The No Surprises Act: What It Means for Patients

The No Surprises Act (NSA), enacted as part of the Consolidated Appropriations Act, 2021 (Public Law 116-260), establishes federal protections against unexpected out-of-network medical bills for patients covered by most private health insurance plans. It took effect for plan years beginning on or after January 1, 2022, and is administered jointly by the U.S. Departments of Health and Human Services (HHS), Labor, and the Treasury. This page covers the law's definition and scope, the billing and cost-sharing mechanisms it creates, the clinical situations it most commonly affects, and the boundaries that determine when its protections apply — and when they do not.

Definition and scope

The No Surprises Act addresses a specific and well-documented billing failure: patients who receive care at an in-network facility are subsequently billed at out-of-network rates by providers — such as anesthesiologists, radiologists, or assistant surgeons — whom the patient had no meaningful opportunity to select. The Centers for Medicare & Medicaid Services (CMS) administers the NSA's core consumer protections and has published implementing regulations in 45 CFR Parts 147, 149, and 158.

The statute applies to:

1. Group health plans and health insurance issuers offering group or individual coverage, including grandfathered plans under the Affordable Care Act
2. Emergency services furnished by any provider or facility, regardless of network status
3. Non-emergency services performed by out-of-network providers at in-network facilities, subject to specific consent exceptions
4. Air ambulance services provided by out-of-network carriers

The NSA does not apply to Medicaid and Medicare fee-for-service programs, which have separate billing protections, nor to short-term limited-duration insurance plans or coverage that qualifies as excepted benefits under 26 CFR 54.9831-1.

How it works

The NSA's core protection operates through a cost-sharing limit: when a patient receives a covered item or service from an out-of-network provider in a protected situation, the plan treats that provider as in-network solely for cost-sharing purposes. The patient pays no more than the in-network cost-sharing amount — the same deductibles, copayments, and coinsurance that would apply if the provider were in the patient's network.

The payment resolution process between the plan and the out-of-network provider follows a structured sequence:

1. 140.
2. Open negotiation period: The plan and provider enter a 30-business-day open negotiation window to agree on a payment amount.
3. A certified IDR entity selects between the two parties' final offers, anchored to the Qualifying Payment Amount (QPA) — generally the plan's median contracted rate for the service in the geographic area, as defined in 45 CFR §149.140(a).

The IDR process is a provider-payer dispute mechanism. The patient is shielded from balance billing throughout; the law explicitly prohibits providers from billing patients above the applicable in-network cost-sharing amount in protected situations.

A separate but related protection under the NSA is the Good Faith Estimate (GFE) requirement. Uninsured and self-pay patients scheduled for services must receive a GFE of expected charges before receiving care (45 CFR §149.610). If the final bill exceeds the GFE by more than $400, the patient may dispute the charge through the Patient-Provider Dispute Resolution process administered by HHS.

Understanding these protections is closely related to broader medical billing advocacy and the health insurance appeals process, both of which patients may need to engage when charges appear inconsistent with NSA guarantees.

Common scenarios

Emergency department visits represent the most frequent NSA application. A patient transported to any emergency department receives federal balance billing protection regardless of whether that facility is in-network. Out-of-network emergency physicians, radiologists, and hospitalists at that facility are bound by NSA cost-sharing limits.

Scheduled surgeries at in-network hospitals are the second major category. An in-network surgeon may use an out-of-network assistant surgeon, anesthesiologist, or perfusionist. Under the NSA, those providers cannot balance-bill the patient unless the patient receives proper notice — in plain language, at least 72 hours before the scheduled service — and provides written consent to waive NSA protections. Consent waivers are prohibited for ancillary services such as anesthesiology, radiology, pathology, neonatology, and diagnostic services, regardless of patient agreement.

Air ambulance transport by out-of-network carriers is covered under the NSA for patients enrolled in group or individual market plans, limiting cost-sharing to in-network levels. Ground ambulance services are explicitly excluded from NSA coverage (Public Law 116-260, §119), a point of ongoing patient advocacy legislation and policy debate.

Telehealth and facility-based outpatient settings are covered when they qualify as in-network facilities. Patients navigating telehealth patient rights in combination with facility-based care may encounter layered protections requiring careful cross-referencing of plan documents.

Decision boundaries

The NSA's protections are not universal. Precise boundary conditions determine whether the law applies in a given situation:

Protected (NSA applies):
- Emergency services at any facility, from any provider
- Non-emergency services at in-network facilities by out-of-network providers, absent a valid consent waiver
- Out-of-network air ambulance transport under group and individual market plans
- Services where a consent waiver is prohibited by regulation (ancillary and diagnostic providers)

Not protected (NSA does not apply):
- Services at out-of-network facilities for non-emergency care (patients who knowingly choose an out-of-network facility)
- Ground ambulance services (explicitly excluded by statute)
- Medicaid, Medicare, Medicare Advantage (separate protections apply), and TRICARE fee-for-service arrangements
- Short-term limited-duration plans and most grandfathered individual market plans predating ACA applicability
- Out-of-network services where the patient signed a valid, regulation-compliant consent waiver at least 72 hours in advance — and the service type permits waiver

The consent waiver mechanism represents the most consequential boundary. CMS specifies in 45 CFR §149.420 that the notice and consent process is valid only when furnished on a standardized form, translated into the 15 most common languages in the state or territory, and signed sufficiently in advance of the appointment. Services for which waiver is categorically prohibited include: anesthesiology, radiology, pathology, neonatology, intensive care, and diagnostic testing ordered by an in-network provider. This prohibition exists because patients lack a realistic ability to select alternative providers for those services.

Patients whose bills appear to violate NSA protections may file a complaint through the CMS No Surprises Help Desk or through their state insurance commissioner's office, depending on whether state or federal jurisdiction applies. State laws that provide equal or greater protections continue to govern; federal law applies as a floor where state law is less protective, as outlined in 45 CFR §149.30.

For patients seeking structured assistance interpreting bills, cross-referencing financial assistance for medical bills and filing a healthcare complaint provides parallel frameworks relevant to NSA-adjacent disputes.

References

• Centers for Medicare & Medicaid Services — No Surprises Act
• Consolidated Appropriations Act, 2021 — Public Law 116-260
• 45 CFR Part 149 — Requirements for Group Health Plans and Health Insurance Issuers (No Surprises Act Regulations)
• 45 CFR §149.610 — Good Faith Estimate Requirements
• U.S. Department of Labor — No Surprises Act Overview
• U.S. Department of Health and Human Services — Surprise Billing Consumer Protections