CMS Price Transparency Guidelines

Understanding 45 CFR 180.50 compliance requirements

Official CMS Resources

Overview

On January 1, 2021, CMS implemented the Hospital Price Transparency final rule (45 CFR 180.50) requiring hospitals to make standard charges publicly available in machine-readable formats. Non-compliance can result in fines ranging from $300 to $5,500 per day.

This guide summarizes the key requirements. Always refer to official CMS guidance for authoritative information.

Who Must Comply?

The rule applies to:

  • All hospitals operating in the United States
  • Licensed or certified as a hospital under state law
  • Hospitals with a provider agreement under Medicare

Exemptions: Certain specialty hospitals and psychiatric facilities may have modified requirements. Consult CMS guidance for your specific facility type.

Core Requirements

1. Machine-Readable File

Hospitals must publish a machine-readable file containing ALL standard charges for items and services.

  • Must be in JSON, XML, or CSV format
  • Must be accessible via a public URL
  • No login, registration, or barriers to access
  • Must include required data elements (see below)
  • Must be updated at least annually

2. Consumer-Friendly Display

In addition to the machine-readable file, hospitals must provide a consumer-friendly display of prices for 300 "shoppable services."

  • Must include 70 CMS-specified services
  • Hospital selects additional 230 shoppable services
  • Must show payer-specific negotiated rates
  • Must be easily searchable and accessible

Required Data Elements

The machine-readable file must include these data elements for each item/service:

ElementDescription
descriptionPlain language description of the item or service
codeBilling code (CPT, HCPCS, DRG, etc.)
typeType of billing code used
gross_chargeGross charge (chargemaster rate)
discounted_cashDiscounted cash price for self-pay patients
payer_specificNegotiated rates for each third-party payer
de_identified_minDe-identified minimum negotiated charge
de_identified_maxDe-identified maximum negotiated charge

File Format Requirements

JSON Format (Recommended)

CMS provides a JSON schema that files should follow. Key requirements:

{
  "hospital_name": "Example Hospital",
  "last_updated_on": "2025-01-01",
  "version": "1.0.0",
  "hospital_location": ["San Francisco, CA"],
  "license_information": {
    "license_number": "12345",
    "state": "CA"
  },
  "standard_charge_information": [
    {
      "description": "Emergency Department Visit - Level 3",
      "drug_unit_of_measurement": null,
      "code_information": [
        {
          "code": "99283",
          "type": "CPT"
        }
      ],
      "standard_charges": [
        {
          "gross_charge": 750.00,
          "discounted_cash_price": 600.00,
          "payer_name": "Blue Cross Blue Shield",
          "plan_name": "PPO Plan",
          "contracting_method": "fee schedule",
          "standard_charge_dollar": 575.00
        }
      ]
    }
  ]
}

File Accessibility

  • File must be publicly accessible without authentication
  • No click-through agreements or barriers
  • Should support direct download
  • Must be linked from hospital's primary website
  • URL should be stable and not change frequently

Common Violations

Based on CMS enforcement actions, these are the most common compliance issues:

🚫 File Not Accessible

The most serious violation. File returns 404, requires login, or is behind a paywall. Results in immediate enforcement risk.

⚠️ Missing Required Fields

File missing required data elements like payer-specific rates, de-identified min/max charges, or proper billing codes.

⚠️ Format/Schema Errors

Invalid JSON structure, incorrect field names, or data type mismatches that prevent machine parsing.

⚠️ Outdated Information

File not updated in over 12 months, or "last_updated_on" field shows old date. Must be updated at least annually.

Enforcement & Penalties

Civil Monetary Penalties

CMS can assess penalties ranging from $300 to $5,500 per day for non-compliance:

  • $300/day: Hospitals with 30 or fewer beds
  • $310-$5,500/day: Hospitals with 31+ beds (scaled by size)
  • Maximum: $5,500/day for large hospitals (200+ beds)

Enforcement Process

  1. Warning Notice: CMS typically issues a warning and provides 90 days to come into compliance.
  2. Request for Corrective Action Plan: Hospital must submit a plan to address violations.
  3. Civil Monetary Penalty: If non-compliant after deadline, CMS may assess daily penalties retroactive to the warning date.
  4. Public Disclosure: CMS publishes enforcement actions on their website, creating reputational risk.

CMS Enforcement Actions

CMS maintains a public list of hospitals under investigation and those that have received penalties:

View CMS Enforcement List →

As of October 2025, hundreds of hospitals have been cited for violations, with dozens receiving civil monetary penalties.

Best Practices

  • Monitor daily: Don't wait for CMS to notify you. Automated monitoring catches issues before they become violations.
  • Use standard formats: Follow CMS JSON schema exactly to ensure machine readability.
  • Update regularly: Don't wait for the annual deadline. Update whenever contracts change.
  • Test accessibility: Regularly verify files are accessible from external networks without authentication.
  • Document compliance: Maintain records of updates, validation testing, and corrective actions.
  • Assign ownership: Designate staff responsible for price transparency compliance.

Need Help with Compliance?

HealthPriceWatch automatically monitors your pricing files for compliance with 45 CFR 180.50 and alerts you to issues before CMS does.

Start Your Free Audit

Disclaimer: This guide is provided for informational purposes only and does not constitute legal advice. Always refer to official CMS guidance and consult with qualified legal counsel for compliance decisions.

Last updated: October 7, 2025. CMS regulations and enforcement guidance are subject to change.