Provider Access API

Everything you need to know about the Provider Access API including its purpose, who it affects, and when it goes into effect.

1up Provider Access API visualized with doctor on a tablet

What Is The Provider Access API?

Impacted Payers must:

FHIR® API conformant with the technical requirements outlined in 45 CFR §170.215 that supports the delivery of any active member’s clinical, claims, encounter, and prior authorization data to an in-network or enrolled provider who has a verified treatment relationship with such member within one (1) business day from the receipt of a valid request for such information by the provider. Data shall only be shared with a provider via the Provider Access API if (a) the member to whom the data pertains is attributed by the payer to the provider; (b) the member has not opted out of data sharing via the Provider Access API; and (c) the provider is part of the payer’s network of providers, as evidenced by either a written contract, or in the case of Medicaid and/or CHIP where such provider is enrolled with the state as a Medicaid/CHIP provider.

All data classes included under the content standard in 45 CFR 170.215 [currently USCDI v.1 until 2026, then USCDI v.3] for any encounter with a date of service within five (5) years from the date of the request.

Any data related to a prior authorization request and decision for any active prior authorization or for any prior authorization request where the date of last status change was less than one (1) year.

Prior Authorization Data includes: Date of Approval (and for how long such approval remains valid); items and/or services approved; Any other documentation sent by the provider in support of the prior authorization request, including but not limited to structured or unstructured clinical notes, lab results, scores or assessments, past medications or procedures, progress notes, or diagnostic report.

Any data concerning adjudicated claims, including claims data for payment decisions that may be appealed, were appealed, or are in the process of appeal, with a date of service on or after January 1, 2016.

Any encounter data from capitated providers with a date of service within five (5) years from the date of the request.

Who Does This Impact?

When Does It Take Effect?

What Should You Do Next?

Connect with 1upHealth to learn more about the Provider Access API and how we can help you prepare for when it goes into effect.

Explore Other CMS APIS

Learn the purpose of the rules, who they affect, and when they go into effect.

Payer-to-Payer Data Exchange on FHIR® Overview

Learn More

Prior Authorization API Overview

Learn More

Provider Directory API Overview

Learn More

Patient Access API Overview

Learn More

Ready to Learn More About Healthcare’s Modern Data Platform?