May 06, 2019
As hard as you try to keep your lab 100% compliant with healthcare fraud and abuse laws, you may discover that an inadvertent violation has occurred. At that point, the compliance imperative switches from prevention to damage control. Your basic choice: cover-up or self-disclose. Leaving aside the morals and the fact that the feds, state enforcers and whistleblowers are making monumental strides in spotting false claims violations, cover-up exposes your lab to significantly heightened liability risks, including the risk of total exclusion from government health programs. While these things are intuitively obvious, the new OIG Fraud Risk Indicator (FRI) system is a very practical and concrete illustration of the risks of cover-up and imperative to self-disclose.
The FRI System
The OIG launched the FRI in September 2018 as a tool to assess “the future risk posed by persons who have allegedly engaged in civil healthcare fraud” for purposes of exercising its authority to exclude alleged fraudsters from federal healthcare programs. The FRI comes into play when the agency is negotiating a settlement agreement with a lab or other provider that has allegedly committed a False Claims Act (FCA) violation to decide how draconian the punishment should be, specifically:
The OIG uses the FRI to answer these questions by assigning the settling party to one of five risk categories, each of which calls for different case outcomes:
OIG FRI Risk Categories
Risk Category |
Description |
Case Outcome |
High Risk/Exclusion |
Individuals & entities posing the highest future risk of fraud |
Exclusion from federal healthcare programs & listing in OIG Exclusions Database |
High Risk/Heightened Scrutiny |
Individuals & entities posing significant future risk of fraud who refuse to enter into a CIA* |
No exclusion but unilateral monitoring by or other “robust integrity obligations” to OIG (and/or state Medicaid fraud agency) |
Medium Risk/CIAs |
Individuals and entities who agree to enter into a CIA |
Compliance with terms of the CIA |
Lower Risk/No Further Action |
Individuals and entities who pose a relatively low risk of future fraud |
Case closed with no CIA or additional measures to ensure future compliance |
Low Risk/Self-Disclosure |
Individuals and entities that disclose evidence of potential fraud to OIG and demonstrate that they have an effective compliance program |
Case closed more quickly with lower penalties and no CIA or additional measures to ensure future compliance |
Note:
* Under OIG published criteria, high risk violators can avoid exclusion without a CIA under two limited circumstances:
The OIG’s 4 Classification Criteria
How does the OIG decide which risk category to assign to a particular FCA offender in an actual settlement? In April 2016, before the FRI took effect, the OIG published the four criteria it proposed to use:
1. Nature & circumstances of the conduct, including whether the conduct:
2. Conduct during the investigation, with the following constituting indications of higher risk:
By contrast, the following are indications of lower risk include:
3. “Significant ameliorative efforts” call for a lower risk score. Examples:
4. Compliance history, including previous self-disclosures to OIG, CMS (of Stark Law violations) and/or CMS contractors (of non-fraud overpayments). While having a compliance program that incorporates the U.S. Sentencing Commission Guidelines Manual’s seven elements of an effective compliance program doesn’t help you get a lower risk score, not having such a plan is a factor calling for a higher risk score.
Impact on Your Lab: The 4 Benefits of Self-Disclosure
In deciding how to respond to any FCA violations you discover, keep in mind the four things that self-disclosure of violations to the OIG does to reduce your risks of exclusions and penalties under the FRI system:
**************
This article originally appeared in G2 Intelligence, Lab Compliance Advisor, May 2019
ADVERTISEMENT