 25% of the MIPS payment. Under the ACI, practices are required to maintain a valid information security risk assessment. That means that medical practices that have not done an SRA could lose out on the entire 25% of the ACI component. While federal regulations have required healthcare providers to conduct risk assessments for the past 12 years, the 2017 MIPS requirement is intended to pressure practices to get serious about their SRA compliance. In partnership with HIPAAOne®, NextGen Healthcare can help you fully meet your SRA obligations and reduce risk for your practice. In addition, if you are attending UGM 2017, be sure to attend this session: HIPAA Compliance: Maximum Results Minimal Effort, November 7 from 9-10:15 AM. For more information, read the article here.