Kusserow on Compliance: CMS issues final rule on affiliation disclosure requirements for the provider enrollment process

CMS issued a final rule on September 10 that sets forth requirements mandating providers and suppliers who submit an application for enrollment or revalidation for Medicare, Medicaid, or the Children’s Health Insurance Program (CHIP) disclose current or previous (up to five years) affiliations with a provider or supplier who has uncollected debt; has been or is subject to a payment suspension under a federal health care program; has been excluded from participation from Medicare, Medicaid, or CHIP; or has had billing privileges denied or revoked. CMS said a history of bad actors trying to escape the ramifications of inappropriate or fraudulent behavior by re-entering the program in some capacity, and/or shifting their activities to another enrolled Medicare provider or supplier with which they are affiliated, provided the motivation for the rule. In addition to furnishing the disclosure information, the provider must submit: (a) an organizational diagram identifying all of the entities listed in this section and their relationships with the provider and with each other; and (b) if the provider is a skilled nursing facility, a diagram identifying the organizational structures of all of its owners.

Richard P. Kusserow served as DHHS Inspector General for 11 years. He currently is CEO of Strategic Management Services, LLC (SM), a firm that has assisted more than 3,000 organizations and entities with compliance related matters. The SM sister company, CRC, provides a wide range of compliance tools including sanction-screening.

Connect with Richard Kusserow on LinkedIn.

Subscribe to the Kusserow on Compliance Newsletter

Copyright © 2019 Strategic Management Services, LLC. Published with permission.

Kusserow on Compliance: Tips for reducing the risk of cyber-attacks

Tim Murphy, former FBI deputy director stated that he rated cyber-attacks as the number one threat facing the country. Threats come from both inside organizations and outside. Insider threats may involve current or former employees or vendors. They may be motivated to steal intellectual property, funds, or simply to cause problems. The danger of employee-related crimes is that they have inside information concerning how things work and have access to data and computer systems. One of the best ways to combat attacks by insiders is to maintain a continuous monitoring of an individual’s public, online activity as well as the internal, network activity to detect changes in behavior. Often, cyber-attackers have patterns of detectable behavior and network activity which can provide indicators of risk, assist in early detection. It is important to know at any given time what are employees doing on the network; who are they dealing with; if they are leaving with data and files; and whether they are violating policy by sharing sensitive information with outsiders. Employee engagement in careless practice is far more common than engagement in malicious practice. Oftentimes carelessness takes the form of simple negligence by clicking on a link in a random email. However, there are ways to mitigate the threats, which can reduce the risk of cyber-attacks by as much as 80 percent, including:

  1. Provide ongoing employee and contractor training on what to do and not to do
  2. Conduct a risk assessment to understand threats presented by an insider
  3. Continuously monitor employee and vendor networks
  4. Update and upgrade software
  5. Use encryption to guard against information being read by unauthorized parties
  6. Establish multi-factor authentication

For more information health care provider cyber-security, contact Dr. Cornelia Dorfschmid at cdorfschmid@strategicm.com or at (703) 535-1419.

Richard P. Kusserow served as DHHS Inspector General for 11 years. He currently is CEO of Strategic Management Services, LLC (SM), a firm that has assisted more than 3,000 organizations and entities with compliance related matters. The SM sister company, CRC, provides a wide range of compliance tools including sanction-screening.

Connect with Richard Kusserow on LinkedIn.

Subscribe to the Kusserow on Compliance Newsletter

Copyright © 2019 Strategic Management Services, LLC. Published with permission.

Kusserow on Compliance: Successful investigation interviews require proper preparation

Proper preparation is the number one factor for a successful interview. Do not rush into an interview until you are fully prepared. It is important to examine and understand all the facts known that relate to the matter under investigation. It is also critical to understand what information is needed to advance the investigation and to determine what the person being interviewed can contribute to this. The following tips will help ensure best results:

  1. Develop an investigation plan. Before any interviews, it is important to (a) set investigative priorities/objectives; (b) review what is known; (c) obtain needed documents; and (d) identify those people that should be interviewed, in what order.

 

  1. Master the known facts of the case. Review all the available facts and evidence; and decide what you need from witnesses to prove the offense or fill gaps.

 

  1. Properly prepare for each interview. A successful interview includes knowing who should be interview, their background, what information they may have to advance the investigation, and what documents are relevant to their interview.

 

  1. Develop an outline for each interview of the points to be covered in a logical manner. It should be in an abbreviated form, serving as a road map to keep things on track by addressing different topics to be covered. However, rigid adherence to an outline or detailed questions is not advisable, as it will tend to distract the interviewer from carefully listening to the witness’s answers and generating useful follow up questions.

 

  1. Schedule interviews as quickly as possible. Interviews of witnesses should be scheduled in a logical order to build a case, as soon as possible, before memory fades or is influenced by events.

 

  1. Have relevant material on hand during the interview. Have only documents present that are relevant to the interview. As appropriate, show the witness the relevant documents and let him or her review them before answering. It may assist in refreshing memory of events.

 

  1. Use copies of original documents for interviews. As a rule, it is best to keep original evidence secured in a controlled access location. Using copies will ensure that original ones are not lost or compromised.

 

  1. Take care in selecting the location and setting for the interview. Schedule interviews away from the persons work station or office. The setting for the interview should be in a place where it cannot be overheard or where there are distractions in sight and sound. As such, the person should not be near a window. It is also advisable to avoid barriers with the interviewee, such as table and desks, that may be viewed as overly formal and threatening.

 

  1. Allow adequate time for the interview to be conducted in an appropriate environment. Most interviews in complex cases take much longer than the witness anticipates. Conduct the interview in a professional environment; do not attempt to interview an important witness at lunch or in another social setting.

 

  1. Review policy regarding rights of employees during an investigation. Check with HR before conducting employee interviews to determine if employees who decline to cooperate could/would be considered insubordinate, as well as whether employee rights exist that may restrict interviews. For example, members of unions may have the right to be present and to take independent notes and/or record the meeting.

Richard Kusserow has over 40 years investigative experience including eleven years as HHS Inspector General and twelve years with the FBI. He authored “Conducting Internal Investigations in Health Care Organizations (ISBN 979-1-936230-60-8). His firm provides investigator training for clients.

Connect with Richard Kusserow on LinkedIn.

Subscribe to the Kusserow on Compliance Newsletter

Copyright © 2019 Strategic Management Services, LLC. Published with permission.

Kusserow on Compliance: First steps in conducting witness interviews

Witnesses are key to most investigations and are most often neutral third-parties from whom information is desired. Obtaining useful information and cooperation from witnesses is a critical part of any successful investigation and nothing can derail that faster than not properly engaging the witness from the outset. The following are tips regarding the proper protocols to initiating witness interviews:

  1. Identify self and any others participating in the interview
  2. State the reason for the interview
  3. Explain your authority to conduct the inquiry
  4. Explain why they were selected to be interviewed
  5. Remind the witness of their duty to provide complete and accurate facts
  6. Politely ask for their cooperation
  7. Remind them that they will be protected against any retaliation
  8. Clarify that the interview is voluntary and can be ended at any time
  9. Explain that it is important they be open and candid
  10. Note their comments will be confidential to only those with a need to know
  11. Request them, in return, to keep the interview confidential (“street runs both ways”)
  12. Before questioning, ask if they have any questions
  13. Work to establish rapport and to relax the interviewee
  14. Before substantive questioning, ask simple ones about their duties, who they report to, etc.

 

Richard Kusserow has over 40 years investigative experience including eleven years as HHS Inspector General and twelve years with the FBI. He authored “Conducting Internal Investigations in Health Care Organizations (ISBN 979-1-936230-60-8). His firm provides investigator training for clients.

Connect with Richard Kusserow on LinkedIn.

Subscribe to the Kusserow on Compliance Newsletter

Copyright © 2019 Strategic Management Services, LLC. Published with permission.