Category Archives: Alleged Overpayment
On July 13, 2017, Attorney General Jeff Sessions and Department of Health and Human Services (HHS) Secretary Tom Price, M.D., announced the Department of Justice’s (DOJ) biggest-ever health care fraud takedown. 412 health care providers were charged with health care fraud. In total, allegedly, the 412 providers schemed and received $1.3 billion in false billings to Medicare, Medicaid, and TRICARE. Of the 412 defendants, 115 are physicians, nurses, and other licensed medical professionals. Additionally, HHS has begun the suspension process against 295 health care providers’ licenses.
The charges include allegations of billing for medically unnecessary treatments or services that were not really provided. The DOJ has evidence that many of the defendants had illegal kickback schemes set up. More than 120 of the defendants were charged with unlawfully or inappropriately prescribing and distributing opioids and other narcotics.
While this particular sting operation resulted from government investigations, not all health care fraud is discovered through government investigation. A great deal of fraud is uncovered through private citizens coming forward with incriminating information. These private citizens can file suit against the fraudulent parties on behalf of the government; these are known as qui tam suits.
Being a whistleblower goes against what most of us are taught as children. We are taught not to be a tattletail. I have vivid memories from elementary school of other kids acting out, but I would remain silent and not inform the teacher. But in the health care world, tattletails are becoming much more common – and they make money for blowing that metaphoric whistle.
What is a qui tam lawsuit?
Qui tam is Latin for “who as well.” Qui tam lawsuits are a type of civil lawsuit whistleblowers (tattletails) bring under the False Claims Act, a law that rewards whistleblowers if their qui tam cases recover funds for the government. Qui tam cases are a powerful weapon against Medicare and Medicaid fraud. In other words, if an employee at a health care facility witnesses any type of health care fraud, even if the alleged fraud is unknown to the provider, that employee can hire an attorney to file a qui tam lawsuit to recover money on behalf of the government. The government investigates the allegations of fraud and decides whether it will join the lawsuit. Health care entities found guilty in a qui tam lawsuit will be liable to government for three times the government’s losses, plus penalties.
The whistleblower is rewarded for bringing these lawsuits. If the government intervenes in the case and recovers funds through a settlement or a trial, the whistleblower is entitled to 15% – 25% of the recovery. If the government doesn’t intervene in the case and it is pursued by the whistleblower team, the whistleblower reward is between 25% – 30% of the recovery.
These recoveries are not low numbers. On June 22, 2017, a physician and rehabilitative specialist agreed to pay $1.4 million to resolve allegations they violated the False Claims Act by billing federal health care programs for medically unreasonable and unnecessary ultrasound guidance used with routine lab blood draws, and with Botox and trigger point injections. If a whistleblower had brought this lawsuit, he/she would have been awarded $210,000 – 420,000.
On June 16, 2017, a Pennsylvania-based skilled nursing facility operator agreed to pay roughly $53.6 million to settle charges that it and its subsidiaries violated the False Claims Act by causing the submission of false claims to government health care programs for medically unnecessary therapy and hospice services. The allegations originated in a whistleblower lawsuit filed under the qui tam provisions of the False Claims Act by 7 former employees of the company. The whistleblower award – $8,040,000 – 16,080,000.
There are currently two, large qui tam cases against United Health Group (UHG) pending in the Central District of California. The cases are: U.S. ex rel. Benjamin Poehling v. UnitedHealth Group, Inc. and U.S. ex rel. Swoben v. Secure Horizons, et al. Both cases were brought by James Swoben, who was an employee and Benjamin Poehling, who was the former finance director of a UHG group that managed the insurer’s Medicare Advantage Plans. On May 2, 2027, the U.S. government joined the Poehling lawsuit.
The charges include allegations that UHG:
- Submitted invalid codes to the Center for Medicare and Medicaid Services (CMS) that it knew of or should have known that the codes were invalid – some of the dates of services at issue in the case are older than 2008.
- Intentionally avoided learning that some diagnoses codes or categories of codes submitted to their plans by providers were invalid, despite acknowledging in 2010 that it should evaluate the results of its blind chart reviews to find codes that need to be deleted.
- Failed to follow up on and prevent the submissions of invalid codes or submit deletion for invalid codes.
- Attested to CMS each year that the data they submitted was true and accurate while knowing it was not.
UHG would not be in this expensive, litigious pickle had it conducted a self audit and followed the mandatory disclosure requirements.
What are the mandatory disclosure requirements? Glad you asked…
Section 6402(a) of the Affordable Care Act (ACA) creates an express obligation for health care providers to report and return overpayments of Medicare and Medicaid. The disclosure must be made by 60 days days after the date that the overpayment was identified or the date any corresponding cost report is due, if applicable. Identification is defined as the point in which the provider has determined or should have determined through the exercise of due diligence that an overpayment exists. CMS expects the provider to proactively investigate any credible information of a potential overpayment. The consequences of failing to proactively investigate can be seen by the UHG lawsuits above-mentioned. Apparently, UHG had some documents dated in 2010 that indicated it should review codes and delete the invalid codes, but, allegedly, failed to do so.
How do you self disclose?
According to CMS:
“Beginning June 1, 2017, providers of services and suppliers must use the forms included in the OMB-approved collection instrument entitled CMS Voluntary Self-Referral Disclosure Protocol (SRDP) in order to utilize the SRDP. For disclosures of noncompliant financial relationships with more than one physician, the disclosing entity must submit a separate Physician Information Form for each physician. The CMS Voluntary Self-Referral Disclosure Protocol document contains one Physician Information Form.”
The Office of Inspector General (OIG) recently disseminated hundreds of recoupment letters to providers in New York who had percentage-based contracts with billing agents. OIG is seeking recoupment for services spanning a five-year period, plus 9% interest. See example redacted letter from OIG.
42 CFR 447.10 prohibits the re-assignment of provider claims and applies only to Medicaid. It is recommended that you pay your billing agent a flat fee or on a time basis.
North Carolina Medical Society also discourages fee splitting. On the NCMS website, the Society warns that “Except in instances permitted by law (N.C. Gen. Stat. § 55B-14(c)), it is the position of the Board that a licensee cannot share revenue on a percentage basis with a non-licensee. To do so is fee splitting and is grounds for disciplinary action.”
Not all States prohibit fee splitting, and if Medicare or Medicaid is not involved, then we look to state law. But if Medicare or Medicaid is involved, then federal law matters. Some States prohibit fee splitting for doctors, chiropractors, and hospitals, while other states do not prohibit fee splitting for massage therapists. So it is important to know your State’s laws.
Lawyers also have fee-splitting prohibitions. To split fees with a nonlawyer constitutes the practice of law without a license (and probably multiple other ethical concerns).
Physicians, group practices and management services organizations should continue to carefully examine their current and proposed arrangements to ensure compliance with the fee-splitting prohibition applicable to your State. If you are unsure, consult an attorney.
OIG may have started these audits in New York, but, as New York State says “Excelsior” – ever upward – we can be sure that OIG will continue across the country.
There’s no getting around it. Four years after Gov. Susana Martinez’s administration charged 15 behavioral health organizations with potentially defrauding the state’s Medicaid program, its case has experienced a slow-motion unraveling.
No Medicaid fraud was ever found. And those eye-popping estimates that added up to $36 million the organizations had overbilled Medicaid?
In the summer of 2017, the Human Services Department (HSD) is seeking drastically lower reimbursements for overbilling the public health insurance program for low-income residents, a review of public records and state court documents has found.
Now exonerated by the state Attorney General’s Office, many organizations are challenging even those much-lower estimates in administrative hearings or in state court.
Consider Teambuilders Counseling Services, one of the accused behavioral health providers.
Last fall it received a new estimate from the New Mexico Human Services Department. Previous numbers had varied from as high as $9.6 million to as low as $2 million. But the new figure deviated sharply from earlier calculations when Chester Boyett, an administrative law judge in the state agency’s Fair Hearings Bureau, ruled Teambuilders owed only $896.35.
Boyett argued his agency had built its $2 million estimate of Medicaid overbilling on faulty analysis, according to his 12-page decision.
Nancy Smith-Leslie, the department’s director of the Medical Assistance Division, ignored Boyett’s recommendation. In a Jan. 6 letter she said the agency’s analysis was sound, even though she seemed to confirm Boyett’s critique in a Nov. 2 memo in which she had noted the inaccuracy of the extrapolated amount. In that memo Teambuilders and its attorney had not “sufficiently disputed” the method of extrapolation, however, she wrote.
In her Jan. 6 letter, Smith-Leslie sought to clear up matters. She amended her previous statement, saying the extrapolation referred to in her Nov. 2 memo indeed was correct.
Teambuilders and its attorney, Knicole Emanuel, appealed HSD’s ruling over whether Teambuilders overbilled Medicaid and by how much to state court, where three other former behavioral health organizations are fighting HSD’s extrapolated overpayments.
Boyett’s finding that Teambuilders owed hundreds rather than millions of dollars — even if it was ignored — represents a compelling data point given where things stand with other providers.
And last September HSD closed the books on another organization — Las Cruces-based Families and Youth Inc. — without demanding any reimbursements for overbilling and releasing $1.4 million in Medicaid dollars the state had suspended. The action represented a reversal after a state-ordered 2013 audit that found $856,745 in potential Medicaid overbilling by FYI.
In fact, a review of state and court documents by New Mexico In Depth reveals a pattern regarding the state agency’s overbilling estimates: In many cases, they are moving targets, usually on a downward trajectory.
Like Southwest’s, some have dropped spectacularly. Setting aside Boyett’s figure of $896, even the $2 million HSD claims Teambuilders owes is far smaller than a high of $12 million.
Hogares Inc., another organization accused of fraud, watched last year as the state revised its overbilling estimates five times over six months, starting at $9.5 million in January and ending with $3.1 million in June, according to state court documents.
Meanwhile, Easter Seals El Mirador, initially accused of $850,000 in potential Medicaid overbilling, now stands accused of $127,000.
Emanuel and Bryan Davis, another attorney representing many of the formerly accused organizations, said the constantly changing estimates are due to HSD.
The state agency is examining a sampling of each organization’s Medicaid claims and asking the organizations for documentation to prove the government program was properly billed, they said.
“In most cases (the overbilling estimates) are dropping precipitously” as organizations submit the documents requested by HSD, Davis said.
To cite one example, HSD’s latest overbilling estimate for Counseling Associates, Inc. is $96,000, said Davis, who represents the organization. That compares to $3 million in potential overbilling a 2013 state-ordered audit found.
It is a perplexing situation, given that the Human Services Department found “‘credible allegations of fraud” against the 15 organizations using that 2013 audit, which was performed by Massachusetts-based Public Consulting Group Inc.
“They threw PCG’s audit in the trash,” Davis said of HSD, noting the cost. HSD agreed to pay PCG up to $3 million for the study in February 2013.
The current situation caused Davis to wonder “why PCG didn’t have these documents in the first place,” he said.
Emanuel offered a pointed answer.
“HSD did not allow PCG to gather all the documents,” she said.
A spokesperson for HSD did not respond multiple requests for comment for this story.
Repercussions of the Medicaid crackdown
The fight over Medicaid overbilling isn’t the only legacy left from the Medicaid crackdown, which happened the last week of June 2013.
The Martinez administration’s decision affected lives. Many lives if you listen to behavioral health advocates and officials in the 15 organizations.
Charging the organizations with fraud and then suspending Medicaid payments to many of them disrupted mental health and addiction services for tens of thousands of New Mexicans. It created chaos for employees. And four years on it has left a number of business failures in its wake, with many of the accused organizations unable to survive long-term without Medicaid dollars.
Teambuilders, which once operated 52 locations in 17 New Mexico counties, is no longer in business, according to Emanuel. Neither is Las Cruces-based Southwest Counseling Center. Or Hogares.
At the same time a gap in care has opened up after three of five Arizona companies the Martinez administration brought in to care for the vulnerable populations have departed the state, leaving New Mexico to pick up the pieces.
“It’s a mess. It’s disgusting,” said James Kerlin, executive director of The Counseling Center of Alamogordo, which no longer sees clients. Like Teambuilders, Hogares, Southwest Counseling and others, it was unable to stay in business without the flow of Medicaid dollars the state suspended. “I want the public to know where we’re at and what’s been done to us. I’m going to start making a lot of noise. This is ridiculous.”
Kerlin’s organization was the first of the 15 organizations exonerated by then Attorney General Gary King in early 2014. And it offered the earliest glimpse of the weaknesses in the Martinez administration’s case against the behavioral health providers.
First signs of weakness in the state’s case
HSD hired PCG to audit all 15 organizations and it found $655,000 in potential Medicaid overbilling by the Counseling Center.
PCG reached that conclusion after finding $1,873 in questionable Medicaid claims and then extrapolating from those claims that the center could have overbilled Medicaid by more than $600,000 based on the size of its Medicaid business over several years.
But during its fraud investigation the AG’s office flagged fewer Counseling Center claims than PCG and found a much lower cost of potential overbillings. It resolved some of the issues by reviewing records and interviewing staff.
In many cases, auditors give staff of audited organizations an opportunity to refute findings or address misunderstandings before finalizing their findings. For example, most state and local governmental agencies are audited annually in New Mexico. Staff within those agencies are afforded the chance to see and respond to audit findings within a certain amount of time before audits are made public.
Kerlin did not get that opportunity during the PCG audit.
PCG later confirmed to NMID that it is the firm’s standard procedure to give companies a chance to respond before issuing official audit findings. A PCG spokesperson would not tell NMID why that didn’t happen in New Mexico.
By the time HSD held a hearing for the Counseling Center, the state agency had lowered its Medicaid overbillings estimate to $379,135. And Kerlin finally was able to hear the accusations against his organization.
Counseling Center submitted evidence to rebut the state agency’s claims, but the hearing officer sided with HSD. The Counseling Center appealed to state court.
In late 2015, State District Court Judge Francis Mathew ruled in favor of Kerlin’s organization, calling HSD’s hearing decision “arbitrary, capricious or otherwise not in accordance with law.”
In addition, the judge found the administrative law judge had shifted the burden of proof from HSD to the Counseling Center and then set too high a standard for the organization. Citing portions of the administrative law judge’s ruling, Mathew noted the Counseling Center had “offered certain amount of credible evidence in opposition” to HSD’s findings but not as much as the hearing officer required: a “100 percent audit” of records, which the state district judge found “unreasonable.”
HSD appealed the judge’s decision to the state Court of Appeals.
Examples of rejected claims
The overly stringent standards for documentation — and even a basic lack of understanding by HSD staff of Medicaid billing requirements — can be found in cases involving other organizations that are contesting the department’s charges of overbilling, a review of court documents found.
In a motion appealing the administrative law judge’s ruling that it owed the state $127,240, Easter Seals disputed seven claims, including one HSD had rejected because there was no medication consent form in place, even though the patient and parent had signed a general informed consent form and the patient’s parent was present when the medication was prescribed.
According to the court document, “There was no dispute that the service was medically necessary and was provided to J.A. There is no question as to quality of care provided to the recipient of services.”
Another claim was rejected because there was no doctor’s signature on a psychosocial assessment, however the state could provide no legal requirement for the signature, according to Easter Seals’ appeal. “A signature might be best practice, or advisable, but it is not a requirement,” the filing argued.
Also in the appeal, Easter Seals noted that the Human Service Department’s coding witness not only could not cite rules disallowing two services to be delivered during the same time period, but also appeared to be using a coding manual from Medicare, the insurance for seniors, and not Medicaid. And furthermore, she did not even realize there was a manual for Medicaid.
HSD ignored evidence in 2013 that refuted overbilling claims
Even those organizations that have avoided administrative hearings and court battles have stories to tell about HSD and its actions.
It wasn’t an easy decision, its CEO said this week, and it shouldn’t be construed as agreement with the state’s conclusions.
“We agree to disagree” is how Steven Hansen put it.
Until Presbyterian began negotiating an agreement, in fact, it had not seen the findings of the PCG audit.
During the negotiations PMS officials found documents they thought could refute PCG’s audit findings, Hansen and other PMS officials told state lawmakers in October 2014.
Presbyterian tried to give the files to PCG and the Human Services Department as proof that they had properly billed Medicaid for payment. The consulting firm said it would review the documentation if directed to by HSD, but PCG later told Presbyterian Medical Services the state agency “did not want to accept those records.”
“We believe there is a strong argument that nothing was owed back to HSD,” Presbyterian’s general counsel told lawmakers in 2014.
At that point, Presbyterian had to make a choice: Settle with the state or fight and possibly run out of money.
Presbyterian settled, paying the $4 million.
The decision has worked out for the organization.
“We’re doing more business than we did before” the 2013 crackdown, Hansen said.
That’s because as the Arizona providers the Martinez administration brought in have left New Mexico, Presbyterian Medical Services has taken over mental health and addiction services.
Presbyterian has added Carlsbad, Alamogordo, Deming, Espańola, Grants, Artesia, Santa Fe and Rio Rancho to the places it provides behavioral health services, Hansen said, adding it’s “bits and pieces” of areas formerly serviced by three of the five Arizona companies.
“We feel like it’s going in a good direction for us,” Hansen said. “That’s hard for us to say because there were so many great organizations that are no longer in the state. But we’ve had to move on.”
Durable Medical Equipment (DME) providers across the country are walking around with large, red and white bullseyes on their backs. Starting back in March 2017, the RAC audits began targeting DME and home health and hospice. DME providers also have to undergo audits by the Comprehensive Error Rate Testing Program (CERT).
The RAC for Jurisdiction 5, Performant Recovery, is a national company contracted to perform Recovery Audit Contractor (RAC) audits of durable medical equipment, prosthetic, orthotic and supplies (DMEPOS) claims as well as home health and hospice claims. Medicare Part B covers medically necessary DME. The following are the RAC regions:
Region 1 – Performant Recovery, Inc.
Region 2 – Cotiviti, LLC
Region 3 – Cotiviti, LLC
Region 4 – HMS Federal Solutions
Region 5 – Performant Recovery, Inc.
As you can see from the above map, we are in Region 3. The country is broken up into four regions. But, wait, you say, you said that Performant Recovery is performing RAC audits in region 5 – where is region 5?
Region 5 is the whole country.
The Centers for Medicare and Medicaid (CMS) has contracted with Performant Recovery to audit DME and home health and hospice across the whole country.
DME and home health and hospice providers – There is nowhere to hide. If you provide equipment or services within the blue area, region 5, you are a target for a RAC audit.
What are some common findings in a RAC audit for DME?
Without question, the most common finding in a RAC or CERT audit is “insufficient documentation.” The problem is that “insufficient documentation” is nebulous, at best, and absolutely incorrect, at worst. This error is by auditors if they cannot conclude that the billed services were actually provided, were provided at the level billed, and/or were medically necessary. An infuriating discovery was when I was defending a DME RAC audit and learned that the “real” reason for the denial of a claim was that no one went to the consumers door, knocked on it, and verified that a wheelchair had, in fact, been delivered. In-person verification of delivery is not a requirement, nor should it be. Such a burdensome requirement would unduly prejudice DME companies. Yes, you need to be able to show a signed and dated delivery slip, but you do not have to go to the consumer’s house and snap a selfie with the consumer and the piece of equipment.
Another common target for RAC audits is oxygen tubing, oxygen stands/racks, portable liquid oxygen systems, and oxygen concentrators. RAC auditors mainly look for medical necessity for oxygen equipment. Hospital beds/accessories are also a frequent find in a RAC audit. A high use of hospital beds/accessories codes can enlarge the target on your back.
Another recurrent issue that the RAC auditors cite is billing for bundled services separately. Medicare does not make separate payment for DME provider when a beneficiary is in a covered inpatient stay. RAC auditors check whether suppliers are inappropriately receiving separate DME payment when the beneficiary is in a covered inpatient stay. Suppliers can’t bill for DME items used by the patient prior to the patient’s discharge from the hospital. Medicare doesn’t allow separate billing for surgical dressings, urological supplies, or ostomy supplies provided in the hospital because reimbursement for them is wrapped into the Part A payment. This prohibition applies even if the item is worn home by the patient when leaving the hospital.
As always, documentation of the face to face encounter and the prescription are also important.
You can find the federal regulation for DME documentation at 42 CFR 410.38 – “Durable medical equipment: Scope and conditions.”
Once you receive an alleged overpayment, know your rights! Appeal, appeal, appeal!! The Medicare appeal process can be found here.
What if, right before your wedding day, you discover a secret about your betrothed that changes the very fabric of your relationship. For example, you find out your spouse-to-be is actually gay or a heroin addict. Not that there is anything bad about being gay or a heroin addict, but these are important facts to know and accept [or reject] about your future mate prior to the ringing of the wedding bells. The same is true with two companies that are merging to become one. The merged entity will be liable for any secrets either company is keeping. In this hypothetical, Eastpointe just found out that Cardinal has been cheating – and the wedding is set for July 1!
Cardinal Innovations and Eastpointe, two of our managed care organizations (MCO) charged with managing Medicaid behavioral health care funds plan to merge, effective July 1, 2017. Together the monstrous entity would manage Medicaid behavioral funds for 32 counties.
Last week the State Auditor published a scathing Performance Audit on Cardinal. State Auditor Beth Wood found more than $400,000 in “unreasonable” expenses, including corporate retreats at a luxury hotel in Charleston, S.C.; chartering planes to fly to Greenville, Rocky Mount and Smithfield; providing monthly detailing service for the CEO’s car; and purchasing alcohol, private and first-class airline tickets and other items with company credit cards.
Cardinal’s most significant funding is provided by Medicaid. Funding from Medicaid totaled $567 million and $587 million for state fiscal years 2015 and 2016, respectively. In other words, the State Auditor found that Cardinal is using our tax dollars – public money obtained by you and me – for entertainment, while concurrently, denying behavioral health care services and terminating providers from its catchment area. Over 30% of my salary goes to taxes. I do not accept Cardinal mismanaging my hard earned money – or anyone else’s. It is unacceptable!
“The unreasonable spending on board retreats, meetings, Christmas parties and travel goes against legislative intent for Cardinal’s operations, potentially resulting in the erosion of public trust,” the audit states.
Eastpointe, however, is not squeaky clean.
A June 2015 Performance Audit by the State Auditor found that its former chief financial officer Bob Canupp was alleged to have received kickbacks worth a combined $547,595. It was also alleged that he spent $143,041 on three agency vehicles without a documented business purpose. Canupp, chief executive Ken Jones and other employees also were determined to have used Eastpointe credit cards to make $157,565 in “questionable purchases.” There has not been an audit, thus far, on Eastpointe’s management of public funds. One can only hope that the results of the Cardinal audit spurs on Beth Wood to metaphorically lift the skirts of all the MCOs.
Given the recent audit on Cardinal, I would like to think that Eastpointe is hesitant to merge with such an entity. If a provider had mismanaged Medicaid funds like the State Auditor found that Cardinal did, without question, the authorities would be investigating the provider for Medicaid fraud, waste, and abuse. Will Eastpointe continue with the merger despite the potential liability that may arise from Cardinal’s mismanagement of funds? Remember, according to our State Auditor, “Cardinal could be required to reimburse the State for any payroll expenditures that are later disallowed because they were unauthorized.” – Post-payment review!!
Essentially, this is a question of contract.
We learned about the potential merger of Cardinal and Eastpointe back in January 2017, when Sarah Stroud, Eastpointe’s chief executive, announced in a statement that the agency plans to negotiate a binding agreement within weeks. The question is – how binding is binding?
Every contract is breakable, but there will be a penalty involved in breaching the contract, usually monetary. So – fantastic – if Eastpointe does back out of the merger, maybe our tax dollars that are earmarked for behavioral health care services for Medicaid recipients can pay the penalty for breaching the contract.
Another extremely troubling finding in Cardinal’s State Audit Report is that Cardinal is sitting on over $70 million in its savings account. The audit states that “[b]ased on Cardinal’s accumulated savings, the Department of Health and Human Services (DHHS) should consider whether Cardinal is overcompensated. For FY 2015 and 2016, Cardinal accumulated approximately $30 million and $40 million, respectively, in Medicaid savings. According to the Center for Medicaid and Medicare Services (CMS), Cardinal can use the Medicaid savings as they see fit.”
As Cardinal sees fit??!!?! These are our tax dollars. Cardinal is not Blue Cross Blue Shield. Cardinal is not a private company. Who in the world thought it a good idea to allow any MCO to use saved money (money not spent on behavioral health care services for Medicaid recipients) to use as it sees fit. It is unconscionable!
Because of my blog, I receive emails almost daily from mothers and fathers of developmentally disabled or mentally handicapped children complaining about Cardinal’s denials or reductions in services. I am also told that there are not enough providers within the catchment area. One mother’s child was approved to receive 16 hours of service, but received zero services because there was no available provider. Another family was told by an MCO that the family’s limit on the amount of services was drastically lower than the actual limit. Families contact me about reduced services when the recipient’s condition has not changed. Providers contact me about MCO recoupments and low reimbursement rates.
Cardinal, and all the MCOs, should be required to use our tax dollars to ensure that enough providers are within the catchment areas to provide the medically necessary services. Increase the reimbursement rates. Increase necessary services.
According to the report, “Cardinal paid about $1.9 million in FY 2015 employee bonuses and $2.4 million in FY 2016 employee bonuses. The average bonus per employee was about $3,000 in FY 2015, and $4,000 in FY 2016. The bonuses were coded to Cardinal’s administrative portion of Medicaid funding source in both years.” Cardinal employs approximately 635 employees.
Good to know that Cardinal is thriving. Employees are overpaid and receive hefty bonuses. Executives are buying alcohol, private and first-class airline tickets and other items with company credit cards. It hosts lavish Christmas parties and retreats. It sits on a $70 million savings account. While I receive reports from families and providers that Medicaid recipients are not receiving medically necessary services, that there are not enough providers within the catchment area to render the approved services, that the reimbursement rates for the services are too low to attract quality providers, that more expensive services are denied for incorrect reasons, and that all the MCOs are recouping money from providers that should not be recouped.
If I were Eastpointe, I would run, regardless the cost.
The NC State Auditor Beth Wood released an audit report on Cardinal Innovations yesterday, May 17, 2017. Here are the key findings. For the full report click here.
Cardinal is a Local Management Entity/Managed Care Organization (LME/MCO) created by North Carolina General Statute 122C. Cardinal is responsible for managing, coordinating, facilitating and monitoring the provision of mental health, developmental disabilities, and substance abuse services in 20 counties across North Carolina. Cardinal is the largest of the state’s seven LME/MCOs, serving more than 850,000 members. Cardinal has contracted with DHHS to operate the managed behavioral healthcare services under the Medicaid waiver through a network of licensed practitioners and provider agencies.
• Cardinal spent money exploring strategic opportunities outside of its core mission
• $1.2 million in CEO salaries paid without proper authorization
• Cardinal’s unreasonable spending could erode public trust
• Cardinal should consult and collaborate with members of the General Assembly before taking any actions outside of its statutory boundaries
• The Office of State Human Resources should immediately begin reviewing and approving Cardinal CEO salary adjustments
• The Department of Health and Human Services should determine whether any Cardinal CEO salary expenditures should be disallowed and request reimbursement as appropriate
• Cardinal should implement procedures consistent with other LME/MCOs, state laws, and federal reimbursement policy to ensure its spending is appropriate for a local government entity
My favorite? Recoup CEO salaries. Maybe we should extrapolate.
Electronic health records or EHR have metamorphosed health care. Choosing a vendor can be daunting and the prices fluctuate greatly. As a provider, you probably determine your EHR platform on which vendor’s program creates the best service notes… or which creates the most foolproof way of tracking time… or which program is the cheapest.
But…what’s in YOUR contract can be legally deadly.
Regardless how you choose your EHR vendor, you need to keep the following legal issues in mind when it comes to EHR and the law:
Regulatory and Clinical Coverage Policy Compliance
Most likely, your EHR vendor does not have a legal degree. Yet, you are buying a product and assuming that the EHR program complies with applicable regulations, rules, and clinical coverage policies – whichever are applicable to your type of service. Well, guess what? These regulations, rules, and clinical coverage policies are not stagnant. They are amended, revised, and re-written more than my chickens lay eggs, but a little less often, because my chickens lay eggs every day.
Think about it – The Division of Medical Assistance (DMA) publishes a monthly Medicaid Bulletin. Every month DMA provides more insight, more explanations, more rules that providers will be held accountable to follow.
Does your EHR program update every month?
You need to review your contract and determine whether the vendor is responsible for regulatory compliance or whether you are. If you are, should you put so much faith in the EHR program?
You are required to maintain your records (depending on your type of service) anywhere from 5-10 years. Let’s say that you sign a four year contract with EHR Vendor X. The four years expires, and you hire a new EHR vendor. You are audited. But Vendor X does not allow you access to the records because you no longer have a contract with them – not their problem!
You need to ensure that your EHR contract allows you access to your documents (because they are your documents) even in the event of the contract expiring or getting terminated. The excuse that “I don’t have access to that” does not equal a legal defense.
This is otherwise known as the “Blame Game.” If there is a problem with regulatory compliance, as in, the EHR records do not follow the regulations, then you need to know whether the EHR vendor will take responsibility and pay, or help pay, for attorneys’ fees to defend yourself.
Like it or not, the EHR vendor does not undergo audits by the state and federal government. The EHR vendor does not undergo post and pre-payment reviews for regulatory compliance. You do. It is your NPI number that is held accountable for regulatory compliance.
You need to check whether there is an indemnification clause in the EHR contract. In other words, if you are accused of an overpayment because of a mistake on the part of the vendor, will the vendor cover your defense? My guess is that there is no indemnification clause.
HIPAA laws require that you minimize the access to private health information (PHI) and prevent dissemination. With hard copies, this was easy. You could just lock up the documents. With EHR, it becomes trickier. Obviously, you have access to the PHI as the provider. But who can access your EHR on the vendor-side? Assuming that the vendor has an IT team in case of computer issues, you have to consider to what exactly does that team have access.
I recently attended a legal continuing education class on data breach and HIPAA compliance for health care. One of the speakers was a Special Agent with the FBI. This gentleman prosecutes data breaches for a living. He said that hackers will pay over $500 per private medical document. Health care companies experienced a 72% increase in cyberattacks between 2013 and 2014. Stolen health care information is 10 times more valuable than your credit card information.
Obviously, I am exaggerating here. I do not believe that The Walking Dead is real and in our future. But here is my point – You are held accountable for maintaining your medical records, even in the face of an act of God or terrorism.
Example: It was 1996. Provider Dentist did not have EHR; he had hard copies. Hurricane Fran flooded Provider Dentist’s office, ruining all medical records. When Provider Dentist was audited, the government did not accept the whole “there was a hurricane” excuse. Dentist was liable for sever penalties and recoupments.
Fast forward to 2017 and EHR – Think a mass computer shutdown won’t happen? Just ask Delta about its August 2016 computer shutdown that took four days and cancelled over 2000 flights. Or Medstar Health, which operates 10 hospitals and more than 250 outpatient facilities, when in March 2016, a computer virus shut down its emails and…you guessed it…its EHR database.
So, what’s in YOUR contract?
You are a provider, and you accept Medicare and Medicaid. You find out that the person with whom you contracted to provide extraction services for your dental patients has been upcoding for the last few months. -or- You discover that the supervisory visits over the past year have been less than…well, nonexistent. -or- Or your licensed therapist forgot to mention that her license was revoked. What do you do?
What do you do when you unearth a potential, past overpayment to you from Medicare or Medicaid?
Number One: You do NOT hide your head!
Do not be an ostrich. First, being an ostrich will have a direct correlation with harsher penalties. Second, you may miss mandatory disclosure deadlines, which will lead to a more in-depth, concentrated, and targeted audits by the government, which will lead to harsher penalties.
As for the first (harsher penalties), not only will your potential, monetary penalties leap skyward, but knowledge (actual or should have had) could put you at risk for criminal liability or false claims liability. As for increased, monetary penalties, recent Office of Inspector General (OIG) information regarding the self disclosure protocol indicates that self disclosure could reduce the minimum multiplier to only 1.5 times the single damages versus 2-10 times the damages without self disclosure.
As for the second (missing deadlines), your penalties will be exorbitantly higher if you had or should have had actual knowledge of the overpayments and failed to act timely. Should the government, despite your lack of self disclosure, decide to audit your billings, you can count on increased scrutiny and a much more concentrated, in-depth audit. Much of the target of the audit will be what you knew (or should have) and when you knew (or should have). Do not ever think: “I will not ever get audited. I am a small fish. There are so many other providers, who are really de-frauding the system. They won’t come after me.” If you do, you will not be prepared when the audit comes a’knocking on your door – and that is just foolish. In addition, never underestimate the breadth and scope of government audits. Remember, our tax dollars provide almost unlimited resources to fund thousands of audits at a time. Being audited is not like winning the lottery, Your chances are not one in two hundred million. If you accept Medicare and/or Medicaid, your chances of an audit are almost 100%. Some providers undergo audits multiple times a year.
Knowing that the definition of “knowing” may not be Merriam Webster’s definition is also key. The legal definition of “knowing” is more broad that you would think. Section 1128J(d)(4)(A) of the Act defines “knowing” and “knowingly” as those terms are defined in 31 U.S.C. 3729(b). In that statute the terms “knowing” and “knowingly” mean that a person with respect to information—(i) has actual knowledge of the information; (ii) acts in deliberate ignorance of the truth or falsity of the information; or (iii) acts in reckless disregard of the truth or falsity of the information. 31 U.S.C. 3729(b) also states that knowing and knowingly do not require proof of specific intent to defraud.
Number Two: Contact your attorney.
It is essential that you have legal counsel throughout the self disclosure process. There are simply too many ways to botch a well-intended, self disclosure into a casus belli for the government. For example, OIG allows three options for self disclosure; however, one option requires prior approval from OIG. Your counsel needs to maintain your self disclosure between the allowable, navigational beacons.
Number Three: Act timely.
You have 60-days to report and pay. Section 1128J(d)(2) of the Social Security Act requires that a Medicare or Medicaid overpayment be reported and returned by the later of (1) the date that is 60 days after the date on which the overpayment was identified or (2) the date any corresponding cost report is due, if applicable. See blog.
If you have a Medicare issue, please continue to Number Four. If your issue is Medicaid only, please skip Number Four and go to Number Five. If your issue concerns both Medicare and Medicaid, continue with Number Four and Five (skip nothing).
Number Four: Review the OIG Self Disclosure Protocol (for Medicare).
OIG publishes a Self Disclosure Protocol. Read it. Print it. Frame it. Wear it. Memorize it.
Since 2008, OIG has resolved 235 self disclosure provider cases through settlements. In all but one of these cases, OIG released the disclosing parties from permissive exclusion without requiring any integrity measures. What that means is that, even if you self disclose, OIG has the authority to exclude you from the Medicare system. However, if you self disclose, may the odds be ever in your favor!
Number Five: Review your state’s self disclosure protocol.
While every state differs slightly in self disclosure protocol, it is surprising how similar the protocol is state-to-state. In order to find your state’s self disclosure protocol, simply Google: “[insert your state] Medicaid provider self disclosure protocol.” In most cases, you will find that your state’s protocol is less burdensome than OIG’s.
On the state-side, you will also find that the benefits of self disclosure, generally, are even better than the benefits from the federal government. In most states, self disclosure results in no penalties (as long as you follow the correct protocol and do not hide anything).
Number Six: Draft your self disclosure report.
Your self disclosure report must contain certain criteria. Review the Federal Registrar for everything that needs to be included.
It is important to remember that you are only responsible for self disclosures going back six years (on the federal side).
Mail the report to:
330 Independence Avenue, Room 5527
Washington, DC 20201
Or you can self disclose online at this link.