Which major regulatory body oversees health information management in the United States?

The Centers for Medicare and Medicaid Services (CMS) is indeed the major regulatory body overseeing health information management in the United States. CMS is responsible for administering the nation's major healthcare programs, including Medicaid and Medicare, which both significantly influence health information practices due to their regulatory requirements.

CMS sets standards for the security and privacy of health information, particularly through the Health Insurance Portability and Accountability Act (HIPAA), which establishes guidelines for the handling of protected health information (PHI) by healthcare providers and organizations. The policies, regulations, and standards established by CMS ensure that healthcare organizations properly manage health information to improve patient care and information governance.

Other options do not hold the same regulatory authority over health information management. For instance, the World Health Organization (WHO) focuses on global health issues and public health strategies but does not directly regulate health management practices within the United States. The Food and Drug Administration (FDA) is primarily focused on the safety and efficacy of food and drugs, while the Centers for Disease Control and Prevention (CDC) plays a critical role in public health and disease prevention but does not regulate health information management practices themselves. Therefore, CMS stands out as the primary regulatory authority in this context.