What Medical Practices Need to Know About an OIG Exclusion
By Paul Weidenfeld [1] The Office of Inspector General (OIG) has steadily increased its enforcement of OIG Exclusion violations since the issuance of its Special Advisory stressing the effect of an OIG Exclusion in May, 2013. Among other things, they have created a special unit to focus specifically on Civil Money Penalties (CMPs) (its favored enforcement tool), supported numerous prosecutions by both its Office of Audit and its Office of Evaluations and Inspections, and sought greater regulatory authority from Congress. This article was originally directed (and is still intended) to give a basic tutorial on what an exclusion is, how it effects them, and what they can do to protect themselves.
I. What is an OIG Exclusion?
The Department of Health and Human Services (HHS) is responsible for administering the Medicare and Medicaid Programs and it decides who may receive benefits under these programs as well as who will be allowed to provide them. When it is determined that a person or entity will not be permitted to provide services to the program, that person or entity is said to be “excluded.” The authority to exclude individuals and entities from Federal health care programs has been delegated by the Secretary of HHS to the OIG.[2]
There are two types of OIG exclusions, mandatory and permissive, and both have the effect of barring an individual or entity from participating in all Federal health care programs until such time, if ever, that their privilege has been reinstated.[3] Mandatory exclusions last a minimum of 5 years and must be imposed if a person or entity is convicted of certain criminal offenses. These include, among others, offenses related to defrauding Federal or State health care programs, felony convictions for other health care related offenses, most drug related felony convictions, and patient abuse or neglect.
Permissive exclusion authority implicates a much wider range of conduct. The type of conduct for which permissive exclusions may be imposed include misdemeanor convictions related to defrauding health care fraud programs; drug related misdemeanors; suspension, revocation or surrender of a health care license based on competence, performance, or financial integrity; providing unnecessary or substandard services; submitting false claims; defaulting on health education loans or student loans, and so on.
II. What is the Impact of an OIG Exclusion?
The impact of an OIG exclusion extends to any provider who employs or contracts with the excluded person or entity. The regulation that grants OIG the exclusion authority states that payments cannot be made for items or services furnished “by an excluded individual or entity, or at the medical direction or on the prescription of a physician or other authorized individual who is excluded when the person furnishing such item or service knew or had reason to know of the exclusion.” 42 CFR § 1001.1901(b).
Though the language of the regulation appears to be directed at excluded persons who provide direct, billable services, the OIG broadly interprets the regulation to create a “payment prohibition” that includes virtually any item or service performed by an excluded person that contributes to any claim for reimbursement from any Federal or State Health Care Program.[4] For example, the OIG considers the preparation of a surgical tray or the inputting of information into a computer by an excluded person in violation of the prohibition. Similarly, administrative and management services, IT support, and even strategic planning would also be problematic. Even an excluded volunteer’s assistance might trigger the prohibition unless his activities were “wholly unrelated to Federal health care programs.”[5]
As indicated earlier, the favored enforcement tool is the imposition of civil penalties pursuant to 42 CFR §1003.102(a)(2). Though this regulation also appears to be restrictive in nature,[6] the OIG interprets it to authorize CMPs for the failure of providers to screen their employees, vendors and contractors for exclusions. In its view, any time an “excluded person participates in any way in the furnishing of items or services that are payable by a Federal health care program,” [7] a employer/provider that fails to screen will be held to have “known” — or “should have known” — of the exclusion.[8]
III. OIG Exclusion Screening Requirements
Federal screening requirements are contained in the May, 2013 Special Advisory Bulletin.[9] The Advisory Bulletin states that in order for a provider to “avoid potential CMP liability,” they must check the List of Excluded Individuals and Entities (LEIE) to “determine the exclusion status” of their current employees, vendors and contractors. This can be done, according to the Bulletin’s guidance, by reviewing “each job category or contractual relationship to determine whether the item or service being provided is directly or indirectly, in whole or in part, payable by a Federal health care program,” and then “screen everyone that perform[s] under that contract or in that job category.[10]
While the OIG concedes that it does not have the authority to require that screening be performed every 30 days, it makes it clear that providers who fail to screen their employees, contractors, or vendors monthly risk the imposition of CMPs and overpayment liability. In addition, the OIG observes that the LEIE is updated on a monthly basis, that CMS mandated monthly screening for all State Medicaid Units in 2009 and 2011, and it requires monthly screening in all of its corporate integrity agreements.
IV. Are the OIG Exclusion Requirements Difficult to Meet?
The logistics of the screening process are extremely challenging for most providers despite the fact that the LEIE is a “searchable and downloadable database that can assist in identifying excluded employees.”[11] Providers can elect to use the “search function” of the LEIE, but can only screen five employees at a time and each name must be entered manually. In addition, potential matches can only be verified individually by entering the social security number. This may work well if a provider only has to screen a handful of employees or contractors, but how would this work out if a provider has 200, 2,000, or even 20,000 employees?
The alternative, downloading the LEIE database and comparing the employee list to it, is equally problematic. Most providers simply do not have the capability to download the LEIE (which contains almost 60,000 names) and compare it with their own employee database in any reliable, or economically viable way. Another issue is the requirement that providers apply the same standard to contractors and sub-contractors as to their own employees. Contractors are unlikely to want to share their employee lists, and a provider would not want to screen the employee list of a large contractor. While the OIG does seem to recognize the issue by suggesting that providers can “choose to rely [on] screening conducted by the contractor,” it immediately follows the suggestion by reminding providers that they remain responsible for both overpayment liability and CMPs if they fail to ensure that “appropriate exclusion screening” has been conducted.[12]
V. State Exclusion Requirements
It is important to remember that the OIG’s guidance addresses only federal concerns. While the OIG may be satisfied with just screening the LEIE on a “regular” basis, there are only a handful of State Medicaid Programs that would find that this satisfied their requirements. Indeed, most States require, at a minimum, that providers screen their State Exclusion List (37 States have them) in addition to the LEIE, and many also require screening of the GSA/SAM[13] and/or other State specific exclusions lists (such as sex offender lists, elder abuse lists, etc.).
States also commonly include additional screening requirements through their provider agreements — some of which can be quite onerous. For example, in some States, applicants are required to certify that no employees or contractors are “suspended, or excluded from Medicare, Medicaid or other Health Care Program in any state”.[14] Additionally, State exclusion lists have a wide range of formats that vary from excel spreadsheets to unsearchable PDF documents further adding to the problems with screening.
VI. Outsourcing of Exclusion Screening is a Simple, and Affordable Solution
Exclusion Screening, LLC was created because we recognized the difficulties providers faced when seeking to comply with their exclusion screening obligations. We were determined to provide a simple, cost effective solution to the problem and we feel strongly that we accomplished our goal.
Exclusion Screening is simple (we do all the work), cost effective (likely to cost less than the monthly cost of the water delivered to your office), and best of all, it is a complete solution to your screening needs. Call or email me if you have any questions at: pweidenfeld@www.exclusionscreening.com or 1-800-294-0952.
Paul Weidenfeld, Co-Founder and CEO of Exclusion Screening, LLC, is the author of this article. He is a longtime health care lawyer whose practice has focused on False Claims Act cases and health care fraud matters generally.
[1] This is an update of an article that was first published in by the National Alliance of Medical Auditing Specialists (NAMAS) and posted on this website in November, 2014. It was done with the assistance of Jonathan Culpepper.
[2] Sections 1128 and 1156 of the Social Security Act. Though loosely defined to include any program that provides any health benefits, the most significant of these programs are Medicare and TRICARE. Medicaid exclusions are left to the State Fraud Control Units.
[3] Mandatory exclusions are found at 42 USC § 1320a-7; permissive exclusions at 42 USC § 1320a-7(b).
[4] The Special Advisory Bulletin on the Effect of Exclusion from Participation in Federal Health Care Programs issued May, 8, 2013 replaced and superseded the 1999 Bulletin and states: “This payment prohibition applies to all methods of Federal health care program payment, whether from itemized claims, cost reports, fee schedules, capitated payments, a prospective payment system or other bundled payment, or other payment system and applies even if the payment is made to a State agency or a person that is not excluded (at page 6 of the Bulletin).
[5] These are examples taken from the Special Advisory Bulletin, id.
[6] The regulation seems to be explaining the circumstances under which CMPs are available, not extending them stating that they may be assessed where a person making a claim stating: “knew, or should have known, that the claim was false or fraudulent, including a claim for any item or service furnished by an excluded individual employed by or otherwise under contract with that person.”
[7] Id. at 11.
[8] This is the language that appears in the OIG press releases announcing settlements of exclusion violations.
[9] Special Advisory Bulletin, at 13-18.
[11] Id. at 14.
[12] Id. at 16.
[13] The System for Award Management (SAM) is the Official U.S. Government system that consolidated the capabilities of the CCR/FedReg, ORCA, and EPLS which were pre-existing debarment databases.
[14] See, for example, Rule § 352.5 of the Texas Administrative Code which specifically requires such a certification and the Louisiana Medicaid Provider Agreement.