{"id":1993,"date":"2012-11-07T05:54:00","date_gmt":"2012-11-07T00:54:00","guid":{"rendered":"http:\/\/www.policymed.com\/hhs-oig-summary-of-2nd-2012-roundtable-on-corporate-integrity-agreements\/"},"modified":"2018-05-06T18:06:09","modified_gmt":"2018-05-06T13:06:09","slug":"hhs-oig-summary-of-2nd-2012-roundtable-on-corporate-integrity-agreements","status":"publish","type":"post","link":"https:\/\/www.policymed.com\/2012\/11\/hhs-oig-summary-of-2nd-2012-roundtable-on-corporate-integrity-agreements.html","title":{"rendered":"HHS OIG Summary of 2nd 2012 Roundtable on Corporate Integrity Agreements"},"content":{"rendered":"<p><span style=\"font-family: arial,helvetica,sans-serif;\">The Office of the Inspector General (OIG) for the Department of Health and Human Services (HHS) recently released the <a href=\"http:\/\/go.usa.gov\/YZcP\">summary of a roundtable<\/a> meeting the agency held with representatives from 32 companies that have entered into Corporate Integrity Agreements (CIA) since 2009.\u00a0 The companies included hospitals, ambulance companies, medical device manufacturers, physician practices, laboratories, home health agencies, and skilled nursing facilities.\u00a0\u00a0\u00a0<\/span><\/p>\n<p><span style=\"font-family: arial,helvetica,sans-serif;\">This is the second time OIG has held a roundtable regarding CIAs this year.\u00a0 Back in February, OIG held a <a href=\"http:\/\/www.policymed.com\/2012\/03\/hhs-oig-pharmaceutical-compliance-roundtable-2012-report.html\">roundtable regarding CIAs with pharmaceutical companies<\/a>.\u00a0\u00a0\u00a0<\/span><\/p>\n<p><span style=\"font-family: arial,helvetica,sans-serif;\">The purpose of the August 2012 roundtable was to solicit feedback from the representatives regarding their compliance \u201cbest practices\u201d and their efforts to implement the requirements of their CIAs. \u00a0OIG will consider the feedback when deciding what terms to include in future CIAs. \u00a0The roundtable involved small-group discussions of several topics:\u00a0\u00a0<\/span><\/p>\n<p><span style=\"font-family: arial,helvetica,sans-serif;\">(1)\u00a0 the definitions of \u201ccovered persons\u201d and \u201crelevant covered persons\u201d and CIA requirements relating to a code of conduct, compliance policies and procedures, and training and education; <\/span><\/p>\n<p><span style=\"font-family: arial,helvetica,sans-serif;\">(2)\u00a0 the role of the compliance officer, internal auditing and audit plans, and the role of the board of directors; <\/span><\/p>\n<p><span style=\"font-family: arial,helvetica,sans-serif;\">(3)\u00a0 claims review requirements; and <\/span><\/p>\n<p><span style=\"font-family: arial,helvetica,sans-serif;\">(4)\u00a0 arrangements review requirements. The discussions of each of these topics are summarized below.\u00a0\u00a0<\/span><\/p>\n<p><span style=\"font-family: arial,helvetica,sans-serif;\"><strong><span style=\"text-decoration: underline;\">Definitions of \u201cCovered Persons\u201d and \u201cRelevant Covered Persons\u201d\u00a0<\/span><\/strong>\u00a0<\/span><\/p>\n<p><span style=\"font-family: arial,helvetica,sans-serif;\">All CIAs include definitions of \u201ccovered persons\u201d and \u201crelevant covered persons\u201d that identify which individuals and entities are subject to CIA requirements. \u00a0For example, most, if not all, CIAs require that companies provide training on the compliance program and the CIA to all covered persons, which generally includes all employees. \u00a0CIAs also require that companies provide training on defined subject areas to individuals who meet the CIA definition of relevant covered persons, which generally includes those employees and contractors who provide patient care or who are involved in coding or billing for health care items or services.\u00a0\u00a0\u00a0<\/span><\/p>\n<p><span style=\"font-family: arial,helvetica,sans-serif;\">Participants expressed difficulty determining which employees and contractors fit within the definitions, whether vendors and contractors are covered persons or relevant covered persons, and with requiring vendors and contractors to comply with any applicable CIA requirements.\u00a0 Some participants commented that they now discuss training requirements as part of contract negotiations with vendors and contractors.\u00a0\u00a0<\/span><\/p>\n<p><span style=\"font-family: arial,helvetica,sans-serif;\">Many CIAs exclude individuals from the covered persons definition and corresponding requirements if the individuals work fewer than 160 hours per year. \u00a0Some participants said the 160-hour threshold requires time-consuming tracking to determine when and if someone becomes a covered person. \u00a0Some participants suggested that, instead of a 160-hour limit, any exceptions to the definition of covered persons should focus more broadly on the individual\u2019s role and responsibilities and status as a full-time or part-time employee. \u00a0In addition, most participants felt that more tailored definitions would result in a better use of resources because the companies could better tailor the training to the job responsibilities of those being trained.\u00a0\u00a0\u00a0<\/span><\/p>\n<p><span style=\"font-family: arial,helvetica,sans-serif;\"><strong><span style=\"text-decoration: underline;\">Code of Conduct and Policies and Procedures <\/span><\/strong><\/span><\/p>\n<p><span style=\"font-family: arial,helvetica,sans-serif;\"><strong><span style=\"text-decoration: underline;\">\u00a0<\/span><\/strong><\/span><\/p>\n<p><span style=\"font-family: arial,helvetica,sans-serif;\">CIAs require each participant (1) to have a code of conduct setting forth the company\u2019s commitment to compliance and the importance of adhering to Federal health care program requirements and its policies and procedures, and (2) to implement policies and procedures governing the company\u2019s compliance program and adherence to Federal health care program requirements. \u00a0In general, participants supported this provision, but recommended that CIAs permit companies to make revisions and obtain certifications during annual general training, as long as current versions of the code of conduct are posted and accessible electronically. \u00a0Other participants stated that a more in-depth discussion of what policies and procedures are needed for their companies during negotiations would make implementation easier.\u00a0\u00a0<\/span><\/p>\n<p><span style=\"font-family: arial,helvetica,sans-serif;\"><strong><span style=\"text-decoration: underline;\">Training\u00a0<\/span><\/strong>\u00a0<\/span><\/p>\n<p><span style=\"font-family: arial,helvetica,sans-serif;\">Some participants reported the annual training requirements are too prescriptive and that companies under CIAs should be permitted to identify their own annual training topics. \u00a0Participants also recommended eliminating the requirements that covered persons and relevant covered persons receive a minimum number of hours of annual training and focusing instead on whether the training thoroughly addresses the topics specified in CIAs. \u00a0Participants also suggested that compliance officers should be able to target different groups of employees year to year for education because it is difficult to create different modules to make training relevant to all employees on an annual basis. \u00a0Some participants noted they use scenarios drawn from complaints or audit results to make training more real and to facilitate discussions of subtler topics with employees.\u00a0\u00a0<\/span><\/p>\n<p><span style=\"font-family: arial,helvetica,sans-serif;\">Many participants suggested that the CIA requirement to track 100 percent training completion is burdensome, especially for the last 2 or 3 percent of employees and for non-employed or contractor physicians. \u00a0Participants reported that training for two or three hours at a time detracts from the trainees\u2019 retention of information, but that tracking completion of the training requirement over multiple shorter sessions was too time-consuming and difficult. \u00a0Some participants reported logistical difficulties in ensuring that employees in the field are trained.\u00a0\u00a0<\/span><\/p>\n<p><span style=\"font-family: arial,helvetica,sans-serif;\">Participants reported that 30 days was not sufficient time to train new employees and that requiring training within 30 days of hire meant that new employees either did not have enough knowledge to place the requirements in context or the training was not retained because so much other important information was being received at the same time. \u00a0Many participants felt the annual training requirement was more effective. \u00a0Some recommendations were:\u00a0\u00a0<\/span><\/p>\n<ul>\n<li><span style=\"font-family: arial,helvetica,sans-serif;\">require training only during the first year; <\/span><\/li>\n<li><span style=\"font-family: arial,helvetica,sans-serif;\">limit training to those who could cause improper conduct or have the ability to cause false claims; and <\/span><\/li>\n<li><span style=\"font-family: arial,helvetica,sans-serif;\">require training only for employees who fail to pass an annual competency test.\u00a0<\/span><\/li>\n<\/ul>\n<p><span style=\"font-family: arial,helvetica,sans-serif;\"><strong><span style=\"text-decoration: underline;\">Role of Compliance Officer<\/span><\/strong><strong>\u00a0<\/strong>\u00a0<\/span><\/p>\n<p><span style=\"font-family: arial,helvetica,sans-serif;\">CIAs require that each company appoint a compliance officer to be responsible for developing and implementing policies, procedures, and practices designed to ensure compliance with the CIA and Federal health care program requirements. \u00a0Overall, participants reported that the compliance officer description in CIAs satisfied their needs. \u00a0Participants emphasized the importance of having the compliance officer report directly to the board of directors, and not to the general counsel or chief financial officer. They also stated the importance of having the compliance officer be a member of senior management. \u00a0Many participants reported that resource allocation is important in establishing an effective compliance program and that the more engaged the compliance officer is with senior management, the more successful the compliance officer is likely to be in getting a fair allocation of the company\u2019s resources. \u00a0Participants suggested OIG include resource allocation requirements in CIAs.\u00a0<\/span><\/p>\n<p><span style=\"font-family: arial,helvetica,sans-serif;\"><strong><span style=\"text-decoration: underline;\">Board of Directors\u2019 Involvement in the CIA<\/span><\/strong><strong>\u00a0<\/strong>\u00a0<\/span><\/p>\n<p><span style=\"font-family: arial,helvetica,sans-serif;\">CIAs generally require that the board of directors receive training, receive reports from the compliance officer, and pass an annual resolution certifying to the board\u2019s oversight of the compliance program. \u00a0Participants reported that the board\u2019s responsibilities, including certifications, resulted in more engaged board members. \u00a0They also stated that keeping the board engaged assisted in the allocation of resources because the board felt a responsibility to mitigate risk. \u00a0Participants emphasized the importance of having the compliance officer report directly to the board. \u00a0Some participants felt that IROs also should report directly to the board.\u00a0\u00a0\u00a0<\/span><\/p>\n<p><span style=\"font-family: arial,helvetica,sans-serif;\">Others noted that an engaged board motivated executives and health care providers to commit more fully to compliance.\u00a0 Some participants thought the board could have more training. \u00a0They also thought the board needed additional tools to help assess risk, such as a compliance \u201cdashboard.\u201d\u00a0 Many participants asked OIG to publish more board of director guidance on the OIG Web site.\u00a0 Overall, participants stated that the board would remain engaged in the compliance program even after the CIA\u2019s term ended.\u00a0\u00a0<\/span><\/p>\n<p><span style=\"font-family: arial,helvetica,sans-serif;\"><strong><span style=\"text-decoration: underline;\">Role of Internal Audit<\/span><\/strong><strong>\u00a0<\/strong>\u00a0<\/span><\/p>\n<p><span style=\"font-family: arial,helvetica,sans-serif;\">Participants described several ways of performing internal audit functions. \u00a0Some had separate internal audit and compliance departments, while others worked in compliance departments that conducted audits. \u00a0Participants used several resources to develop internal audit plans. Most used the OIG <em>Work Plan<\/em>. \u00a0Others used issues raised in hotline calls and prior audit results. \u00a0Participants performed audits by conducting quarterly billing audits using external entities, internal reviews of contracts and other risk areas, certification reviews, and as-needed audits when problems arose. \u00a0Some participants noted that their companies find the results of their internal auditing more valuable than the IRO results\u2014in part because the issues reviewed in those audits are set by the company, using identified and changing risk areas.\u00a0\u00a0<\/span><\/p>\n<p><span style=\"font-family: arial,helvetica,sans-serif;\"><strong><span style=\"text-decoration: underline;\">Claims Review Requirements\u00a0<\/span><\/strong>\u00a0<\/span><\/p>\n<p><span style=\"font-family: arial,helvetica,sans-serif;\">The purpose of this session was to discuss OIG\u2019s approach to annual claims reviews required under CIAs. \u00a0Most CIAs require the provider to conduct a discovery sample of 50 paid Medicare claims randomly selected from those submitted by the provider during a specified 12-month period. \u00a0If the net financial error rate for the discovery sample is 5 percent or greater, the provider is required to conduct a full sample (review of additional claims) and a systems review (review to identify the underlying causes of the claims errors). \u00a0Most CIAs require that this annual claims review be conducted by an IRO selected by the provider.\u00a0\u00a0<\/span><\/p>\n<p><span style=\"font-family: arial,helvetica,sans-serif;\">Several participants indicated that 50 claims was not a large enough sample size to identify problems with coding and billing, particularly if the 50-claim sample was selected from across a large organization or an organization with multiple locations. Suggestions included increasing the sample size and focusing the claims review on particular types of claims or particular issues. \u00a0Some suggestions included:\u00a0<\/span><\/p>\n<ul>\n<li><span style=\"font-family: arial,helvetica,sans-serif;\">larger discovery sample in 1st year of CIA, reduced after if error rate below 5%<\/span><\/li>\n<li><span style=\"font-family: arial,helvetica,sans-serif;\">quarterly reviews, rather than annual<\/span><\/li>\n<li><span style=\"font-family: arial,helvetica,sans-serif;\">systems review in 1st year to identify areas for claim review<\/span><\/li>\n<li><span style=\"font-family: arial,helvetica,sans-serif;\">allow provider to conduct internal reviews of claims or issues identified by OIG.\u00a0\u00a0<\/span><\/li>\n<\/ul>\n<p><span style=\"font-family: arial,helvetica,sans-serif;\">Several participants said their organizations conduct internal audits regularly, through prepayment reviews, audits of individual locations, and reviews of coding or billing reports, to identify issues more quickly. \u00a0The initial results of the audits may be used to expand the scope of the audit or as a basis for conducting a more in-depth review of a particular issue. \u00a0Some participants considered their internal audits more useful than the claims review performed by the IRO.\u00a0\u00a0<\/span><\/p>\n<p><span style=\"font-family: arial,helvetica,sans-serif;\">Participants also discussed the process for selecting an IRO, the interaction between the provider and the IRO, and the value and cost-effectiveness of using an IRO to conduct the claims review. \u00a0Some participants said it was a challenge to identify a qualified IRO in the time allowed under their CIA, particularly if the provider operates in a specialized area that requires a particular expertise. \u00a0Many participants said the first year of working with the IRO can be the most challenging, as both parties are trying to understand the claims review requirements and prepare and review the IRO\u2019s claims review report to be submitted to OIG. \u00a0Also, it often takes time to familiarize the IRO with the specifics of the provider\u2019s business operations. <\/span><\/p>\n<p><span style=\"font-family: arial,helvetica,sans-serif;\">Many of the participants indicated that they value the perspective of an independent third party to conduct a claims review; however, the costs, particularly in the first year of the CIA, can be high. \u00a0Some participants suggested that a better use of resources might be to permit the provider to conduct its audits internally and have the results verified by the IRO. \u00a0Participants indicated that the results of the IRO review are used to identify issues for continued auditing or monitoring and as a source of \u201creal life\u201d examples that can be used in training.\u00a0\u00a0<\/span><\/p>\n<p><span style=\"font-family: arial,helvetica,sans-serif;\">Participants were asked what approach they would take with regard to auditing after their CIAs expire. \u00a0Most indicated that internal audits would be continued with some external verification, either using the current IRO or another third party. \u00a0Some participants thought that the continued use of a third party would be valuable, but said they would want to reduce the costs of using an outside auditor. <\/span><\/p>\n<p><span style=\"font-family: arial,helvetica,sans-serif;\">\u00a0<strong><span style=\"text-decoration: underline;\">Arrangements Review Requirements<\/span><\/strong><strong>\u00a0<\/strong>\u00a0<\/span><\/p>\n<p><span style=\"font-family: arial,helvetica,sans-serif;\">Some CIAs also require providers to implement arrangements procedures and retain an IRO to conduct an arrangements review.\u00a0 \u201cArrangements\u201d under a CIA typically include transactions between the provider and a potential or actual source of Federal health care program business or referrals. The CIA requires the provider to implement procedures to ensure that existing and new arrangements do not violate the Anti-Kickback Statute or the Stark Law. \u00a0These procedures typically require a provider to\u00a0\u00a0<\/span><\/p>\n<ul>\n<li><span style=\"font-family: arial,helvetica,sans-serif;\">create a centralized tracking system for arrangements, <\/span><\/li>\n<li><span style=\"font-family: arial,helvetica,sans-serif;\">track payments made under the arrangements, <\/span><\/li>\n<li><span style=\"font-family: arial,helvetica,sans-serif;\">track services provided or the space\/items leased under the arrangements, and <\/span><\/li>\n<li><span style=\"font-family: arial,helvetica,sans-serif;\">implement a written review and approval process for arrangements that includes a legal review and a business review, including a process for determining the fair market value of the payments made under the arrangement.\u00a0\u00a0<\/span><\/li>\n<\/ul>\n<p><span style=\"font-family: arial,helvetica,sans-serif;\"><strong><span style=\"text-decoration: underline;\">Scope of Focus Arrangements Definition\u00a0<\/span><\/strong>\u00a0<\/span><\/p>\n<p><span style=\"font-family: arial,helvetica,sans-serif;\">Participants suggested that OIG revise the arrangements reviews to require providers to examine the intent behind the arrangement and the internal business processes of the provider to monitor the appropriateness of each arrangement. \u00a0Participants uniformly agreed that, to provide a comprehensive review of arrangements, the provider must have a detailed database containing data elements specified in the CIA. \u00a0Participants agreed that requiring providers to aggregate all arrangements into a database was critical to monitoring the entity\u2019s arrangements and beneficial to implementing document management processes.\u00a0\u00a0\u00a0<\/span><\/p>\n<p><span style=\"font-family: arial,helvetica,sans-serif;\">Participants recommended that OIG narrowly define arrangements by tailoring the review to the type of provider under the CIA and specifically identifying a subset of transactions on which the provider should focus its review. \u00a0Suggestions included:\u00a0<\/span><\/p>\n<ul>\n<li><span style=\"font-family: arial,helvetica,sans-serif;\">OIG tailoring the arrangements review based on a provider\u2019s industry sector, \u00a0providing different review processes for the businesses with which the provider primarily contracts.<\/span><\/li>\n<li><span style=\"font-family: arial,helvetica,sans-serif;\">OIG narrowly tailor the scope of arrangements to reflect the covered conduct within the parties\u2019 settlement agreement. <\/span><\/li>\n<li><span style=\"font-family: arial,helvetica,sans-serif;\">Focus of the narrower arrangements review include a review of internal processes to evaluate the business purpose behind the arrangement and to determine whether the remuneration under the arrangement is fair market value<\/span><\/li>\n<li><span style=\"font-family: arial,helvetica,sans-serif;\">OIG consider having different arrangements review elements that relate specifically to the risk under the arrangement, rather than applying the same review elements to all arrangements.\u00a0\u00a0<\/span><\/li>\n<\/ul>\n<p><span style=\"font-family: arial,helvetica,sans-serif;\">Some participants suggested that the IRO review should include a review of fair market value under the arrangement, a review of payments made under the arrangement, a review of the procedures used by the entity to enter into the arrangement, and other elements that examine the terms of the arrangement. \u00a0Additionally, participants recommended that OIG clarify ways to measure the legal sufficiency of the arrangements included in the review.\u00a0\u00a0<\/span><\/p>\n<p><span style=\"font-family: arial,helvetica,sans-serif;\"><strong><span style=\"text-decoration: underline;\">External Review of Arrangements\u00a0<\/span><\/strong>\u00a0<\/span><\/p>\n<p><span style=\"font-family: arial,helvetica,sans-serif;\">Participants agreed that external reviews performed by legal counsel, IROs and fair market value consultants are necessary to ensure that their arrangements are in compliance with the Anti-Kickback Statute and the Stark Law. \u00a0However, they expressed concern about the costs of retaining outside experts and the application of attorney-client privilege during the IRO review and desired greater clarification on when the privilege applies in the CIA context.\u00a0\u00a0<\/span><\/p>\n<p><span style=\"font-family: arial,helvetica,sans-serif;\">Participants uniformly agreed that OIG should consider defining the scope of the IRO review more specifically. \u00a0Many participants felt that the purpose of the IRO review was unclear and many arrangements reviewed by the IRO were not relevant to the CIA. Participants would like greater input from OIG regarding the scope of the IRO reviews and would like flexibility during the CIA term to identify risk areas and suggest modifications to the scope of the IRO reviews to evaluate evolving risk areas.\u00a0\u00a0<\/span><\/p>\n<p><span style=\"font-family: arial,helvetica,sans-serif;\">Some participants suggested that OIG further define IRO testing attributes or allow IROs to test arrangements according to \u201cbest practices.\u201d \u00a0Participants requested guidance from OIG on how to interpret exceptions noted by an IRO. \u00a0Participants recommended standardizing core controls for IRO testing and suggested increased involvement by OIG during negotiation of the IRO engagement.\u00a0\u00a0<\/span><\/p>\n<p><span style=\"font-family: arial,helvetica,sans-serif;\"><strong><span style=\"text-decoration: underline;\">Request for Additional Guidance from OIG\u00a0<\/span><\/strong>\u00a0<\/span><\/p>\n<p><span style=\"font-family: arial,helvetica,sans-serif;\">Participants requested that OIG consider providing additional compliance guidance to the industry by issuing \u201cFrequently Asked Questions.\u201d \u00a0They felt that FAQs, with specific examples of provider behavior, would be useful in their daily compliance oversight.<\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>The Office of the Inspector General (OIG) for the Department of Health and Human Services (HHS) recently released the summary of a roundtable meeting the agency held with representatives from 32 companies that have entered into Corporate Integrity Agreements (CIA) since 2009.\u00a0 The companies included hospitals, ambulance companies, medical device manufacturers, physician practices, laboratories, home [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":9778,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[31],"tags":[1101],"class_list":["post-1993","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-hhs-oig","tag-new"],"_links":{"self":[{"href":"https:\/\/www.policymed.com\/wp-json\/wp\/v2\/posts\/1993","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.policymed.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.policymed.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.policymed.com\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.policymed.com\/wp-json\/wp\/v2\/comments?post=1993"}],"version-history":[{"count":1,"href":"https:\/\/www.policymed.com\/wp-json\/wp\/v2\/posts\/1993\/revisions"}],"predecessor-version":[{"id":9781,"href":"https:\/\/www.policymed.com\/wp-json\/wp\/v2\/posts\/1993\/revisions\/9781"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.policymed.com\/wp-json\/wp\/v2\/media\/9778"}],"wp:attachment":[{"href":"https:\/\/www.policymed.com\/wp-json\/wp\/v2\/media?parent=1993"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.policymed.com\/wp-json\/wp\/v2\/categories?post=1993"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.policymed.com\/wp-json\/wp\/v2\/tags?post=1993"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}