OIG Issues Supplemental Compliance Program Guidance for Nursing Facilities: Quality of Care is Top Risk Area

On September 30, 2008, the United States Department of Health and Human Services (HHS) Office of Inspector General (OIG) published OIG Supplemental Compliance Program Guidance for Nursing Facilities.¹ With quality of care the first risk area identified, the supplemental guidance is part of a series of recent government efforts focused on improving quality of care at skilled nursing and long-term care facilities. The OIG also released a September 18, 2008 report, Trends in Nursing Home Deficiencies and Complaints, which revealed that, between 2005 and 2007, over 90 percent if nursing homes were cited for deficiencies in quality of care, resident assessment, and quality of life. On April 24, 2008, the Centers for Medicare and Medicaid Services (CMS) began identifying the poorest performing nursing facilities nationwide, dubbed Special Focus Facilities, on its Nursing Home Compare Web site.² The supplemental guidance also follows the joint OIG-Health Care Compliance Association (HCCA) roundtable report, Driving for Quality in Long-Term Care: A Board of Directors Dashboard, released January 31, 2008.³

Background

The OIG first published a compliance program guidance for nursing facilities on March 16, 2000.⁴ The original guidance addressed the fundamentals of establishing an effective compliance program in the nursing industry. Since the publication of the original guidance, there have been significant changes in the way nursing facilities deliver, and are reimbursed for, health care services. Although the original guidance included quality of care as a risk area, recent changes to the regulatory enforcement environment and increased concern on quality of care in nursing facilities prompted a greater emphasis on quality in the supplemental guidance.

The guidance contains new compliance recommendations and an expanded discussion of risk areas. When drafting the supplemental guidance, the OIG considered “Medicare and Medicaid nursing facility payment systems and regulations, evolving industry practices, current enforcement priorities (including the Government’s heightened focus on quality of care), and lessons learned in the area of nursing facility compliance.”⁵ The supplemental guidance provides “voluntary guidelines to assist nursing facilities in identifying significant risk areas and in evaluating and, as necessary, refining ongoing compliance efforts.”⁶

Because the guidance supplements, rather than replaces, the original guidance, the two documents “collectively offer a set of guidelines that nursing facilities should consider when developing and implementing a new compliance program or evaluating an existing one.”⁷

The supplemental guidance is partitioned into five sections. The first two offer a background overview of the compliance program guidance process and the Medicare/Medicaid reimbursement system. The third section covers several fraud and abuse risk areas relevant to nursing facilities. In the fourth section, the OIG offers recommendations for establishing an ethical culture and assessing and improving existing compliance programs. The fifth section addresses self-reporting and lists steps a nursing facility should take if it discovers credible evidence of misconduct.

Fraud and Abuse Risk Areas

By identifying current, relevant risk areas, the supplemental guidance should assist nursing facilities in their efforts to “identify operational areas that present potential liability risks under several key Federal fraud and abuse statutes and regulations.”⁸ The OIG stresses each facility should carefully examine these risk areas and identify those that potentially affect it.

1. Quality of Care
Although it is a priority for nursing facilities, a significant number fail to deliver quality health care. Whether this failure is the result of inadequate staffing, insufficient training and education, or lack of oversight, the result is often the same: residents risk harm. In cases where the care failure is systemic and widespread, a facility may be liable for submitting false claims for reimbursement under the False Claims Act, the Civil Monetary Penalties Law, a variety of additional federal authorities that address false and fraudulent claims or statements made to the government, and similar state laws, including criminal, civil, and administrative sanctions.⁹ As a starting point on quality of care issues, facilities should familiarize themselves with the principal nursing facility Medicare Conditions of Participation.¹⁰ The OIG states “it is essential that key members of the organization understand these requirements and support their facility’s commitment to compliance with these regulations.”¹¹ The five sub-areas on quality of care identified in the supplemental guidance are addressed below.

• Sufficient staffing: A critical factor in quality care is to provide enough trained, competent staff to care for residents. Federal law requires a facility provide sufficient staffing necessary to attain or maintain the highest practicable physical, mental, and psychosocial well-being of its residents.¹² Many state laws, including California, require specific, higher nursing staff ratios. The OIG strongly encourages facilities assess their staffing patterns regularly to evaluate staff skill levels, resident case-mix, staff-to-resident ratios, staff turnover, staffing schedules, disciplinary records, payroll, timesheets, adverse event reports, interviews, and resident and family feedback.¹³
• Comprehensive resident care plans: Medicare and Medicaid regulations require facilities develop a comprehensive care plan for each resident.¹⁴ The OIG states that a comprehensive care plan is “essential to reducing risk.”¹⁵ Facilities should ensure that care planning includes all disciplines involved in the resident’s care, designing an interdisciplinary and comprehensive approach to developing care plans.¹⁶ The attending physician should participate in the development of the care plan and facilities should ensure the physician actually supervises each resident’s care.¹⁷
• Medication management: Facilities must provide pharmaceutical services to meet the needs of each resident and should be mindful of potential quality of care problems when implementing policies and procedures on proper medication management.¹⁸ Facilities can reduce risk by educating staff on medication management and improper pharmacy kickbacks for consultant pharmacists. Facilities should review the total compensation paid to consultant pharmacists to ensure it is not structured in a way that reflects the volume or value of particular drugs prescribed or administered to residents.
• Appropriate use of psychotropic medications: The OIG identified this risk area as a violation of the prohibition against inappropriate use of chemical restraints¹⁹ and a violation of the requirement to avoid unnecessary drug usage.²⁰ Facilities should ensure there is adequate indication for the use of medications and should carefully monitor, document, and review resident use of psychotropic drugs. Educating caregivers and auditing drug regimen reviews is an important part of reducing risk in this area.²¹
• Resident safety: The OIG suggests several steps facilities may take to protect residents from abuse and neglect, a right protected by federal (and often state) law.²² Facilities can promote resident safety through internal, confidential reporting systems, hotlines, posters, and by communicating a clear commitment to protecting from retaliation those people who make reports. Because residents also suffer harm at the hands of other residents, a heightened awareness and monitoring of resident interaction is crucial. Facilities should perform comprehensive staff screening for criminal records, exclusions, and other information on staff both prior to employment and periodically for current staff.

2. Submission of Accurate Claims
Accurate claim submission is another risk area identified in the supplemental guidance. The OIG identified four sub-areas, each of which is addressed below.

• Proper reporting of resident case-mix: The OIG mentioned instances where skilled nursing facilities improperly upcoded resident Resource Utilization Group (RUG) assignments.²³ Assessment, reporting, and evaluation of resident case-mix data is a significant risk area. Particularly as enforcement activity increases scrutiny of quality reporting data, facilities are “well-advised to review such data regularly to ensure its accuracy and to identify and address potential quality of care issues.”²⁴
• Therapy services: The provision of physical, occupational, and speech therapy services continues to be a risk area for facilities, including inflated RUG classifications, over-utilization of fee-for-service therapy billed to Part B under consolidated billing, and stinting on therapy services covered by the Part A Prospective Payment System (PPS) payment. These practices may result in the submission of false claims and the OIG advises facilities develop policies and procedures to ensure residents receive medically appropriate therapy services.
• Screening for excluded individuals: Pre-employment screening and periodic screening of existing employees is an important part of reducing risk. The guidance reminds facilities that exclusion does not automatically end; it remains in effect until the OIG reinstates the excluded individual.
• Restorative and personal care services: Facilities that fail to provide necessary restorative and personal care services risk billing for services not rendered as claimed, and can face risk under fraud and abuse laws. The OIG strongly encourages facilities implement comprehensive procedures to ensure that appropriate quality and amount of services are actually delivered to residents. Interviews, observations, and a contemporaneous documenting requirement can all assist to reduce risk in this area.

3. The Federal Anti-Kickback Statute
The Anti-Kickback statute remains a significant risk area for nursing facilities. The supplemental guidance devoted five pages to the issue, discussing the statute generally, the eight safe harbors most relevant to nursing facilities, and listing a number of factors/questions facilities should consider when evaluating contractual arrangements. The factors are the traditional aspects of most anti-kickback analysis, the overall message being that facilities should evaluate potentially problematic arrangements with referral sources and recipients which do not fit into a safe harbor. The OIG identified five sub-areas, each of which is addressed below.

• Free goods and services: When a facility provides goods and services that have an independent value to the recipient or that the recipient would otherwise needed to provide at its own expense, a benefit is conferred. If one purpose of the conferred benefit is to generate referrals, it may constitute prohibited remuneration under the Anti-Kickback statute. The OIG highlighted certain examples of this risk area, including but not limited to: supplies or consulting services offered by a pharmacy or laboratory; computers and software with an independent value to the facility; Durable Medical Equipment (DME) supplies for patients covered by Part A; and a hospice nurse providing nursing services for non-hospice residents.²⁵
• Services contracts: To minimize the risk of disguised kickbacks in physician and non-physician services contracts, a facility should periodically review arrangements to ensure: (1) a legitimate need for services or supplies; (2) services or supplies were actually provided and adequately documented; (3) compensation is at fair-market value in an arm’s-length transaction; and (4) the arrangement is not related in any manner to the volume or value of federal health care program business.²⁶ To eliminate risk, the OIG advises facilities structure their services arrangements to comply with the personal services and management contracts safe harbor whenever possible.²⁷
• Discounts: Although the Anti-Kickback statute contains an exception for discounts, to qualify for it the discount must be in the form of a reduction in the price of the good or service based on an arm’s-length transaction.²⁸ The OIG cautions all discounts, including rebates, should be properly disclosed on cost reports and claims, as appropriate. The OIG also stressed that the safe harbor for administrative fees paid by a vendor to a group purchasing organization does not protect discounts provided by a vendor to purchasers of products.²⁹
• Swapping: The OIG stated that facilities should not engage in swapping arrangements by accepting a low price from a supplier or provider on an item or service covered by the Part A per diem, in exchange for the facility referring other federal health care program business such as Part B business excluded from consolidated billing, for which the supplier can directly bill Medicare or Medicaid.³⁰ Facility arrangements particularly prone to swapping problems include those with clinical laboratories, DME suppliers, and ambulance providers. Such swapping arrangements, the OIG stated, implicate the Anti-Kickback statute and are not protected by the discount safe harbor.
• Hospices: Facilities should be aware that requesting or accepting benefits from a hospice may subject the facility and the hospice to liability under the Anti-Kickback statute if those benefits might influence the facility’s decision to do business with the hospice.³¹ The OIG identified a number of hospice-related practices suspect under the Anti-Kickback statute. Among those practices are: a hospice offering free or below-market goods (or referring patients) to induce the facility to refer patients to the hospice; a hospice paying room and board payments in excess of what the facility would have received directly from Medicaid; and a hospice providing staff at its expense to the nursing facility.
• Reserved bed arrangements: Payments from a hospital to a nursing facility to reserve beds may pose a risk under the Anti-Kickback statute if one purpose of the arrangement is to induce referrals to the hospital. The OIG offered examples of potentially problematic arrangements, including: payments above the actual costs to the facility of holding an empty bed, payments that result in double-dipping by the nursing facility, and payments for more beds than the hospital legitimately needs. Payments, the OIG stated, should be for the limited purpose of securing needed beds, not future referrals.

4. Other Risk Areas
The supplemental guidance grouped under a single heading three additional risk areas relevant to nursing facilities. Those areas are: (1) physician self-referrals; (2) anti-supplementation; and (3) Medicare Part D. Each area is addressed below.

• Physician self-referrals: Nursing facilities should familiarize themselves with the current Stark law and prohibited physician financial relationships.³² Nursing facility services, the OIG explained, are not designated health services (DHS) for purposes of the Stark law.³³ However, nursing facilities frequently use laboratory, physical therapy and occupational therapy services, and those services are among the DHS covered by the Stark law.³⁴ Accordingly, the OIG advises, facilities should review all financial relationships with physicians who refer or order DHS to ensure compliance with the Stark law. Facilities should pay particular attention to relationships with attending physicians and physicians who are owners, investors, medical directors or consultants to the facility.
• Anti-Supplementation: Medicare Conditions of Participation prohibit a facility from charging a beneficiary (or someone else in lieu of the beneficiary) for covered services in excess of the Medicare or Medicaid amount.³⁵ Seeking supplemental payments from residents (or their families) is a risk area for nursing facilities because the supplemental payment would be a prohibited charge imposed for services already covered by Medicare or Medicaid. Facilities should carefully ensure residents and their families are not billed such charges.
• Medicare Part D: Beneficiary freedom of choice when choosing a Part D plan is guaranteed by federal law.³⁶ Facilities must be particularly careful, the OIG advised, not to frustrate a beneficiary’s freedom of choice when choosing a Part D plan.³⁷ CMS has stated that “[u]nder no circumstances should a nursing home require, request, coach or steer any resident to select or change a plan for any reason,” nor should it “knowingly and/or willingly allow the pharmacy servicing the nursing home” to do the same.³⁸

5. HIPAA Privacy and Security Rule
The last risk area identified in the supplemental guidance addresses the Health Insurance Portability and Accountability Act (HIPAA) Privacy Rule and the HIPAA Security Rule. The Privacy Rule protects against the disclosure of patient protected health information (PHI), while the Security Rule specifies the administrative, technical and physical safeguards to ensure confidentiality of PHI. Under both rules, covered nursing facilities have a certain amount of flexibility to design their own privacy policies and procedures. The OIG urges facilities verify compliance with all applicable Privacy and Security Rule provisions, including standards for use and disclosure of PHI, both with and without patient authorization and the provisions pertaining to permitted and required disclosures.

Other Compliance Considerations

Key to the success of any compliance program is the establishing a tone at the top and a culture of compliance. Section IV of the supplemental guidance discusses the importance of an ethical culture and a formal commitment to compliance by the nursing facility’s governing body and senior management. Although compliance programs should be scaled according to each facility’s particular needs, size and resources, every program must be afforded appropriate resources. A program should be structured to communicate across departments and overcome the siloing of communication that frequently occurs in large organizations.

A clear statement of policies and procedures is the core of a compliance program, but the OIG recommends facilities also develop a general statement of ethical and compliance principles. A compliance program charter and code of conduct, signed and approved by the governing body, is important to give the program sufficient authority, autonomy and resources to implement compliance measures.

Closely tied with the written compliance materials is the need for assessment of the compliance program’s effectiveness.³⁹ Facilities should regularly review, revise, and build their compliance program and may look to the original nursing facility compliance program guidance for details on the elements of an effective compliance program.⁴⁰ The OIG also recommends facilities develop a mechanism to communicate with decision makers, such as a dashboard, designed to easily convey compliance and performance-related information to a facility’s governing body.⁴¹

Self-Reporting

Section V of the supplemental guidance addresses self-reporting requirements. If the compliance officer, compliance committee, or a member of senior management discovers credible evidence of misconduct from any source and, after a reasonable inquiry, believes that the misconduct may violate criminal, civil, or administrative law, the facility should promptly report the misconduct to the appropriate federal and state authorities.⁴² The reporting should occur within a reasonable period of time, and no longer than 60 days after determining there is credible evidence of a violation.⁴³ Some situations may be so serious immediate reporting may be warranted.⁴⁴

Prompt, voluntary reporting of misconduct demonstrates a facility’s good faith efforts to cooperate with the OIG and is considered a mitigating factor when determining administrative sanctions if the reporting facility becomes the subject of an OIG investigation.⁴⁵ Facilities should carefully review the OIG’s Provider Self-Disclosure Protocol,⁴⁶ particularly in light of the OIG’s April 15, 2008 Open Letter to Health Care Providers stating that providers who resolve fraud matters using the protocol generally will no longer be required to enter into corporate integrity agreements.⁴⁷

The Most Recent of Many Quality-Driven Efforts

The supplemental compliance program guidance is the most recent of several government efforts to improve the quality of care in nursing homes. Other activities include: 1) the joint OIG-HCCA roundtable report, Driving for Quality in Long-Term Care: A Board of Directors Dashboard; 2) developing new, more stringent systems for criminal background checks on facility workers and applicants; 3) an unprecedented focus on preventing severe pressure ulcers in residents; 4) reducing the use of restraints; 5) considering resident feedback and emotional satisfaction; and 6) refining the survey process, identified in CMS’ 2008 Action Plan for (Further Improvement of) Nursing Home Quality.⁴⁸

CMS’ Nursing Home Value-Based Purchasing Demonstration seeks to establish a fundamental change in the way nursing providers are reimbursed for care. Under the program, CMS will assess a nursing home’s performance based on selected measures of quality of care.⁴⁹ The cost savings from the anticipated quality improvements would be shared with nursing homes that either improve quality or maintain exceptionally high quality of care.⁵⁰ The Demonstration will seek to ensure that financial investments to improve quality will benefit from reimbursement methods that discern the difference between excellent, good, mediocre, and poor quality.⁵¹

Nursing Facilities Can Take Action Now

Nursing facilities should consider themselves on the front line of quality enforcement and must evaluate whether they have sufficiently integrated quality of care review into their operations and compliance programs. Facilities can review the original and supplemental compliance program guidance, visit Nursing Home Compare, and track the Value-Based Purchasing Demonstration. When developing a quality of care compliance program for a nursing facility, it is essential to use an interdisciplinary approach incorporating the administration, attending physician, nurses, various specialist therapists and, as necessary, legal counsel.

A nursing facility can start immediately to reduce the risk of an adverse enforcement action. The first step in the process is to educate the governing body and senior management on quality of care issues and get their participation and commitment. Then, the compliance officer should gather together the key personnel in the organization (senior leadership, quality, risk, legal, compliance, etc.) and perform an assessment of the organization’s compliance efforts. A nursing facility can establish internal quality controls and identify areas of potential quality breakdowns through an external assessment for quality of care and legal risks. Such a review, ideally performed under the attorney-client privilege by skilled health care counsel, can reveal to a nursing facility its current legal exposure based on quality of care factors, directing the facility to revise its structure and operations accordingly.

Conclusion

As the OIG stressed, it is imperative for nursing facilities to establish and maintain effective compliance programs, foster a culture of ethical compliance and make an organization-wide commitment to delivering quality health care. The supplemental compliance program guidance reflects how quality of care should be a primary concern of nursing facilities. Investments in quality of care can give a nursing facility an operational advantage, increased reputation in the community, minimize litigation exposure, and reduce the risk of enforcement actions based on poor quality.

---

Legal News Alert is part of our ongoing commitment to providing up-to-the minute information about pressing concerns or industry issues affecting our health care clients and colleagues. If you have any questions about this Alert or would like to discuss this topic further, please contact your Foley attorney or any of the following individuals: 
  

Cheryl L. Wagonhurst Los Angeles, California 213.972.4681 cwagonhurst@foley.com Nathaniel M. Lacktman Tampa, Florida 813.225.4127 nlacktman@foley.com Janice A. Anderson Chicago, Illinois 312.832.4530 janderson@foley.com   Maria E. Gonzalez-Knavel Milwaukee, Wisconsin 414.297.5649 mgonzalezknavel@foley.com	Judith A. Waltz San Francisco, California 415.438.6412 jwaltz@foley.com   Michael Scarano San Diego/Del Mar, California 858.847.6712 mscarano@foley.com   Heidi A. Sorensen Washington, D.C. 202.672.5596 hsorensen@foley.com   Lawrence W. Vernaglia Boston, Massachusetts 617.642.4079 lvernaglia@foley.com

¹ 73 Fed. Reg. 56832-56848 (September 30, 2008).
² www.medicare.gov/NHCompare
³ See www.oig.hhs.gov/fraud/docs/complianceguidance/Roundtable013007.pdf.
⁴ 65 Fed. Reg. 14289 (March 16, 2000).
⁵ Note 1, supra, at p. 56832.
⁶ Id. at p. 56833.
⁷ Id.
⁸ Note 1, supra, at p. 56835.
⁹ 31 U.S.C. 3729-33 (False Claims Act); 42 U.S.C. 1320a-7a (civil monetary penalties); 42 U.S.C. 1320a-7b(c) (false statements or representations with respect to condition or operation of institutions; 18 U.S.C. 287 (false or fraudulent claims); 18 U.S.C. 1001 (statements or entries generally); 18 U.S.C. 1035 (false statements relating to health care matters); 18 U.S.C. 1347 (health care fraud); 18 U.S.C. 1516 (obstruction of a Federal audit).
¹⁰ 42 C.F.R. part 483.
¹¹ Note 1, supra, at p. 56836.
¹² 42 U.S.C. 1395i-3(b)(4)(A), 1396r(b)(4)(A).
¹³ Note 1, supra, at p. 56836-37.
¹⁴ 42 C.F.R. 483.20(k).
¹⁵ Note 1, supra, at p. 56837.
¹⁶ 42 C.F.R. 483.20(k)(2)(ii).
¹⁷ 42 C.F.R. 483.20(k)(2)(ii), 483.40(a).
¹⁸ 42 U.S.C. 1395i-3(b)(4)(A)(iii).
¹⁹ 42 C.F.R. 483.13(a).
²⁰ 42 C.F.R. 483.25.
²¹ 42 C.F.R. 483.60(c).
²² 42 U.S.C. 1351i-3, 1396r; 42 C.F.R. 483.10.
²³ Note 1, supra, at p. 56839.
²⁴ Id. at p. 56840.
²⁵ Note 1, supra, at p. 56843.
²⁶ Note 1, supra, at p. 56843.
²⁷ 42 C.F.R. 1001.952(d).
²⁸ Note 1, supra, at p. 56844; 42 C.F.R. 1001.952(h).
²⁹ 42 C.F.R. 1001.952(j).
³⁰ Note 1, supra, at p. 56844.
³¹ Note 1, supra, at p. 56845.
³² 42 U.S.C. 1395nn.
³³ Note 1, supra, at p. 56845.
³⁴ Id.; see also 66 Fed. Reg. 856, 923 (January 4, 2001).
³⁵ 42 U.S.C. 1395cc(a); 42 CFR 447.15, 483.12(d)(3), 489.20.
³⁶ 42 U.S.C. 1395w-101.
³⁷ Note 1, supra, at p. 56846-47.
³⁸ See CMS Survey and Certification Group’s May 11, 2006 letter to State Survey Agency Directors, www.cms.hhs.gov/SurveyCertificationGenInfo/downloads/SCLetter06-16.pdf.
³⁹ Note 1, supra, at p. 56847-48.
⁴⁰ 65 Fed. Reg. 14289 (March 16, 2000).
⁴¹ See www.oig.hhs.gov/fraud/docs/complianceguidance/Roundtable013007.pdf.
⁴² Note 1, supra, at p. 56848.
⁴³ Id.; 31 U.S.C. 3729(a).
⁴⁴ Note 1, supra, at p. 56848 (footnote No. 137).
⁴⁵ Id.; see 62 Fed. Reg. 67392 (December 24, 1997).
⁴⁶ See 63 Fed. Reg. 58399 (October 30, 1996); see also, www.oig.hhs.gov/authorities/docs/selfdisclosure.pdf.
⁴⁷ www.oig.hhs.gov/fraud/docs/openletters/OpenLetter4-15-08.pdf.
⁴⁸ www.cms.hhs.gov/CertificationandComplianc/Downloads/2008NHActionPlan.pdf.
⁴⁹ Note 48, supra.
⁵⁰ Note 48, supra.
⁵¹ Note 48, supra.