Medicare Compliance & Reimbursement

Compliance:

Know the Regulations Like the Back of Your Hand

Keep in mind that compliance is a multi-step process.

Feeling completely up to speed on the catacomb of rules, regulations, and compliance minefields that you need to negotiate each day can seem nearly impossible. Here’s a little help. Get answers to four of the most common compliance questions.

Don’t Think You’re Immune to Whistleblowers

Question 1: What are the most common ways that whistleblowers turn in their employers? We don’t think anyone who works for us would ever blow the whistle on our practice, but we want to be sure.

Answer: There aren’t many published commonalities among whistleblowers, other than the fact that they encounter someone who they think is breaking the law, and they report it to the government or other entity. Unfortunately, their employers probably didn’t think they would ever blow the whistle, but many whistleblowers have collected millions of dollars in their portion of settlement money after a successful Qui Tam lawsuit.

Not only do some employees think a Qui Tam whistleblower suit is going to be their payday, but many have felt ignored after reporting fraud within their practices, and feel that they have nowhere else to turn. If your employees come to you and say, “We aren’t doing this properly — this is not the legal way,” listen to them — they have probably researched the issue extensively before approaching you.

Most whistleblowers say they’ve been telling their bosses over and over again about what they’re doing wrong but the executives don’t listen. Then the whistleblower feels like the inability to change is putting them personally at risk, and they’re concerned. If your employee complains and after investigating, you find that they’re wrong, then go back and talk to them about why they might have a misconception, but don’t ignore their concerns.

A Compliance Plan Alone Won’t Protect You

Question 2: Our practice bought a compliance plan from a consultant about eight years ago and we have not had a problem since then. Other than updating the names on it when a new physician joins our practice, this plan should cover us if we ever get audited, right?

Answer: When you say you “bought” the compliance plan, it is assumed that you purchased a pre-written plan and simply filled in your practice’s information on the front page, which probably is not enough to protect you if an audit ever occurred. Compliance is a multi-step process that does not stop after you file away your compliance plan.

A pre-written compliance plan may be a good place to start. Unfortunately, it provides a false sense of security for several reasons. First and foremost, a compliance plan needs to be directed at the various regulatory, payment, operational, and legal issues that are most implicated for your specific practice.

The Centers for Medicare & Medicaid Services’ (CMS’) policy states that each practice or organization should look carefully at areas of exposure to make sure adequate systems are in place to monitor and correct sources for potential claims and penalties. If you simply buy a compliance plan off the shelf, it is less likely to be integrated into the operations of the practice. Instead, create a customized compliance plan after determining your biggest risk areas, and include details that are tailored to the issues you face.

Identify Conflicts of Interest

Question 3: One of our doctors was failing to sign his charts. Our compliance officer pointed it out to him after our records were requested by a MAC auditor, and the physician went back and signed all of the charts — some of them over a year old — as if he’d signed them on the date of service. Is this okay to do?

Answer: In most cases, no. The billing or ordering physician should not add late signatures to the medical record — beyond the short delay that occurs during the transcription process, CMS says. Instead, he could make use of the attestation process if necessary.

“If the practitioner’s signature is missing from the medical record, submit an attestation statement from the author of the medical record,” the agency advises. “Your contractor may offer specific guidance regarding addenda to medical records.” In addition, many of the Part B payers share sample attestation statements on their websites.

The instructions for signature attestation statement mechanism include, the following, from MLN Matters article MM6698:

  • An attestation statement must be signed and dated by the author of the medical record entry.
  • An attestation statement must contain sufficient information to identify the beneficiary.
  • An attestation statement must be associated with a medical record entry and must be by the author of the medical record entry in question.

In cases where two individuals are in the same group, one may not sign for the other in medical record entries or attestation statements.

Reviewers will consider all attestations that meet the guidelines regardless of the date the attestation was created, except in those cases where the regulations or policy indicate that a signature must be in place prior to a given event or a given date.

Show Employees Where to Report Compliance Issues

Question 4: Our compliance plan does not identify who we should contact if we see compliance violations, but I assume we’d report that to our compliance officer. However, in my case, it’s the compliance officer who appears to be causing the violations. In this case, who do I contact?

Answer: Every compliance plan should include information on handling complaints from different sources within and outside the practice. In larger organizations, there will be some protective mechanisms to make sure that the employee can report a concern anonymously, and there are laws that protect against retaliation for the reporting of compliance concerns.

In addition, a compliance plan should have an option for reporting a concern to another party if the reporting individual is concerned that the compliance officer is implicated in the matter, or if the reporting individual fears some form of retaliation. This scenario suggests that there could be an ethical violation at issue, and a compliance plan should be prepared to address issues of professional ethics as well as any code of conduct or code of ethics adopted by the practice.