NHA CPT Study Guide: Revenue Cycle and Regulatory Compliance

The Importance of Communication in Health Care

  • Fundamental Nature of Communication: Successful interpersonal communication consists of both self-expression and active listening to develop a comprehensive understanding of what others are saying. The dynamics of communication either add to or detract from a situation, regardless of other involved factors.

  • Prioritization: Effective communication must take the \"front seat\" of attention during interactions with others. When negative life aspects impact attitudes, the potential to deliver quality health care and communicate effectively decreases.

  • Forms of Communication:     - Verbal: Includes both spoken and written messages.     - Nonverbal: Critically important in health care settings for conveying meaning.

  • Requirement for Clarity: Messages must be clear and concise so meanings are understood.     - Example: A provider documents a patient's clinical presentation. These details are vital for the treatment plan and for administrative uses such as referrals and preauthorization requests for therapies or additional treatment.

  • Communication at Point of Service:     - Communication begins during registration and scheduling where information is collected to create a patient account.     - Necessary details must be gathered to verify insurance and benefits.     - Financial Responsibility: It is critical to communicate the patient's financial responsibility for services early. Failure to do so leads to revenue cycle issues where claims are paid by payers, but the patient's portion remains unpaid.     - Example: Out-of-network services result in higher out-of-pocket expenses for the patient; effective communication helps in the collection of these costs.

  • Provider and Staff Communication: Documentation in medical records must meet assigned code requirements for reporting.

  • Barriers to Communication:     - Billing and coding specialists must avoid slang.     - Example: Providers may use the term \"initial H&P\" (history and physical) for a nursing facility visit, but the correct CPT manual terminology is \"initial nursing facility care.\"

  • Impact of Communication: Affects delivery of services, collections, patient adherence to treatment, and patient outcomes.

Stakeholders in the Health Care Organization

  • Definition of Stakeholders: Primary stakeholders include patients, providers, third-party payers, and policymakers.

  • Patients: Also referred to as consumers; they are the recipients of health care services.

  • Providers: Licensed professionals (physicians, nurse practitioners, physical/occupational therapists, or hospitals) who coordinate care, maintain health information, and are licensed to submit claims to third-party payers for reimbursement.

  • Third-Party Payers: Organizations that cover medical expenses for policyholders and dependents.     - Includes: Employers, private/commercial organizations, government programs, workers’ compensation, and homeowner/automobile insurance.     - Responsibilities: Maintaining financial stability of programs, analyzing premium rates, covered benefits, and reimbursement levels.     - Example: An employer may change premium rates and annual deductibles based on changes implemented by the third-party payer.

  • Regulatory Agencies (Policymakers): They establish the framework for health care, including:     - Determining who is eligible for care.     - What services are provided, as well as where and by whom.     - Defining how services are paid and setting quality of care standards.

  • Terminology Changes: Current terminology is essential. For instance, the form previously known as the \"HCFA-1500\" is now the \"CMS-1500\".

Data Retention, Usage, and Maintenance

  • Regulation: Data retention, maintenance, and transmission are strictly regulated by state and federal laws.

  • Retention Timelines:     - CMS (Centers for Medicare & Medicaid Services): Providers must retain health insurance claims for 66 years, aligning with potential audit windows.     - HIPAA Administrative Simplification Rules: Covered entities (providers, health plans, clearinghouses) must retain HIPAA-related documents for 66 years and at least 22 years after a patient’s death.     - Medicare Managed Care: Medical records must be kept for 1010 years.     - State Laws: Federally mandated periods are the minimum; state laws may require longer retention.

  • Components of Data Maintenance:     - Backup and Recovery: Critical for data integrity. EHR vendors provide HIPAA-compliant cloud-based storage and automated backups.     - Significance of Records: Well-documented charts support continuity of care, medical decision-making by providers, and serve as legal defense in professional liability claims.

Administrative and Clinical Uses of Data

  • Administrative Uses:     - Operational Tasks: Number of patients for census purposes.     - Population Health Management: Quality improvement and cost vs. reimbursement analysis for equipment or services.     - Practice Management System: The central source for administrative data, including demographics, insurance plan info, and EHR data from encounters.

  • Clinical Uses:     - Used by public entities, medical registries, and providers to maintain population health.     - Determining cost-effectiveness of treatments and therapies.     - HEDIS (Healthcare Effectiveness Data and Information Set): Measures used to identify clinical services performed and provide info about the type and quality of care.

Data Storage, Transmission, and Reporting

  • Data Storage: Records and files stored physically or digitally. Electronic backups and archiving are essential. Many organizations store data off-site (often in different states) to protect against catastrophes like hurricanes or fires.

  • Data Transmission: Sending digital information over secure channels between devices.     - Electronic Data Interchange (EDI): Computer technology used to exchange data between providers and payers.     - Documents: Claims are submitted electronically, and Remittance Advice (RA) or Explanation of Benefits (EOB) documents are received via EDI.

  • Data Reporting: Collecting facts on patient care/outcomes for security analysis and performance measure reporting for incentive programs.     - Key Performance Indicators (KPIs): Statistics used to measure performance and business achievements.

Compliance and the Office of Inspector General (OIG)

  • OIG (Office of Inspector General): A division of the Department of Health and Human Services (HHS).     - Responsibility: Investigating insurance fraud and abuse in Medicare, Medicaid, and federally funded programs.     - Work Plan: Identifies at-risk issues annually and publishes them in the Federal Register.

  • Definitions of Improper Billing:     - Fraud: Intentionally billing for services not performed, reporting fraudulent diagnoses, or intentional medical coding errors.     - Abuse: Billing patterns and practices that are excessive or unnecessary, though not intentionally fraudulent.

  • HIPAA (Health Insurance Portability and Accountability Act): A federal regulation standardizing the confidentiality and security of patient information. It protects Protected Health Information (PHI) in electronic, paper, and verbal forms.

Compliance Plans and Breach Notifications

  • HIPAA Breach Notification Rule: Regulates reporting of impermissible use or disclosure of PHI.     - Internal Review: Required for any breach.     - Notification Levels: Accidents (like a misdirected invoice) may require a single call; large cyber hacks may require public notification and identity theft protection services.

  • Compliance Programs: Formal processes demonstrating a good-faith effort toward safe and efficient care.

  • Seven Foundation Components of a Compliance Plan (for small physician practices):     1. Conducting internal monitoring and auditing via periodic audits.     2. Implementing practice standards through written procedures.     3. Designating a compliance officer or contact.     4. Conducting training and education on procedures.     5. Responding to detected violations and disclosing incidents to government entities.     6. Developing open lines of communication (e.g., staff meeting discussions, community bulletin boards).     7. Enforcing disciplinary standards through publicized guidelines.

Self-Disclosure and Potential Fraud Indicators

  • Provider Self-Disclosure Protocol (SDP): An OIG program allowing providers to voluntarily report potential fraud.     - Benefits: Lower costs, less disruption than an OIG investigation, and consideration of cooperation when assigning penalties.

Questions & Discussion

Communication Timing Challenge

  • Question: When does communication with the patient begin?

  • Answer: B. Registration and scheduling. Communication starts at the point of service when information is gathered to create an account.

Stakeholder Definitions Challenge

  • Question: What is a third-party payer?

  • Answer: A health care insurance company that reimburses services provided by providers and/or health care organizations.

  • Question: What is a provider?

  • Answer: A licensed professional (physician, nurse practitioner, hospital, etc.) who can submit claims for reimbursement.

Data Classification Matching

  • Question: Match the activity with the correct data classification:     - 1. Clinical use -> D. Information about type and quality of care     - 2. Transmission -> C. Patient eligibility     - 3. Storage -> B. Backup     - 4. Administrative use -> A. Quality improvement

Billing Fraud Discussion - Billee and Codee

  • Billee: \"The new provider… suggested that we report 9920599205 or 9921599215 for all encounters [in the after-hours clinic] since patients will likely have urgent or acute problems. This isn’t a good idea, but I’m just not sure how to respond.\"

  • Codee: \"Coding every patient at the highest level - just because it’s after hours - is incorrect coding, and would be an indicator of potential fraud. This would be a red flag to Medicare… code assignment is based on the documentation for each encounter.\"

  • Key Takeaway: Code assignment must always be based on the specific documentation of the encounter, not a blanket high-level code.

OIG Intent and Purpose

  • Question: What is the intent of the Office of the Inspector General?

  • Answer: Identify and eliminate fraud, abuse, and waste.

  • Question: How can a compliance program help an organization?

  • Answer: By providing the guidance and structure needed to meet compliance goals.

  • Question: What is the purpose of Self-Disclosure Protocol?

  • Answer: To allow providers to voluntarily report evidence of potential fraud and work with the OIG to resolve issues fairly.