Articles Posted in Compliance

Published on:

by

In response to the COVID-19 pandemic, the Centers for Medicare & Medicaid Services (CMS) created separate payments for audio-only telephone evaluation and management (E/M) services. E/M billing codes apply to medical services related to evaluating and managing a patient, such as, hospital visits, preventive services, and office visits. Coding for E/M services can be complicated because many variables are involved in selecting the proper code. For example, the type and complexity of history, examination, and decision making, as well as time spent with the patient are often factors to be considered. Audio-only telephone E/M services were not previously covered by Medicare under the physician fee schedule (PFS). However, beginning with the March 2020 Interim Final Rule with Comment (IFC), CMS found these types of visits to be clinically appropriate and began to cover certain audio-only codes. CMS further expanded the list of covered audio-only codes in the April 2020 IFC.

CMS soon found that audio-only health services became far more popular than CMS expected, and many beneficiaries were not using video technology to communicate from their homes. Since the new E/M codes were established, providers were seeing beneficiaries for more complex evaluation and management services using audio-only technology, when they would normally utilize telehealth video or in-person visits to evaluate the patient. According to CMS, the intensity and complexity of providing an audio-only visit to a beneficiary during the unique circumstances of the COVID-19 PHE was not properly valued as established in the March 2020 IFC. This was especially true when considering these audio-only services were often being used as a complete substitute for office/outpatient Medicare video telehealth visits. Therefore, CMS established new RVUs based on E/M codes in existence prior to the PHE and the time requirements necessary for telephone service-related codes. Because these audio-only visits were being used in replacement of office/outpatient E/M visits, they should be considered telehealth services and added to the Medicare telehealth service list while the PHE is ongoing.

In the CY 2021 PFS proposed rule, CMS elected not to continue covering the audio-only codes when the PHE ends. This is because, outside the circumstances of the COVID-19 PHE, telehealth services generally must be provided using interactive, two-way audio and video technology. Commenters on the proposed rule broadly supported maintaining payment for audio-only provided services. Commenters stated that many beneficiaries may not have access to two-way audio and video technology and that continuing to pay for these E/M services will help vulnerable populations and those with less access to quality healthcare. However, CMS declined to finalize payment of these E/M codes beyond the PHE. The Social Security Act requires telehealth services to be furnished using a telecommunications system. CMS maintains that there is a longstanding policy of interpreting “telecommunications system” to include technology that allows the telehealth visit to be analogous to an in-person visit. Outside the COVID-19 PHE, CMS continues to believe that the longstanding interpretation of telecommunications system excludes the use of audio-only technology for Medicare telehealth services. The PHE declaration must be renewed in 90-day increments and is currently slated to end April 20, 2021. However, HHS and the Biden administration have signaled that they are likely to repeatedly renew the PHE through at least the end of 2021, thereby allowing Medicare telehealth waivers to continue until the end of the year.

Continue reading
Published on:

by

On February 10, 2021, the United States Department of Justice filed the first criminal charges relating to a alleged violation of the terms the Provider Relief Fund (PRF). The allegations contained in the indictment illustrate some of the pitfalls of the PRF and the importance of compliance with its terms. It may also provide insight into coming enforcement actions.

The alleged defendant was a resident of southeastern Michigan who owned and operated a home health agency in Indiana. The home health agency closed in January 2020 and filed a notice of voluntary termination with Medicare in March 2020. However, despite the filing of this notice, when the first wave of payments under the PRF were automatically deposited into providers’ accounts in April, the defendant’s home health agency received approximately $38,000. The defendant then allegedly submitted an attestation to the terms and conditions of the PRF payment and allegedly distributed the funds to family members in a series of checks, all just under $10,000. The indictment charged the defendant with one count of Theft of Public Money, Property, or Records.

This indictment touches several possible areas of enforcement or audits of PRF payments, including eligibility criteria, attestations, and use of the funds. The first wave of payments under the PRF consisted of $30 billion that was automatically deposited in providers’ accounts in amounts based on a provider’s 2019 Medicare billing. Providers did not make requests or applications for this funding. However, simply because a provider received money did not mean they were entitled to keep it, a provider also had to meet the eligibility criteria, such as the requirement that it provided services after January 31, 2020.

Continue reading
Published on:

by

Imagine a physician wants to rent office space from another physician, but the two refer patients to each other. Or a clinical laboratory wants to contract with a marketer to promote their products. Three of the largest compliance concerns when structuring such an arrangement are the Stark Law, also known as the Physician Self-Referral Law, the Anti-Kickback Statute, often referred to as the AKS, and the Eliminating Kickbacks in Recovery Act, or EKRA. All three regulate referrals and can carry stiff penalties, sometimes criminal penalties. However, each also contains a series of exceptions or safe harbors into which some business structures may fit. Even simple arrangements between healthcare entities can involve complex analysis to comply with these statutes.

The Stark Law, 42 U.S.C. 1395nn, prohibits physicians from referring patients to receive “designated health services” payable by Medicare or Medicaid from entities with which the physician or an immediate family member has a financial relationship, unless an exception applies. Financial relationships include both compensation and ownership or investment interests. Designated health services include clinical laboratory services, PT and OT, DME, some imaging services, and several other services. Some of the most common exceptions to the Stark law include the in-office ancillary exception, fair market value compensation, and bona fide employment relationships. CMS has also recently implemented exceptions related to value-based arrangements.

The AKS, 42 U.S.C. 1320a-7b(b), is a criminal statute that prohibits the knowing and willful payment of “remuneration” to induce or reward patient referrals or the generation of business involving any item or service payable by federal health care programs. Remuneration means far more than cash payments and includes anything of value. If the AKS applies, conduct may still be lawful if it falls into one of several “safe harbors.” Some of the most common safe harbors are the investment interest safe harbor, specific types of rental agreements for office space or equipment, and contracts for personal services that meet certain criteria. Like the Stark Law, CMS has also implemented safe harbors for certain value-based arrangements.

Continue reading
Published on:

by

As part of the response to the COVID-19 pandemic, Congress provided funding for testing of patients without health insurance. To receive this reimbursement for testing, providers must attest that the patient is uninsured. However, it is not clear how providers must gather this information, exposing providers to risk of enforcement actions.

For claims for COVID-19 testing and testing-related items and services, a patient is considered uninsured if the patient does not have coverage through an individual, or employer-sponsored plan, a federal healthcare program, or the Federal Employees Health Benefits Program at the time the services were rendered. For claims for treatment for positive cases of COVID-19, a patient is considered uninsured if the patient did not have any health care coverage at the time the services were rendered. For claims for vaccine administration, this means that the patient did not have any health care coverage at the time the service was rendered.

The funding of testing for the uninsured is administered by the Health Resources & Services Administration (HRSA) under the COVID-19 Claims Reimbursement to Health Care Providers and Facilities for Testing, Treatment, and Vaccine Administration for the Uninsured Program. Congress has allocated $2 billion to this program through The Families First Coronavirus Response Act (FFCRA) and the Paycheck Protection Program and Health Care Enhancement Act (PPPHCEA), as well as a portion of the Provider Relief Fund.

Continue reading
Published on:

by

On February 12, 2021, the Office for Civil Rights (OCR) at the U.S Department of Health and Human Services (HHS) announced the details of its previously-announced discretion in the enforcement of the Health Insurance Portability and Accountability Act of 1996 (HIPAA) and the Health Information Technology for Economic and Clinical Health (HITECH) Act related to privacy, security, and date breaches. OCR will not penalize covered health care providers or their business associates for non-compliance under HIPAA for the good faith use of online or web-based scheduling applications (WBSAs) for scheduling COVID-19 vaccination appointments during the COVID-19 pandemic.

During the COVID-19 public health emergency, HIPAA covered providers, such as large pharmacy chains, or business associates acting on behalf of the covered providers, may utilize WBSAs to schedule individual appointments for COVID-19 vaccinations. For the purposes of this exercise of discretion, a WBSA is an online or web-based application that only allows the intended parties to access the data and that provides individual appointment scheduling related to largescale COVID-19 vaccination. Technology that directly connects to electronic health records (EHR) systems used by covered providers is not included in this discretionary measure and does not constitute a WBSA. The HIPAA privacy rules allow business associates of a covered entity to use and disclose protected health information (PHI) for certain functions, only as dictated by a business associate contract or other agreement. However, during the COVID-19 pandemic, health care providers need to quickly schedule many appointments for COVID-19 vaccinations and often do this through WBSAs. Some of these online scheduling applications, and the way in which healthcare providers use them, may not comply with the HIPAA privacy rules.  Furthermore, vendors of the WBSAs may not know providers are using these applications to create and send PHI, potentially making the WBSA vendors business associates under HIPAA.

OCR will exercise discretion in the enforcement of HIPAA privacy rules and will not penalize covered healthcare providers, their business associates, or WBSA vendors who are technically business associates, for noncompliance as it relates to the scheduling of individual COVID-19 vaccination appointments during the COVID-19 pandemic. This enforcement discretion applies to covered healthcare providers and their business associates, which are, in good faith, using WBSAs to schedule COVID-19 vaccination appointments, as well as WBSA vendors whose platform is being used to schedule COVID-19 vaccination appointments. Discretion does not apply to covered providers or business associates for activities unrelated to the scheduling of COVID-19 vaccinations or if the covered providers or business associates fail to act in good faith. Instances where a covered provider or business associate are not acting in good faith include: the use of a WBSA that allows the sale of personal information collected, the use of a WBSA for purposes other than scheduling COVID-19 vaccination appointments, the use of a WBSA without reasonable safeguards to protect the PHI, and the use of a WBSA to screen individuals for COVID-19 before an in-person visit.

Continue reading
Published on:

by

A revocation of Medicare billing privileges can have devastating impacts on a healthcare provider. Not only does a revocation render the provider unable to bill the Medicare program for a period of time, but it can have wide-ranging impacts on a provider’s practical ability to operate or to practice in their chosen field.

Medicare billing privileges can be revoked for twenty-two enumerated reasons, including non-compliance with Medicare enrollment requirements, felony convictions, and failure to respond to requests for medical records. A recent expansion of CMS’s revocation authority also updated the ability to revoke a provider for an “abuse of billing privileges” to include a pattern or practice of submitting claims that do not meet Medicare requirements. In some cases, the Medicare Administrative Contractor (MAC) gathers the information and determines to revoke a provider. In other cases, the MAC forwards the information to the Centers for Medicare & Medicaid Services (CMS) and CMS makes the revocation determination. The revocation may be based on a prior interaction with the MAC or CMS, such as a prior audit of the provider. The provider may not necessarily be told during this interaction that it can lead to a revocation of billing privileges.

When CMS or a MAC revokes billing privileges, they will set a reenrollment bar, which dictates how long a provider must wait before it can reapply for Medicare billing privileges. CMS recently expanded its authority to set the reenrollment bar. In general, reenrollment bars may now be set between 1 and 10 years, depending on the circumstances, although certain provisions allow for longer bars. CMS may also decide to place a revoked provider on the CMS Preclusion List. The Preclusion List labels the provider a “bad actor” and cuts off their ability to bill Medicare Part C and Part D. A Medicare revocation or placement on the Preclusion List may also impact contracts outside the Medicare program. For example, commercial carriers may terminate participation agreements with a provider based on a Medicare revocation or placement on the Preclusion List.

Continue reading
Published on:

by

On February 17, 2021, the Department of Health and Human Services (HHS) Office of Inspector General (OIG) updated its FAQ’s concerning the COVID-19 public health emergency. In the update, OIG gave guidance on its enforcement discretion regarding administrative services provided to COVID-19 vaccination sites on a per-vaccine basis. It should be noted that this guidance is not an advisory opinion, is not binding on OIG, and does not constitute a waiver of any statutory or regulatory requirement, though it may be helpful when structuring these arrangements.

OIG addressed the question of whether a non-provider philanthropic entity could contract to provide administrative services to a healthcare provider relating to the operation of COVID-19 vaccination sites and be compensated on a per-vaccine basis. The entity would provide administrative services including arranging for the physical vaccination sites, data systems, online and web-based scheduling, site development and training, and reporting to state agencies. The healthcare provider would provide clinical staff, oversee administration of the vaccine, and bill third-party payors, including federal healthcare programs.

After billing for the vaccine administration, the healthcare provider would retain a certain amount per hour for compensation and to cover staffing costs. The remainder of the compensation would flow to the entity providing the administrative services. OIG specified that there would be no other arrangements between the entity, the healthcare provider, any beneficiary, or other person capable of arranging for referrals for items or services payable by a federal healthcare program.

Continue reading
Published on:

by

Many Medicare practitioners, providers, and suppliers do not directly bill for the services they supply and similarly do not directly receive reimbursement. Billing and reimbursement may occur through an employment or independent contractor relationship, through a billing company, or through another arrangement. However, each of these arrangements must comply with the Medicare assignment of payment rules that dictate how and to whom the practitioner, provider, or supplier may assign their right to receive reimbursement from Medicare.

The general rule is that Medicare will pay assigned benefits only to the physician, practitioner, or supplier who furnished the service, and not to another person or entity. To reassign payment to another person or entity, an arrangement must meet one of several enumerated exceptions. The most common exceptions are:

Payment to Agent: Medicare may make payment, in the name of the provider, to an agent who furnishes billing or collection services. In general, the agent or billing company may not have a financial interest in the dollar amount billed or the actual collection of payment, and the agent must act under payment disposition instructions which the provider may modify or revoke at any time. Different provisions may apply if the agent merely prepares bills and does not receive payment for the provider or supplier.

Continue reading
Published on:

by

Targeted Probe and Educate (TPE) reviews are a popular audit tool for Medicare Administrative Contractors (MACs) to assess a healthcare provider or supplier’s compliance with Medicare billing requirements. A TPE review consists of up to three rounds of claims review, with education to the provider after each round. A provider or supplier navigating a TPE review should take care to comply with the program’s requirements and timelines and should be aware of the potential consequences of a review.

The Centers for Medicare & Medicaid Services (CMS) initially introduced TPE reviews as a pilot program in only a few jurisdictions. In 2017, CMS expanded the program nationwide and has continued to update and refine the program since its introduction.

A provider who is placed on a TPE review will first receive a Notice of Review letter. This letter will describe the reason that the provider has been placed on TPE review and will provide a brief outline of the process. This letter will not request medical records but will generally indicate that medical records requests will be forthcoming. This letter will likely warn that, if a provider/supplier fails to improve the accuracy of its claims after three rounds, the MAC will refer the provider/supplier to CMS for additional action, such as prepayment review, extrapolation of overpayments, referral to a RAC, or other disciplinary action. Providers should be aware that a TPE can lead to revocation of Medicare billing privileges and placement on the CMS Preclusion List.

Continue reading
Published on:

by

On January 14, 2021, the Centers for Medicare & Medicaid Services (CMS) issued a final rule codifying a definition for “reasonable and necessary” coverage under Medicare Part A and Part B. CMS hopes codifying the meaning of “reasonable and necessary” will provide clarity and consistency to the current process of coverage determination for items and services under Part A and Part B. The final rule takes effect on March 15, 2021.

The definition of “reasonable and necessary” has three components: an item or service is required to be 1) safe and effective, 2) not experimental or investigational, and 3) appropriate for Medicare patients. Whether an item or service is appropriate for Medicare patients will be based on the duration and frequency deemed appropriate for the item or service and whether the item or service:

  • Is provided in accordance with accepted standards of medical practice
Continue reading
Contact Information
210 E 3rd St #204
Royal Oak, MI 48067
Phone: 248-544-0888
Fax: 248-544-3111

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Please do not include any confidential or sensitive information in a contact form, text message, or voicemail. The contact form sends information by non-encrypted email, which is not secure. Submitting a contact form, sending a text message, making a phone call, or leaving a voicemail does not create an attorney-client relationship.

Copyright © 2016 – 2025, Wachler & Associates, P.C.
JUSTIA Law Firm Blog Design