Category Archives: Medicaid Audits
DHHS has ousted and taken over Cardinal Innovations!
And may I just say – Finally! Thank you, Sec. Cohen.
Cardinal is/was the largest of seven managed care organizations (MCOs) that was given the task to manage Medicaid funds for behavioral health care recipients. These are Medicaid recipients suffering from developmental disabilities, mental health issues, and substance abuse; these are our population’s most needy. These MCOs are given a firehose of Medicaid money; i.e., tax dollars, and were entrusted by the State of North Carolina, each individual taxpayer, Medicaid recipients, and the recipients’ families to maintain an adequate network of health care providers and authorize medically necessary behavioral health care services. Cardinal’s budget was just over $682 million in 2016. Instead, I have witnessed, as a Medicaid and Medicare regulatory compliance litigator, and have legally defended hundreds of health care providers who were unlawfully terminated from the MCOs’ catchment areas, refused a contract with the MCOs, accused of owing overpayments to the MCOs for services that were appropriately rendered. To the point that the provider catchment areas are woefully underrepresented (especially in Minority-owned companies), recipients are not receiving medically necessary services, and the MCOs are denying medically necessary services. The MCOs do so under the guise of their police power. For years, I have been blogging that this police power is overzealous, unsupervised, unchecked, and in violation of legal authority. I have blogged that the MCOs act as the judge, jury, and executioner. I have also stated that the actions of the MCOs are financially driven. Because when providers are terminated and services are not rendered, money is not spent, at least, on the Medicaid recipients’ services.
But, apparently, the money is spent on executives. This past May, State Auditor Beth Wood wrote a scathing performance audit regarding Cardinal’s lavish spending on CEO pay as well as on expensive Christmas parties and board retreats, charter flights for executives and “questionable” credit card purchases, including alcohol. All of that, her report said, threatened to “erode public trust.” Cardinal’s former CEO Richard Topping made more than $635,000 in salary this year. On Monday (November 21, 2017), DHHS escorted Topping and three other executives out the door. But they did not walk away empty handed. Topping walked away with a $1.7 million severance while three associates left with packages as high as $740,000 – of taxpayer money!
This overspending on salaries and administration is not new. Cardinal has been excessively spending on itself since inception. This has been a long term concern, and I congratulate Sec. Cohen for having the “cojones” to do something about it. (I know. Bad joke. I apologize for the French/Spanish).
In 2011, Cardinal spent millions of dollars constructing its administrative facility.
According to Edifice, the company that built Cardinal Innovations’ grand headquarters, starting in 2011, Cardinal’s building is described as:
“[T[his new three-story, 79,000-square-foot facility is divided into two separate structures joined by a connecting bridge. The 69,000-square-foot building houses the regional headquarters and includes Class A office space with conference rooms on each floor and a fully equipped corporate board room. This building also houses a consumer gallery and a staff cafe offering an outdoor dining area on a cantilevered balcony overlooking a landscaped ravine. The 10,000-square-foot connecting building houses a corporate training center. Computer access flooring is installed throughout the facility and is supported by a large server room to maintain redundancy of information flow.” How much did that cost the Medicaid recipients in Cardinal’s catchment area? Seem appropriate for an agent of the government spending tax money for luxurious office space? Shoot, my legal office is not even that nice. And I don’t get funded by tax dollars!
In 2015, I wrote:
On July 1, 2014, Cardinal Innovations, one of NC’s managed care organizations (MCOs) granted its former CEO, Ms. Pam Shipman, a 53% salary increase, raising her salary to $400,000/year. In addition to the raise, Cardinal issued Ms. Shipman a $65,000 bonus based on 2013-2014 performance.
Then in July 2015, according to the article in the Charlotte Observer, Cardinals paid Ms. Shipman an additional $424,975, as severance. Within one year, Ms. Shipman was paid by Cardinal a whopping $889,975. Almost one million dollars!!!!
Now, finally, DHHS says Cardinal Innovations “acted unlawfully” in giving its ousted CEO $1.7 million in severance, and DHHS took over the Charlotte-based agency. It was a complete oust. One journalist quoted Cardinal as saying, “DHHS officials arrived at Cardinal “unexpectedly and informed the executive leadership team that the department is assuming control of Cardinal’s governance.”” Unexpected they say? Cardinal conducted unexpected audits all the time on their providers. But, the shoe hurts when it’s on the other foot.
The MCOs are charged with the HUGE fiscal and moral responsibility, on behalf of the taxpayers, to manage North Carolina and federal tax dollars and authorize medically necessary behavioral health care services for Medicaid recipients, our population’s most needy. The MCOs in NC are as follows:
- Vaya Health
- Partners Behavioral Health Management
- Cardinal Innovations (formerly)
- Trillium Health Resources
- Alliance Behavioral Health Care
- Sandhills Center
The 1915 (b)(c) Waiver Program was initially implemented at one pilot site in 2005 and evaluated for several years. Two expansion sites were then added in 2012. The State declared it an immediate success and requested and received the authority from CMS to implement the MCO project statewide. Full statewide implementation is expected by July 1, 2013. The MCO project was intended to save money in the Medicaid program. The thought was that if these MCO entities were prepaid on a capitated basis that the MCOs would have the incentive to be fiscally responsible, provide the medically necessary services to those in need, and reduce the dollars spent on prisons and hospitals for mentally ill.
Sadly, as we have seen, fire hoses of tax dollars catalyze greed.
Presumably, in the goal of financial wealth, Cardinal Innovations, and, maybe, expectantly the other MCOs, have sacrificed quality providers being in network and medically necessary services for Medicaid recipients, Cardinal has terminated provider contracts. And for what? Luxurious office space, high salaries, private jets, and a fat savings account.
I remember a former client from over 5 years ago, who owned and ran multiple residential facilities for at-risk, teen-age boys with violent tendencies and who suffered severe mental illness. Without cause, Alliance terminated the client’s Medicaid contract. There were no alternatives for the residents except for the street. We were able to secure a preliminary injunction preventing the termination. But for every one of those stories, there are providers who did not have the money to fight the terminations
Are there legal recourses for health care providers who suffered from Cardinal’s actions?
The million dollar question.
In light of the State Auditor’s report and DHHS’ actions and public comments that it was usurping Cardinal’s leadership based on “recent unlawful actions, including serious financial mismanagement by the leadership and Board of Directors at Cardinal Innovations,” I believe that the arrows point to yes, with a glaring caveat. It would be a massive and costly undertaking. David and Goliath does not even begin to express the undertaking. At one point, someone told me that Cardinal had $271 million in its bank account. I have no way to corroborate this, but I would not be surprised. In the past, Cardinal has hired private, steeply-priced attorney regardless that its funds are tax dollars. Granted, now DHHS may run things differently, but without question, any legal course of action against any MCO would be epically expensive.
Putting aside the money issue, potential claims could include (Disclaimer: this list is nonexhaustive and based on a cursory investigation for the purpose of my blog. Furthermore, research has not been conducted on possible bars to claims, such as immunity and/or exhaustion of administrative remedies.):
- Breach of fiduciary duty. Provider would need to demonstrate that a duty existed between providers and MCO (contractual or otherwise), that said MCO breached such duty, and that damages exist. Damages can include actual loss and if intent is proven, punitive damages may be sought.
- Unfair and Deceptive Trade Practices. Providers would have to prove three elements: (1) an unfair or deceptive act or practice; (2) in or affecting commerce; (3) which proximately caused the injury to the claimant. A court will first determine if the act or practice was “in or affecting commerce” before determining if the act or practice was unfair or deceptive. Damages allowed are actual damages, plus treble damages (three times the actual damages).
- Negligence. Providers would have to show (1) duty; (2) breach; (3) cause in fact; (4) proximate cause; and (5) damages. Actual damages are allowed for a negligence claim.
- Breach of Contract. The providers would have to demonstrate that there was a valid contract; that the providers performed as specified by the contract; that the said MCO failed to perform as specified by the contract; and that the providers suffered an economic loss as a result of the defendant’s breach of contract. Actual damages are recoverable in a breach of action claim.
- Declaratory Judgment. This would be a request to the Court to make a legal finding that the MCO failed to follow certain Medicaid procedures and regulations.
- Violation of Article I, NC Constitution (legal and contractual right to receive payments for reimbursement claims due and payable under the Medicaid regulations.
To name a few…
Interestingly, how OIG and who OIG targets for audits is much more transparent than one would think. OIG tells you in advance (if you know where to look).
Prior to June 2017, the Office of Inspector General’s (OIG) OIG updated its public-facing Work Plan to reflect those adjustments once or twice each year. In order to enhance transparency around OIG’s continuous work planning efforts, effective June 15, 2017, OIG began updating its Work Plan website monthly.
Why is this important? I will even take it a step further…why is this information crucial for health care providers, such as you?
These monthly reports provide you with notice as to whether the type of provider you are will be on the radar for Medicare and Medicaid audits. And the notice provided is substantial. For example, in October 2017, OIG announced that it will investigate and audit specialty drug coverage and reimbursement in Medicaid – watch out pharmacies!!! But the notice also states that these audits of pharmacies for speciality drug coverage will not begin until 2019. So, pharmacies, you have over a year to ensure compliance with your records. Now don’t get me wrong… you should constantly self audit and ensure regulatory compliance. Notwithstanding, pharmacies are given a significant warning that – come 2019 – your speciality drug coverage programs better be spic and span.
Another provider type that will be on the radar – bariatric surgeons. Medicare Parts A and B cover certain bariatric procedures if the beneficiary has (1) a body mass index of 35 or higher, (2) at least one comorbidity related to obesity, and (3) been previously unsuccessful with medical treatment for obesity. Treatments for obesity alone are not covered. Bariatric surgeons, however, get a bit less lead time. Audits for bariatric surgeons are scheduled to start in 2018. Considering that 2018 is little more than a month away, this information is less helpful. The OIG Work Plans do not specific enough to name a month in which the audits will begin…just sometime in 2018.
Where do you find such information? On the OIG Work Plan website. Click here. Once you are on the website, you will see the title at the top, “Work Plan.” Directly under the title are the “clickable” subjects: Recently Added | Active Work Plan Items | Work Plan Archive. Pick one and read.
You will see that CMS is not the only agency that OIG audits. It also audits the Food and Drug Administration and the Office of the Secretary, for example. But we are concerned with the audits of CMS.
Other targeted providers types coming up:
- Security of Certified Electronic Health Record Technology Under Meaningful Use
- States’ Collection of Rebates on Physician-Administered Drugs
- States’ Collection of Rebates for Drugs Dispensed to Medicaid MCO Enrollees
- Adult Day Health Care Services
- Oversight of States’ Medicaid Information Systems Security Controls
- States’ MCO Medicaid Drug Claims
- Incorrect Medical Assistance Days Claimed by Hospitals
- Selected Inpatient and Outpatient Billing Requirements
And the list goes on and on…
Do not think that if your health care provider type is not listed on the OIG website that you are safe from audits. As we all know, OIG is not the only entity that conducts regulatory audits. The States and its contracted vendors also audit, as well as the RACs, MICs, MACs, CERTs…
Never forget that whatever entity audits you, YOU HAVE APPEAL RIGHTS!
The Center for Medicare and Medicaid Services (CMS) announced the expansion of Targeted Probe and Educate (TPE) audits. At first glance, this appears to be fantastic news coming on the heels of so much craziness at Health and Human Services (HHS). We have former-HHS Secretary Price flying our tax dollars all over. Dr. Don Wright stepping up as our new Secretary. The Medicare appeal backlog fiasco. The repeal and replace Obamacare bomb. Amidst all this tomfoolery, health care providers are still serving Medicare and Medicaid patients, reimbursement rates are in the toilet, which drives down quality and incentivizes providers to not accept Medicare or Medicaid (especially Caid), and providers are undergoing “Audit Alphabet Soup.” I actually had a client tell me that he receives audit letters requesting documents and money every single week from a plethora of different organizations.
So when CMS announced that it was broadening its TPE audits, it was a sigh of relief for many providers. But will TPE audits be the benign beasts they are purporting to be?
What is a TPE audit? (And – Can We Have Anymore Acronyms…PLEASE!)
CMS says that TPE audits are benevolent. CMS’ rhetoric indicates that these audits should not cause the toner to run out from overuse. CMS states that TPE audits will involve “the review of 20-40 claims per provider, per item or service, per round, for a total of up to three rounds of review.” See CMS Announcement. The idea behind the TPE audits (supposedly) is education, not recoupments. CMS states that “After each round, providers are offered individualized education based on the results of their reviews. This program began as a pilot in one MAC jurisdiction in June 2016 and was expanded to three additional MAC jurisdictions in July 2017. As a result of the successes demonstrated during the pilot, including an increase in the acceptance of provider education as well as a decrease in appealed claims decisions, CMS has decided to expand to all MAC jurisdictions later in 2017.” – And “later in 2017” has arrived. These TPE audits are currently being conducted nationwide.
Below is CMS’ vision for a TPE audit:
Clear? As mud?
The chart does not indicate how long the provider will have to submit records or how quickly the TPE auditors will review the documents for compliance. But it appears to me that getting through Round 3 could take a year (this is a guess based on allowing the provider 30 days to gather the records and allowing the TPE auditor 30 days to review).
Although the audit is purportedly benign and less burdensome, a TPE audit could take a whole year or more. Whether the audit reviews one claim or 20, having to undergo an audit of any size for a year is burdensome on a provider. In fact, I have seen many companies having to hire staff dedicated to responding to audits. And here is the problem with that – there aren’t many people who understand Medicare/caid medical billing. Providers beware – if you rely on an independent biller or an electronic medical records program, they better be accurate. Otherwise the buck stops with your NPI number.
Going back to CMS’ chart (above), notice where all the “yeses” go. As in, if the provider is found compliant , during any round, all the yeses point to “Discontinue for at least 12 months.” I am sure that CMS thought it was doing providers a favor, but what that tells me is the TPE audit will return after 12 months! If the provider is found compliant, the audit is not concluded. In fact, according to the chart, the only end results are (1) a referral to CMS for possible further action; or (2) continued TPE audits after 12 months. “Further action” could include 100% prepayment review, extrapolation, referral to a Recovery Auditor, or other action. Where is the outcome that the provider receives an A+ and is left alone??
CMS states that “Providers/suppliers may be removed from the review process after any of the three rounds of probe review, if they demonstrate low error rates or sufficient improvement in error rates, as determined by CMS.”
I just feel as though that word “may” should be “will.” It’s amazing how one word could change the entire process.
Silence Can Be Deadly: Can You Be Held Responsible for Medicare/caid Billings Errors That You Never Knew Existed?
You submit a claim for medically necessary services for a Medicaid recipient. Let’s say you provide behavioral health care services and prescribe medication for people who suffer from schizophrenia or bipolar. One member of your staff (a PA) prescribes Abilify to a child – perfectly acceptable treatment for schizophrenia. The child suffers a seizure and dies. It is discovered, unbeknownst to you, as the owner of the agency, that the staff member prescribing the medication was not appropriately supervised. You are shocked. You are dismayed. You are terrified.
Sure enough, someone tattles on you and a qui tam lawsuit is filed against your agency.
A qui tam (kwee tam) lawsuit is Latin for “who as well,” a lawsuit brought by a private citizen (popularly called a “whistleblower”) against a person or company who is believed to have violated the law in the performance of a contract with the government or in violation of a government regulation, when there is a statute which provides for a penalty for such violations. The whistleblower in qui tam lawsuits can be awarded a lot of money, which is why whistleblowers bring the lawsuits.
In other words, a qui tam lawsuit filed against you is bad…very bad.
You are looking at six figures, easily, in attorneys’ fees, years of litigation, endless sleepless nights, and a high dose of Prozac. All because one of your staff was not properly licensed and could not prescribe medication without supervision. And you had no idea…
Wait…what? Isn’t “intent” or, legally, “scienter” a requirement to prove fraud?? You mean that I could be prosecuted for fraud when I had zero intent to commit fraud, plus, I didn’t even know it was occurring?
This is what happened to Universal Health Services, Inc.’s subsidiary that provided behavioral health care services in Massachusetts. Universal Health Serv. v. United States ex rel. Escobar, 136 S.Ct. 1989 (2016).
The Court of Appeals for the First Circuit held that each time a billing party submits a claim, it implicitly communicates that it conformed to the relevant program requirements, such that it was entitled to receive payment. Every claim implicitly promised compliance of every law!
Imagine the slippery slope with this decision – a multi-state company with offices across the nation bills millions to Medicare and Medicaid monthly. Executive management is in Rhode Island. An office in Tampa fails to check the criminal background of its employees for a period of a year, but in all other ways complies with the regulations and renders medically necessary services that entire year. According to the 1st Circuit opinion, the company could be liable for fraud and the false claims act, resulting in millions of dollars of penalties.
Did it matter to the judge in this case that the company was large? What if it were a small company with one office and four staff?
Juxtapose the 7th Circuit which held only express (or affirmative) falsehoods can render a claim “false” or “fraudulent.” In other words, you can only be held liable for fraud if you purposely or affirmatively acted.
The Supreme Court (last year) held that the implied false certification theory can, at least in some circumstances, provide a basis for liability.
The thinking is that a half truth is a lie. Which is correct…but is it fraud? A classic example of an actionable half-truth in contract law is the seller who reveals that there may be two new roads near a property he is selling, but fails to disclose that a third potential road might bisect the property.
The False Claims Act imposes civil liability on “any person who . . . knowingly presents, or causes to be presented, a false or fraudulent claim for payment or approval.” §3729(a)(1)(A). Here’s the prob-lem-o: Congress never defined what is “false.”
Here is what the Supreme Court had to say about the unlicensed social worker:
“So too here, by submitting claims for payment using payment codes that corresponded to specific counseling services, Universal Health represented that it had provided individual therapy, family therapy, preventive medication counseling, and other types of treatment. Moreover, Arbour staff members allegedly made further representations in submitting Medicaid reimbursement claims by using National Provider Identification numbers corresponding to specific job titles. And these representations were clearly misleading in context. Anyone informed that a social worker at a Massachusetts mental health clinic provided a teenage patient with individual counseling services would probably—but wrongly—conclude that the clinic had complied with core Massachusetts Medicaid requirements (1) that a counselor “treating children [is] required to have specialized training and experience in children’s services,” 130 Code Mass. Regs. §429.422, and also (2) that, at a minimum, the social worker possesses the prescribed qualifications for the job, §429.424(C). By using payment and other codes that conveyed this information without disclosing Arbour’s many violations of basic staff and licensing requirements for mental health facilities, Universal Health’s claims constituted misrepresentations.””
In English, this means that: With the act of submitting a Medicaid claim, you are promising that you have followed all rules, including the licensure status required for rendering that service.
The Court held that:
The issue is whether a defendant should face False Claims Act liability only if it fails to disclose the violation of a contractual, statutory, or regulatory provision that the Government expressly designated a condition of payment. The Court concluded that the FCA does not impose this limit on liability. But it also held that not every undisclosed violation of an express condition of payment automatically triggers liability. It matters whether the omission was material.
The Supreme Court determined that not all statutory or regulatory violations are material, disagreeing with the government and the 1st Circuit.
But the Court never made a decision regarding Universal Health Services, Inc. Instead, it vacated the 1st Circuit and remanded the case for reconsideration of whether respondents have sufficiently pleaded a False Claims Act violation. But in doing so, the Court gave guidance as to its opinion. It wrote: “This case centers on allegations of fraud, not medical malpractice.”
What that one sentence tells me is that the Supreme Court does not want to create liability for any and every regulatory omission/mistake on a Medicaid claim. Mistakes happen. People are human. Apparently, even the Supreme Court knows that…
On September 6, 2017, I appeared on the Besler Hospital Finance Podcast regarding:
Update on the Medicare appeals backlog [PODCAST]
Feel free to listen to the podcast, download it, and share with others!
On July 13, 2017, Attorney General Jeff Sessions and Department of Health and Human Services (HHS) Secretary Tom Price, M.D., announced the Department of Justice’s (DOJ) biggest-ever health care fraud takedown. 412 health care providers were charged with health care fraud. In total, allegedly, the 412 providers schemed and received $1.3 billion in false billings to Medicare, Medicaid, and TRICARE. Of the 412 defendants, 115 are physicians, nurses, and other licensed medical professionals. Additionally, HHS has begun the suspension process against 295 health care providers’ licenses.
The charges include allegations of billing for medically unnecessary treatments or services that were not really provided. The DOJ has evidence that many of the defendants had illegal kickback schemes set up. More than 120 of the defendants were charged with unlawfully or inappropriately prescribing and distributing opioids and other narcotics.
While this particular sting operation resulted from government investigations, not all health care fraud is discovered through government investigation. A great deal of fraud is uncovered through private citizens coming forward with incriminating information. These private citizens can file suit against the fraudulent parties on behalf of the government; these are known as qui tam suits.
Being a whistleblower goes against what most of us are taught as children. We are taught not to be a tattletail. I have vivid memories from elementary school of other kids acting out, but I would remain silent and not inform the teacher. But in the health care world, tattletails are becoming much more common – and they make money for blowing that metaphoric whistle.
What is a qui tam lawsuit?
Qui tam is Latin for “who as well.” Qui tam lawsuits are a type of civil lawsuit whistleblowers (tattletails) bring under the False Claims Act, a law that rewards whistleblowers if their qui tam cases recover funds for the government. Qui tam cases are a powerful weapon against Medicare and Medicaid fraud. In other words, if an employee at a health care facility witnesses any type of health care fraud, even if the alleged fraud is unknown to the provider, that employee can hire an attorney to file a qui tam lawsuit to recover money on behalf of the government. The government investigates the allegations of fraud and decides whether it will join the lawsuit. Health care entities found guilty in a qui tam lawsuit will be liable to government for three times the government’s losses, plus penalties.
The whistleblower is rewarded for bringing these lawsuits. If the government intervenes in the case and recovers funds through a settlement or a trial, the whistleblower is entitled to 15% – 25% of the recovery. If the government doesn’t intervene in the case and it is pursued by the whistleblower team, the whistleblower reward is between 25% – 30% of the recovery.
These recoveries are not low numbers. On June 22, 2017, a physician and rehabilitative specialist agreed to pay $1.4 million to resolve allegations they violated the False Claims Act by billing federal health care programs for medically unreasonable and unnecessary ultrasound guidance used with routine lab blood draws, and with Botox and trigger point injections. If a whistleblower had brought this lawsuit, he/she would have been awarded $210,000 – 420,000.
On June 16, 2017, a Pennsylvania-based skilled nursing facility operator agreed to pay roughly $53.6 million to settle charges that it and its subsidiaries violated the False Claims Act by causing the submission of false claims to government health care programs for medically unnecessary therapy and hospice services. The allegations originated in a whistleblower lawsuit filed under the qui tam provisions of the False Claims Act by 7 former employees of the company. The whistleblower award – $8,040,000 – 16,080,000.
There are currently two, large qui tam cases against United Health Group (UHG) pending in the Central District of California. The cases are: U.S. ex rel. Benjamin Poehling v. UnitedHealth Group, Inc. and U.S. ex rel. Swoben v. Secure Horizons, et al. Both cases were brought by James Swoben, who was an employee and Benjamin Poehling, who was the former finance director of a UHG group that managed the insurer’s Medicare Advantage Plans. On May 2, 2027, the U.S. government joined the Poehling lawsuit.
The charges include allegations that UHG:
- Submitted invalid codes to the Center for Medicare and Medicaid Services (CMS) that it knew of or should have known that the codes were invalid – some of the dates of services at issue in the case are older than 2008.
- Intentionally avoided learning that some diagnoses codes or categories of codes submitted to their plans by providers were invalid, despite acknowledging in 2010 that it should evaluate the results of its blind chart reviews to find codes that need to be deleted.
- Failed to follow up on and prevent the submissions of invalid codes or submit deletion for invalid codes.
- Attested to CMS each year that the data they submitted was true and accurate while knowing it was not.
UHG would not be in this expensive, litigious pickle had it conducted a self audit and followed the mandatory disclosure requirements.
What are the mandatory disclosure requirements? Glad you asked…
Section 6402(a) of the Affordable Care Act (ACA) creates an express obligation for health care providers to report and return overpayments of Medicare and Medicaid. The disclosure must be made by 60 days days after the date that the overpayment was identified or the date any corresponding cost report is due, if applicable. Identification is defined as the point in which the provider has determined or should have determined through the exercise of due diligence that an overpayment exists. CMS expects the provider to proactively investigate any credible information of a potential overpayment. The consequences of failing to proactively investigate can be seen by the UHG lawsuits above-mentioned. Apparently, UHG had some documents dated in 2010 that indicated it should review codes and delete the invalid codes, but, allegedly, failed to do so.
How do you self disclose?
According to CMS:
“Beginning June 1, 2017, providers of services and suppliers must use the forms included in the OMB-approved collection instrument entitled CMS Voluntary Self-Referral Disclosure Protocol (SRDP) in order to utilize the SRDP. For disclosures of noncompliant financial relationships with more than one physician, the disclosing entity must submit a separate Physician Information Form for each physician. The CMS Voluntary Self-Referral Disclosure Protocol document contains one Physician Information Form.”
Durable Medical Equipment (DME) providers across the country are walking around with large, red and white bullseyes on their backs. Starting back in March 2017, the RAC audits began targeting DME and home health and hospice. DME providers also have to undergo audits by the Comprehensive Error Rate Testing Program (CERT).
The RAC for Jurisdiction 5, Performant Recovery, is a national company contracted to perform Recovery Audit Contractor (RAC) audits of durable medical equipment, prosthetic, orthotic and supplies (DMEPOS) claims as well as home health and hospice claims. Medicare Part B covers medically necessary DME. The following are the RAC regions:
Region 1 – Performant Recovery, Inc.
Region 2 – Cotiviti, LLC
Region 3 – Cotiviti, LLC
Region 4 – HMS Federal Solutions
Region 5 – Performant Recovery, Inc.
As you can see from the above map, we are in Region 3. The country is broken up into four regions. But, wait, you say, you said that Performant Recovery is performing RAC audits in region 5 – where is region 5?
Region 5 is the whole country.
The Centers for Medicare and Medicaid (CMS) has contracted with Performant Recovery to audit DME and home health and hospice across the whole country.
DME and home health and hospice providers – There is nowhere to hide. If you provide equipment or services within the blue area, region 5, you are a target for a RAC audit.
What are some common findings in a RAC audit for DME?
Without question, the most common finding in a RAC or CERT audit is “insufficient documentation.” The problem is that “insufficient documentation” is nebulous, at best, and absolutely incorrect, at worst. This error is by auditors if they cannot conclude that the billed services were actually provided, were provided at the level billed, and/or were medically necessary. An infuriating discovery was when I was defending a DME RAC audit and learned that the “real” reason for the denial of a claim was that no one went to the consumers door, knocked on it, and verified that a wheelchair had, in fact, been delivered. In-person verification of delivery is not a requirement, nor should it be. Such a burdensome requirement would unduly prejudice DME companies. Yes, you need to be able to show a signed and dated delivery slip, but you do not have to go to the consumer’s house and snap a selfie with the consumer and the piece of equipment.
Another common target for RAC audits is oxygen tubing, oxygen stands/racks, portable liquid oxygen systems, and oxygen concentrators. RAC auditors mainly look for medical necessity for oxygen equipment. Hospital beds/accessories are also a frequent find in a RAC audit. A high use of hospital beds/accessories codes can enlarge the target on your back.
Another recurrent issue that the RAC auditors cite is billing for bundled services separately. Medicare does not make separate payment for DME provider when a beneficiary is in a covered inpatient stay. RAC auditors check whether suppliers are inappropriately receiving separate DME payment when the beneficiary is in a covered inpatient stay. Suppliers can’t bill for DME items used by the patient prior to the patient’s discharge from the hospital. Medicare doesn’t allow separate billing for surgical dressings, urological supplies, or ostomy supplies provided in the hospital because reimbursement for them is wrapped into the Part A payment. This prohibition applies even if the item is worn home by the patient when leaving the hospital.
As always, documentation of the face to face encounter and the prescription are also important.
You can find the federal regulation for DME documentation at 42 CFR 410.38 – “Durable medical equipment: Scope and conditions.”
Once you receive an alleged overpayment, know your rights! Appeal, appeal, appeal!! The Medicare appeal process can be found here.
What if, right before your wedding day, you discover a secret about your betrothed that changes the very fabric of your relationship. For example, you find out your spouse-to-be is actually gay or a heroin addict. Not that there is anything bad about being gay or a heroin addict, but these are important facts to know and accept [or reject] about your future mate prior to the ringing of the wedding bells. The same is true with two companies that are merging to become one. The merged entity will be liable for any secrets either company is keeping. In this hypothetical, Eastpointe just found out that Cardinal has been cheating – and the wedding is set for July 1!
Cardinal Innovations and Eastpointe, two of our managed care organizations (MCO) charged with managing Medicaid behavioral health care funds plan to merge, effective July 1, 2017. Together the monstrous entity would manage Medicaid behavioral funds for 32 counties.
Last week the State Auditor published a scathing Performance Audit on Cardinal. State Auditor Beth Wood found more than $400,000 in “unreasonable” expenses, including corporate retreats at a luxury hotel in Charleston, S.C.; chartering planes to fly to Greenville, Rocky Mount and Smithfield; providing monthly detailing service for the CEO’s car; and purchasing alcohol, private and first-class airline tickets and other items with company credit cards.
Cardinal’s most significant funding is provided by Medicaid. Funding from Medicaid totaled $567 million and $587 million for state fiscal years 2015 and 2016, respectively. In other words, the State Auditor found that Cardinal is using our tax dollars – public money obtained by you and me – for entertainment, while concurrently, denying behavioral health care services and terminating providers from its catchment area. Over 30% of my salary goes to taxes. I do not accept Cardinal mismanaging my hard earned money – or anyone else’s. It is unacceptable!
“The unreasonable spending on board retreats, meetings, Christmas parties and travel goes against legislative intent for Cardinal’s operations, potentially resulting in the erosion of public trust,” the audit states.
Eastpointe, however, is not squeaky clean.
A June 2015 Performance Audit by the State Auditor found that its former chief financial officer Bob Canupp was alleged to have received kickbacks worth a combined $547,595. It was also alleged that he spent $143,041 on three agency vehicles without a documented business purpose. Canupp, chief executive Ken Jones and other employees also were determined to have used Eastpointe credit cards to make $157,565 in “questionable purchases.” There has not been an audit, thus far, on Eastpointe’s management of public funds. One can only hope that the results of the Cardinal audit spurs on Beth Wood to metaphorically lift the skirts of all the MCOs.
Given the recent audit on Cardinal, I would like to think that Eastpointe is hesitant to merge with such an entity. If a provider had mismanaged Medicaid funds like the State Auditor found that Cardinal did, without question, the authorities would be investigating the provider for Medicaid fraud, waste, and abuse. Will Eastpointe continue with the merger despite the potential liability that may arise from Cardinal’s mismanagement of funds? Remember, according to our State Auditor, “Cardinal could be required to reimburse the State for any payroll expenditures that are later disallowed because they were unauthorized.” – Post-payment review!!
Essentially, this is a question of contract.
We learned about the potential merger of Cardinal and Eastpointe back in January 2017, when Sarah Stroud, Eastpointe’s chief executive, announced in a statement that the agency plans to negotiate a binding agreement within weeks. The question is – how binding is binding?
Every contract is breakable, but there will be a penalty involved in breaching the contract, usually monetary. So – fantastic – if Eastpointe does back out of the merger, maybe our tax dollars that are earmarked for behavioral health care services for Medicaid recipients can pay the penalty for breaching the contract.
Another extremely troubling finding in Cardinal’s State Audit Report is that Cardinal is sitting on over $70 million in its savings account. The audit states that “[b]ased on Cardinal’s accumulated savings, the Department of Health and Human Services (DHHS) should consider whether Cardinal is overcompensated. For FY 2015 and 2016, Cardinal accumulated approximately $30 million and $40 million, respectively, in Medicaid savings. According to the Center for Medicaid and Medicare Services (CMS), Cardinal can use the Medicaid savings as they see fit.”
As Cardinal sees fit??!!?! These are our tax dollars. Cardinal is not Blue Cross Blue Shield. Cardinal is not a private company. Who in the world thought it a good idea to allow any MCO to use saved money (money not spent on behavioral health care services for Medicaid recipients) to use as it sees fit. It is unconscionable!
Because of my blog, I receive emails almost daily from mothers and fathers of developmentally disabled or mentally handicapped children complaining about Cardinal’s denials or reductions in services. I am also told that there are not enough providers within the catchment area. One mother’s child was approved to receive 16 hours of service, but received zero services because there was no available provider. Another family was told by an MCO that the family’s limit on the amount of services was drastically lower than the actual limit. Families contact me about reduced services when the recipient’s condition has not changed. Providers contact me about MCO recoupments and low reimbursement rates.
Cardinal, and all the MCOs, should be required to use our tax dollars to ensure that enough providers are within the catchment areas to provide the medically necessary services. Increase the reimbursement rates. Increase necessary services.
According to the report, “Cardinal paid about $1.9 million in FY 2015 employee bonuses and $2.4 million in FY 2016 employee bonuses. The average bonus per employee was about $3,000 in FY 2015, and $4,000 in FY 2016. The bonuses were coded to Cardinal’s administrative portion of Medicaid funding source in both years.” Cardinal employs approximately 635 employees.
Good to know that Cardinal is thriving. Employees are overpaid and receive hefty bonuses. Executives are buying alcohol, private and first-class airline tickets and other items with company credit cards. It hosts lavish Christmas parties and retreats. It sits on a $70 million savings account. While I receive reports from families and providers that Medicaid recipients are not receiving medically necessary services, that there are not enough providers within the catchment area to render the approved services, that the reimbursement rates for the services are too low to attract quality providers, that more expensive services are denied for incorrect reasons, and that all the MCOs are recouping money from providers that should not be recouped.
If I were Eastpointe, I would run, regardless the cost.
The NC State Auditor Beth Wood released an audit report on Cardinal Innovations yesterday, May 17, 2017. Here are the key findings. For the full report click here.
Cardinal is a Local Management Entity/Managed Care Organization (LME/MCO) created by North Carolina General Statute 122C. Cardinal is responsible for managing, coordinating, facilitating and monitoring the provision of mental health, developmental disabilities, and substance abuse services in 20 counties across North Carolina. Cardinal is the largest of the state’s seven LME/MCOs, serving more than 850,000 members. Cardinal has contracted with DHHS to operate the managed behavioral healthcare services under the Medicaid waiver through a network of licensed practitioners and provider agencies.
• Cardinal spent money exploring strategic opportunities outside of its core mission
• $1.2 million in CEO salaries paid without proper authorization
• Cardinal’s unreasonable spending could erode public trust
• Cardinal should consult and collaborate with members of the General Assembly before taking any actions outside of its statutory boundaries
• The Office of State Human Resources should immediately begin reviewing and approving Cardinal CEO salary adjustments
• The Department of Health and Human Services should determine whether any Cardinal CEO salary expenditures should be disallowed and request reimbursement as appropriate
• Cardinal should implement procedures consistent with other LME/MCOs, state laws, and federal reimbursement policy to ensure its spending is appropriate for a local government entity
My favorite? Recoup CEO salaries. Maybe we should extrapolate.