Who is affected by this change?

This affects CareFirst BlueCross BlueShield on Commercial plans.

When does this change take effect?

This change is effective Jul 22, 2022.

Back to dashboard

CommercialAdministrativeMedium impact

CareFirst Updates HIPAA Verification for Member Security for Provider Service

CareFirst BlueCross BlueShield·Provider News

Effective date

Jul 22, 2022

We identified it

Jun 20, 2026

Days to comply

—

Summary

CareFirst now requires providers to provide the patient's full name plus three additional pieces of identifying information when calling Provider Service for HIPAA verification purposes. This affects all phone interactions with CareFirst Provider Service.

Action Required

Action needed

Immediately: Front desk and billing staff must gather patient's full name plus three of the following before calling CareFirst Provider Service: date of birth, address, zip code, patient ID number, or phone number. Update staff training and create quick reference cards with required information list.

Related policy hubs

CareFirst BlueCross BlueShield policies