July 2011 Archives

July 28, 2011

FDA Proposes First Regulations on the Health-Related Mobile Application Industry

With the rise of the health-related mobile application market, the Food and Drug Administration (FDA) proposed its first-ever regulations on the industry. The regulations target three types of applications that require the FDA's approval: an application that acts as an accessory to a regulated medical device, turns the mobile technology into a regulated medical device or makes recommendations pertaining to a patient's treatment or diagnosis. The FDA believes that just because a medical device is used with a cellular phone, it should still face the same regulations as its traditional non-mobile counterpart.

The FDA plans to collect feedback over a 90 day period from manufacturers and other health care providers, and until this happens the regulations will not take effect. According to the Washington Post, some concerns have already surfaced in regards to the proposed regulations, such as the FDA's ability to monitor the technology when the mobile industry faces such rapid changes. Another concern is the willingness of investors and companies to back these products when facing this sort of regulatory uncertainty. Jeff Shuren, director for the FDA's Center for Devices and Radiological Health, said that the FDA will likely take a more subtle approach in reviewing the mobile applications due to the speeding change of the industry, such as focusing on the design of the product and eliminating the requirement of clinical trials.

If you have any questions relating to mobile application compliance with FDA regulations or any other compliance issues, please contact a Wachler & Associates attorney at 248-544-0888.

Washington Post article: http://www.washingtonpost.com/business/capitalbusiness/fda-moves-to-regulate-mobile-health-applications/2011/07/18/gIQApwLdNI_story.html

July 21, 2011

Proposed Rule Requires Face-to-Face Encounter for Medicaid Home Health Beneficiaries

The face-to-face requirements for Medicaid home health services will follow a similar timeframe to that set forth for Medicare. The timeframes were established by the Patient Protections and Affordable Care Act (PPACA), and CMS intends to enforce the regulation. A proposed rule creates the requirement that physicians document the existence of a face-to-face encounter with Medicaid beneficiaries within 90 days prior to the ordering of home health services. However, in circumstances where it is deemed not to be possible to meet the 90 day requirement, the face-to-face encounter would be satisfied by an encounter with the beneficiary occurring within 30 days after the start of home health services. Additionally, states that currently allow use of telehealth or telemedicine when delivering services under Medicaid will remain able to use these techniques to fulfill the face-to-face encounter.

If you have any questions pertaining to the Medicare or Medicaid face-to-face requirement, telemedicine rules or any other regulations under PPACA, please contact a Wachler & Associates attorney at 248-544-0888.

July 20, 2011

Patient Sues Tufts Medical Center for Violating Her Privacy Rights

According to a Boston Globe article, Tufts Medical Center and one of its primary care doctors are being sued by a patient whose privacy rights were allegedly violated when her medical history was sent to a fax machine at her workplace without her consent. The patient, Kimberly White, was recovering from a hysterectomy this past December. While recovering, she asked Dr. Kimberly Schelling to fax a form to White's employer that was required to receive disability payments. Instead, medical records were allegedly sent to a shared fax machine in the office, which resulted in White's medical records being viewed by at least two co-workers. White claimed that this disclosure has caused her extreme embarrassment and the inability to show her face at work again. Tufts has not yet filed a response to the complaint, but the hospital maintains that they were in full compliance with the patient's request to share the medical information.

The HIPAA Privacy Rule allows information to be disclosed pursuant to a patient's authorization or as otherwise permitted by the HIPAA Privacy Rule. The Office of Civil Rights (OCR) has issued guidance stating that the use of fax machines are permissible so long as reasonable safeguards are taken to protect the information from unauthorized or impermissible disclosure. If you have questions regarding patient privacy or assistance with HIPAA compliance policies and procedures, please contact a Wachler & Associates attorney at 248-544-0888.

July 19, 2011

Detroit Clinic Owner Sentenced to 27 Months in Prison for Medicare Fraud

A Miami resident and Detroit clinic owner, Arnaldo Rosario, was recently sentenced to 27 months in prison for his role in recruiting patients to three clinics in the Detroit area. According to the FBI, the Medicare fraud scheme involved remuneration to Medicare beneficiaries for visiting the clinics and fraudulently representing that they had received treatments that were either not provided or not medically necessary. The services were then billed to Medicare and the beneficiaries would receive cash kickbacks for their role in the scheme. Rosario was responsible for obtaining cash from the clinics to pay the kickbacks to the beneficiaries and also to other co-defendants for their role in recruiting and paying Medicare patients. Over a span of one year, Medicare had paid approximately $10.8 million to the clinics based on the fraudulent claims. This case was brought as part of the Medicare Fraud Strike Force, which in its four years of operations, has already discovered more than $2.3 billion worth of allegedly fraudulent Medicare claims. Both Miami and Detroit are cities targeted by the Medicare Fraud Strike Force and providers in these cities should be aware of this heightened scrutiny.

If you have any questions regarding the Anti-Kickback Statute, inappropriate remuneration to beneficiaries, medical necessity issues, or any other compliance issues relating to Medicare fraud or allegations of Medicare fraud, please contact a Wachler & Associates attorney as 248-544-0888.

July 19, 2011

CMS Releases 3rd Quarter Summary of Medicare FSS RAC Recoveries

The Centers for Medicare and Medicaid Services (CMS) has posted a summary of the Medicare Fee for Service RAC recoveries for the 3rd quarter of fiscal year 2011. The summary displays the amount of each region's overpayments, underpayments and total corrections, as well as the nationwide totals. In addition to these quantitative findings, CMS has also identified the top issues for each region.

Click here to view the summary posted by CMS.

Review of these issues is helpful for providers wishing to develop a compliance program that will alert them to potential RAC issues prior to a RAC audit. The issues identified by CMS should be a key focus area for providers developing compliance programs to prepare for and hopefully avoid RAC audits. If you need assistance in preparing for, or defending against a RAC audit through the Medicare appeals process, or for assistance implementing a compliance program geared toward identifying and correcting potential risk areas related to RAC audits, please contact a Wachler & Associates attorney at 248-544-0888.

July 18, 2011

HHS Suspects Nursing Homes may be Committing Medicare Fraud

Health and Human Services (HHS) Office of the Inspector General (OIG) has reported that skilled nursing facilities (SNFs) may be a possible suspect for receiving fraudulent Medicare payments. Auditors for HHS have discovered that many nursing homes are collecting Medicare payments that are much higher than the national average. For example, the average cost for some patients was in excess of $150 per day, whereas the national average is only $3.39 per day. The OIG believes that fraud, waste, and abuse are the likely causes of such payments. These suspicions were highlighted in a report that focused on situations in which Medicare does not cover the patient's stay in a nursing home but does cover certain procedures during the patient's stay at the home. The report demonstrated that some nursing homes were paid more than three times the national average for services such as drug treatments and medical equipment.

In light of this recent report, nursing homes can expect increased scrutiny related to the medical necessity of services provided to Medicare beneficiaries. An effective skilled nursing facility (SNF) compliance program, including internal compliance auditing and monitoring, can help SNFs to identify any potential compliance issues prior to a government investigation. If you have compliance questions relating to SNF billing compliance, medical necessity of services provided to SNF beneficiaries or are in need of assistance preparing for or appealing a SNF Medicare audit, please contact a Wachler & Associates attorney at 248-544-0888.

July 18, 2011

GAO Report Finds CMS' Systems to Detect Fraud 'Inadequate and 'Underused'

Despite the large number of Medicare and Medicaid audits and investigations currently being conducted by government contractors, the Government Accountability Office (GAO) recently released a report stating that the federal government's systems for analyzing Medicare and Medicaid data to detect fraud are "inadequate and underused."

In 2009, CMS enacted new $150 million systems intended to be a one-stop database accessible to all CMS staff and contractors, law enforcement, and state agencies. However, the report finds that the "share systems data" and other tools to identify and prevent payment of fraudulent claims are still missing. The federal government believes the technology is crucial to curtailing the $60 billion to $90 billion in fraudulent claims paid each year.

The GAO report noted that the current systems don't even include Medicaid data. Further, only 41 of the 639 analysts charged with using the new detection system have been trained so far. The systems are meant to replace CMS' "pay and chase" method, which allows criminals to flea before CMS can analyze their claim. The new systems detect fraudulent Medicare and Medicaid claims in real time and deny the claim prior to payment.

Brian Cook, CMS spokesman, explained that, "CMS takes our responsibility to fight health care fraud seriously. As we work to improve these existing systems, we are implementing advanced new technologies to further enhance our efforts to identify potential fraud before payments are made." CMS implemented a new technology program on July 1, 2011, which is not included in the report. This new prevention and screening method will use similar technology to that of credit card companies.

The GAO hearing will push CMS to enact and use these technologies as soon as possible. As a result, healthcare providers and suppliers should expect increased scrutiny over Medicare and Medicaid claims. CMS uses data mining to identify billing outliers and examine their claims.

Providers with an effective compliance program may be able to identify outliers and potential issues through internal auditing and monitoring, thus keeping providers off of the CMS data analysts' radar. For assistance with creating a compliance program, conducting internal compliance audits, or for assistance defending Medicare and Medicaid fraud investigations, please contact a Wachler & Associates attorney at 248-544-0888.

July 14, 2011

CMS to Release Comparative Billing Reports for Physicians Ordering Spinal Orthotic Devices

The Centers for Medicare and Medicaid Services (CMS) recently announced it will release a national provider Comparative Billing Report (CBR) this July. CMS will release 5,000 CBRs to physicians ordering spinal orthotic devices billed to Medicare. The CBRs are produced by Safeguard Services under contract with CMS and will provide comparative data to help show how these individual providers compare to other providers within the same field. These comparative studies are designed to help providers review their coding and billing practices and utilization patterns, and take proactive compliance measures. Providers should view CBRs as a tool, rather than a warning, as a way to aid them in properly complying with Medicare billing rules. It is also important to understand that CBRs do not contain patient or case-specific data, but rather only summary billing information as a method of ensuring privacy.

If you are a recipient of a spinal orthotic CBR or are among the other provider types that have been identified to receive CBRs (i.e. physical therapists, chiropractors, ambulance, hospice, podiatry, and sleep studies), please contact a Wachler & Associates attorney at 248-544-0888 to discuss evaluating the CBR analysis and development of an appropriate compliance plan that will reduce audit risks.

Click Here to view a Spinal Orthotic CBR sample

July 13, 2011

OIG Concerned About the Rising Costs of Hospice Care

In collaboration with Kaiser Health News, the New York Times recently reported on the concerns over the rising costs associated with hospice care. While Medicare is praised for its reimbursement of providers for hospice services because of the medical and emotional support hospice gives to dying patients, there are concerns that hospice is being misused. According to the article, four in 10 Medicare beneficiaries use hospice services before they die and the cost of hospice care has risen from $2.9 billion in 2000 to $12 billion in 2009.

In response to the growing anxiety that hospice is being abused, the Office of Inspector General of the Department of Health and Human services examined the provision of hospice services in nursing homes. The OIG found that hospices routinely failed to document whether the patients belong in hospice care or that the patients received the care they were entitled to. This discovery prompted the OIG to investigate any unusual patterns in hospice stays.

In light of this recent scrutiny of hospice costs, hospice providers should take extra precautions with regard to compliance programs and should consider conducting self-audits to identify potential risk areas within their organizations.

For more information on the regulation of the provision of hospice care, development of hospice compliance programs, or defense of audits related to hospice services, please contact a Wachler & Associates attorney at 248-544-0888.

http://www.nytimes.com/2011/06/28/health/28hospice.html?_r=3&partner=rss&emc=rss

http://www.racattorneys.com/PracticeAreas/Hospice-Home-Health.asp

July 12, 2011

Recently Released Medical Marijuana Memo Contradicts Obama Administration's Policy Not to Interfere with State Law

In contradiction of President Obama's campaign promises to let states create their own policies regarding medical marijuana use, the Obama administration released a memo approving federal prosecution of anyone in the business of cultivating or supplying marijuana to patients, whether or not they comply with state law. The original guidelines that were set in October 2009 were put in place as a way to spare seriously ill patients and their caregivers from prosecution. However, the memo stated that these guidelines caused an increase in the commercial cultivation, sale, distribution and use of medical marijuana, in which many of these activities casts suspicion on whether it is truly for medical purposes. In the memo, Deputy Attorney General James Cole stated, "persons who are in the business of cultivating, selling, or distributing marijuana, and those who knowingly facilitate such activities, are in violation of the Controlled Substances Act, regardless of state law."

There have already been raids on suppliers in the 16 states where medical marijuana is legal under state law. Additionally, officials in 10 states have recently received warnings about possible prosecution if they authorized marijuana-selling dispensaries. These warnings have caused states, such as Washington and Rhode Island, to abandon plans that would legalize medical marijuana dispensaries. Other states, including Delaware and Vermont, have decided to continue in their efforts to legalize medical marijuana by approving a number or dispensaries for patients in need of the drug.

If you are a provider with questions regarding participation in the certification of patients for medical marijuana usage and compliance with state or federal law, including compliance with the Michigan Medical Marihuana Act or the Michigan Medical Marihuana Program, please contact at Wachler & Associates attorney at 248-544-0888.

July 12, 2011

The University of California at Los Angeles Health System Agrees to Settle After Violating HIPAA

The University of California at Los Angeles Health System (UCLAHS) has agreed to settle potential HIPAA violations stemming from an investigation conducted by the U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR). UCLAHS has agreed to pay $865,500, along with implementing a plan of correction to ensure future compliance with HIPAA.

The investigation was sparked by two separate complaints filed with OCR from two celebrity patients. Allegedly, UCLAHS employees repeatedly viewed the electronic health information of these patients without the necessary authorization. OCR also discovered that the employees looked at the electronic protected health information of a number of other patients over a span of three years.

Under HIPAA, entities must reasonably restrict access to patient information to those employees who have a legitimate work-related reason to view the information. Furthermore, entities are required to sanction employees who have violated these policies. OCR maintains a firm stance that entities should properly train all employees about the current laws protecting patient health information and should have policies in place to ensure compliance with these policies.

As part of the settlement agreement, UCLAHS has agreed to implement a training program for all UCLAHS employees who use protected health information, to sanction any employees who violate the law, and to use an independent monitor to evaluate proper compliance with the plan.

HIPAA privacy rules grant patients the right to have their health information protected against the unlawful use by employees. This recent enforcement is yet another example of the OCR's more aggressive enforcement of HIPAA violations. HHS OCR stresses the importance of having a compliance plan in place to protect the health information of patients, and furthermore, that entities will continue to be held accountable for any unlawful access to the information. If you have any questions regarding protection of protected health information (PHI), electronic protected health information (EPHI), or creating a HIPAA policies and procedures to comply with the HIPAA Privacy or HIPAA Security rules, please contact a Wachler & Associates attorney at 248-544-0888.

July 11, 2011

Recent RAC Updates

DCS Healthcare (RAC for Region A) added a new issue for medical necessity claims to its CMS-approved issues list for providers in Maryland.

APR-DRG 204-Syncope (All severity and risk of mortality levels). Medicare pays for inpatient hospital services that are medically necessary for the setting billed. Medical documentation will be reviewed to determine that services were medically necessary. This review will be of APR-DRG 204-Syncope.

CGI (RAC for Region B) added three new issues to its CMS-approved list issues for providers in all Region B states.

DRGs associated with All MDCs: MS-DRGs 984-986. MS-DRG Validation for DRGs Associated with All MDCs (Medical Necessity Excluded). MS-DRG validation requires that diagnostic and procedural information and the discharge status of the beneficiary, as coded on the hospital claim, matches both the attending physician description and the information contained in the medical record. Reviewers will validate MSDRGs 984, 985 and 986 for diagnoses and procedures potentially affecting or affecting the MS-DRG assignment. In addition, clinical validation of the codes billed may also be conducted.

Rituximab - non-covered/non-allowed service-professional. An overpayment exists when a provider(s) bills for a service of J9310/Rituximab with an ICD-9 code that is not included in the list of covered ICD-9 codes for J9310/Rituximab with the applicable Local Coverage Determination document(s).

Rituximab - non-covered/non-allowed service-outpatient. An overpayment exists when a provider(s) bills for a service of J9310/Rituximab with an ICD-9 code that is not included in the list of covered ICD-9 codes for J9310/Rituximab with the applicable Local Coverage Determination document(s).

If you need assistance in preparing for, or defending against RAC audits, or implementing a compliance program geared toward identifying and correcting potential risk areas related to RAC audits, please contact a Wachler & Associates attorney at 248-544-0888.

July 11, 2011

CMS Releases Article Discussing DRG Coding Vulnerabilities for Inpatient Hospitals

The Centers for Medicare and Medicaid Services (CMS) released a MLN Matters article this week discussing Diagnosis Related Group (DRG) Coding vulnerabilities for inpatient hospitals. DRG validation review, executed by Recovery Audit Contractors (RACs), focuses on the hospital's selection of principal and secondary diagnoses and procedures for a claim. The recent MLN Matters article notes that auditors in the RAC program have discovered coding errors that may result in RAC overpayment demands in connection with DRG validation reviews.

The MLN Matters article reminds inpatient hospitals of the risks associated with coding a record prior to receiving the complete medical record. For example, the article identifies the situation where the emergency room report, History and Physical, and early progress notes identify one condition, where continued evaluation reveals an entirely different condition. This practice may mean that the reported codes do not accurately portray a patient's conditions and procedures throughout the course of treatment. The recovery auditors, however, will review the entire medical record during DRG validation review and may discover another more accurate code exists for the services provided.

In addition, the article noted that if there is conflicting or contradictory information in the record, the coder should ask the attending physician for clarification to identify the correct principal and secondary diagnoses.

Finally, as with all codes, the article reminds inpatient hospitals to include clinical evidence in the medical record to support a code's assignment.

For more information on RAC audits and best practices to meet Medicare's documentation requirements, please visit www.racattorneys.com or contact a Wachler & Associates attorney at 248-544-0888.

MLN Matters article http://www.cms.gov/MLNMattersArticles/Downloads/SE1121.pdf

Inpatient hospitals http://www.racattorneys.com/PracticeAreas/Hospitals-Health-Systems.asp

Recovery Auditors http://www.racattorneys.com/CM/Articles/mbj.pdf

July 7, 2011

CMS Proposes to Rescind the Signature Requirement for Lab Requisitions Required under the 2011 Medicare Physician Fee Schedule

The Centers for Medicare and Medicaid Services (CMS) has proposed to rescind the current signature requirement for lab requisitions. Currently, the 2011 Medicare Physician Fee Schedule requires a physician's or nonphysician provider's signature on all lab requisitions for tests paid under the clinical lab fee schedule, regardless of whether there is a signed order. This requirement was to become effective at the beginning of 2011. However, CMS decided to postpone this requirement due to commentary by providers, labs and other stakeholders of the health care industry. The signature requirement on lab requisitions was proposed by CMS as a way to reduce fraud and improper payments. Recently, CMS has stated it underestimated the burdens that the rule would have on quality of care due to the amount of time it takes providers to obtain the required signatures, especially for providers who do not use electronic health records.

If you have any questions regarding compliance with the Medicare Physician Fee Schedule, or need help defending against a current or future audit, please contact a Wachler & Associates attorney at 248-544-0888.

July 6, 2011

DRG Coding Vulnerabilities in the Recovery Audit Program

The Centers for Medicare & Medicaid Services (CMS) intends to reduce the Comprehensive Error Rate Testing (CERT) error rate by correcting vulnerabilities identified by Recovery Auditors and other Medicare contractors during DRG Validation reviews. DRG Validation review focuses on the hospital's selection of principal and secondary diagnoses and procedures on a claim. Recovery Auditors found that a significant amount of claims contain incorrect principal diagnoses.

The Uniform Hospital Discharge Data Set (UHDDS) defines principal diagnoses as the condition responsible for occasioning the patient's admission to the hospital. UHDDS Guidelines for coding and reporting secondary diagnoses allow the reporting of "any condition that is clinically evaluated, diagnostically tested for, therapeutically treated, or increases nursing care or the length of stay of the patient."

CMS found that hospitals often code patient records prior to receiving the complete medical record. As Recovery Auditors review the entire medical record when performing DRG validation reviews, hospitals that code prior to receiving the entire report, e.g. without the discharge summary or operative reports, increase their chance of coding errors. Early progress notes may indicate that the patient has one condition, but continuing workup and evaluation determines something entirely different. Therefore, coders must have access to the complete record in order to assign accurate codes. Coders must also clarify any conflicting diagnoses by attending physicians and consultants in order to limit their exposure to Recovery Auditors, who will review data from the entire medical record.

CMS suggests that all Inpatient Hospital providers that submit Fee-For-Service (FFS) claims to Medicare Fiscal Intermediaries or Part A/B Medicare Administrative Contractors (MACs) take the necessary steps to meet Medicare's documentation requirements and avoid unnecessary denial of their claims. For assistance in implementing a compliance program to identify and correct potential audit risks, or preparing for and defending RAC and other Medicare, Medicaid and Third Party payor audits, please contact a Wachler & Associates attorney at 248-544-0888.