Will Massachusetts be able to negotiate Medicaid prescription drug prices?

By on January 25, 2018

In the absence of new federal policies to tame high price drugs, Massachusetts’ state Medicaid program is fighting for the power to negotiate discounts for the drugs it purchases and to exclude drugs with limited treatment value.

If the Department of Health and Human Services approves the State’s plan, others will likely take similar action. According to the most recent federal data, Medicaid spending on prescription drugs increased about 25 percent in 2014 and nearly 14 percent in 2015.

Currently, state Medicaid programs are required to cover almost all drugs that have received Food and Drug Administration approval, including multiple drugs from different manufacturers used for the same purpose and in the same category. In exchange, manufacturers must discount those drugs. The discount is typically based on a set percentage of the list price, specified by federal law. However, as drug prices soar, states say those fractional discounts no longer suffice to defray the burden of rising costs.

One example presents itself through the hepatitis C cures released in recent years whereby prices come in tens or hundreds of thousands of dollars and have cost Medicaid billions. In turn, some states tried to restrict access so that only the sickest patients could get the drugs. Advocates filed suit in response and won based on the argument that such limits violated Medicaid’s statutory drug benefit.

In response, Massachusetts is requesting a federal exemption known as a Section 1115 waiver, which allows states to test ways of improving Medicaid. In short, it wants to pick which drugs it covers based on most beneficiaries’ medical needs and which medicines demonstrate the highest rates of cost effectiveness. The desired result is that it will be able to negotiate better prices, which in turn will lead to saving public dollars while still maintaining patients’ access to needed therapies.

Critics worry this change could make it harder for low-income people to get needed medications, without necessarily providing them an alternative. Further, the Pharmaceutical Research and Manufacturers of America (PhRMA), the drug industry’s trade group, has already noted its displeasure with this plan, saying that Massachusetts’ plan would limit consumer access and is ultimately unnecessary on top of the rebates Medicaid programs receive. If the Department of Health and Human Services approves the plan, it is likely that the industry would sue.

However, states are becoming desperate to find a way reduce the exorbitant costs of prescription drugs any way they can. If Massachusetts plan is approved, it is likely that there will be many other states that will be interested in following this lead.

Filed under Department of Health and Human Services, Food and Drug Administration (FDA), Medicaid, Prescription Drugs Tagged with , , , , ,

Updated HIPAA Breach Reporting Tool Launched by HHS

By on July 31, 2017

Linda Hunt Mullany, JD, RN, CHPC

July 31, 2017

“…a more positive, relevant resource of information for concerned consumers.”

On July 25, the U.S. Department of Health and Human Services (HHS), Office for Civil Rights (OCR), unveiled a revised Health Insurance Portability and Accountability Act (HIPAA) Breach Reporting Tool (HBRT) that provides consumers improved access to information on breach data, and also provides greater ease-of-use for organizations reporting incidents. The HBRT makes required reporting information public, such as name of the entity suffering the breach; state where the breach occurred; number of individuals affected; date of the breach; type of breach (e.g. hacking/IT incident, theft, loss, unauthorized access or disclosure); and the location of the breached information (e.g. laptop, paper records, desktop computer). HIPAA also requires health care providers and other covered entities to promptly notify individuals of a breach and, in some cases, notify the media.

HHS Secretary Tom Price, M.D., explained, “HHS heard from the public.  . . .To that end, we have taken steps to make this website, which features only larger breaches, a more positive, relevant source of information for concerned citizens.”

The HRBT may be found at: https://ocrportal.hhs.gov/ocr/breach/breach_report.jsf.

Filed under Data Breach, Department of Health and Human Services, HIPAA, HIPAA Privacy and Security, Information Technology Security, Protected Health Information Tagged with , , , , , ,

CMS ISSUES CHANGES TO REQUIREMENTS OF PARTICIPATION AFFECTING LTC FACILITIES: ARBITRATION IS OUT—ARE WAIVER OF JURY TRIALS IN?

By on October 4, 2016

Effective November 28, 2016, long-term care facilities that participate in Medicare and Medicaid will no longer be able to enter into “pre-dispute” agreements for binding arbitration with their residents.  The Centers for Medicare & Medicaid Services (CMS) issued the final rule on September 28, 2016, after consideration of extensive comments from key stakeholders in the long-term care community regarding proposed revisions.

Under the rule, a facility can ask a resident or a resident’s representative to enter into an arbitration agreement after a dispute arises.  However, the facility must comply with several requirements, such as ensuring that the agreement provides for the selection of a neutral arbitrator and a venue convenient to both parties.  Further, a resident’s right to remain in the facility cannot be contingent upon entering into the arbitration agreement and the agreement cannot contain language that discourages communications with federal, state or local surveyors and other officials.

As one of the more controversial changes, critics of the new arbitration rule have reacted strongly against the change and have commented that this part of the rule “clearly exceeds” CMS’s statutory authority.  In its response to public comments, CMS explains that the Secretary of Health and Human Services has the authority to administer the program under the Social Security Act by setting general practice parameters for payment under Medicare and Medicaid.  CMS further cites to its authority to promulgate regulations for residents’ health, safety and well-being and states that there is “significant evidence that pre-dispute arbitration agreements have a deleterious impact on the quality of care for Medicare and Medicaid patients.”  Nevertheless, there are several legal bases upon which to challenge the agency’s ability to preclude an arbitration agreement.

While CMS’s comments cite to a resident’s waiver of the right to a jury trial as a major factor considered in its decision to disallow pre-dispute arbitration agreements, the final rule does not expressly preclude jury trial waiver provisions within facility admissions agreements.  Jury waivers may help to address runaway verdicts that have become a concern in negligence cases in past years, while still respecting expressed concerns that arbitration presents undue costs to residents and creates an environment of “secrecy.”  Note that state law may vary on whether such waivers are enforceable.

Also remarkable is CMS’s comment that it will not address waiver of class-action litigation in this rule, but rather reserve the issue for consideration during future rulemaking.

The broad-sweeping final rule also contains several other provisions that directly affect compliance programs, training of nursing staff, updating infection and control programs, and other key requirements that long-term care facilities must comply with in order to participate in the Medicare and Medicaid programs.  It is advisable for long-term care facilities to promptly consult with a knowledgeable healthcare attorney to assess modifications to admissions packets and to otherwise establish the framework necessary to comply with the revised Requirements of Participation.

Filed under Arbitration, Centers for Medicare and Medicaid Services, Department of Health and Human Services, Health Care Facilities, Hospice Programs, Long Term Care, Medicaid, Medicare, Nursing Home Regulations, Nursing Homes, Uncategorized Tagged with , , , , ,

Failure to Update Business Associate Agreement Leads to Health System’s Settlement with OCR

By on October 3, 2016

A hospital’s breach notification to the Department of Health and Human Services, Office of Civil Rights (“OCR”) led to a Resolution Agreement, payment of $400,000 and a Corrective Action Plan for an east coast health system. On September 23, 2016, OCR issued a press release advising that Woman & Infants Hospital of Rhode Island (“WIH”) a member of Care New England Health System (“CNE”) notified OCR of a reportable breach in November of 2012, stemming from its discovery that unencrypted backup tapes containing electronic Protected Health Information (“PHI”) were missing from two of its facilities. CNE provides centralized corporate support to the covered entities under its common ownership and control, including technical support and information security for WIH’s information systems, as its business associate. Although WIH had in place a business associate agreement (“BAA”) with CNE, it was dated from March of 2005 and had not been updated since implementation and enforcement of the HIPAA Omnibus Final Rule.

OCR’s investigation of WIH’s HIPAA Compliance program, triggered by the report of the missing tapes, uncovered the outdated BAAs. WIH updated their BAA on August 28, 2015, as a result of OCR’s investigation. OCR then determined that from September 23, 2014, the date enforcement of the Final Rule began, until August 28, 2015, WIH impermissibly disclosed the PHI of at least 14,004 individuals to its business associate when WIH provided CNE with access to PHI without obtaining satisfactory assurances, in the form of a written business associate agreement, that CNE would appropriately safeguard the PHI. The settlement was reached without any admission of liability by CNE or WIH.

The settlement is a jolt to many covered entities and their business associates for a number of reasons. The key take-aways are: (1) There is an inference in the OCR’s actions that a well worded BAA, wherein the business associates agrees to abide by the specifications required by the Privacy and Security Rules, is sufficient to satisfy the covered entity’s obligation to obtain “satisfactory assurances” the business associate will appropriately safeguard the PHI (meaning those often lengthy and burdensome security questionnaires or audits business associates are being asked to complete may be unnecessary and not required); (2) documentation of intent and action, including policies, procedures and BAAs, is extremely important in establishing HIPAA Compliance (i.e., the fact that the mistake occurred—tapes went missing—is being treated as the result of the absence of a written agreement, justifying the enforcement action, when in reality it is likely, or at least conceivable, that human error, inadvertence or lack of attention is the root cause and this could have occurred even if an updated BAA was in place and being followed); and (3) policies, procedures and continuous training and retraining of the workforce handling PHI is imperative to a successful HIPAA compliance program, and remains on the radar of any OCR investigation.

A copy of the Resolution Agreement and Corrective Action Plan may be found on the OCR website at http://www.hhs.gov/hipaa/for-professionals/compliance-enforcement/agreements/wih.
OCR’s sample BAA may be found at http://www.hhs.gov/hipaa/for-professionals/covered-entities/sample-business-associate-agreement-provisions/index.html.

Filed under Department of Health and Human Services, HIPAA, Office of Civil Rights, Protected Health Information

The Effects of Medicaid Expansion under the ACA: Findings from a Literature Review — The Henry J. Kaiser Family Foundation

By on June 20, 2016

Research on the effects of Medicaid expansions under the Affordable Care Act (ACA) can help increase understanding of how the ACA has impacted coverage; access to care, utilization, and health outcomes; and various economic outcomes, including state budgets, the payer mix for hospitals and clinics, and the employment and labor market. These findings also may…

via The Effects of Medicaid Expansion under the ACA: Findings from a Literature Review — The Henry J. Kaiser Family Foundation

Filed under Affordable Care Act, Department of Health and Human Services, Medicaid, Uncategorized

OIG Expresses Concerns about Medicare Skilled Nursing Therapy Billing

By on October 20, 2015

Calling for a reevaluation of the Medicare payment system for skilled nursing facilities (SNFs), the Department of Health and Human Services’ (HHS) Office of Inspector General (OIG) recently issued a report expressing concerns about Medicare payment for therapy services. The OIG found that Medicare payments for therapy “greatly exceed” SNFs’ therapy costs. The difference between Medicare therapy payments and facility costs for therapy averaged 29 percent—twice as high as the 14 percent overall Medicare margin for SNF payments in 2012. The OIG stated that Medicare payments for therapy rose faster than therapy costs between 2002 and 2010. According to the OIG, one factor leading to the increased payments was that SNFs increasingly billed for the highest level of therapy even though beneficiary characteristics remained largely unchanged. The OIG report also notes that SNFs used strategies to optimize revenues, such as providing the minimum number of therapy minutes for the higher levels of therapy. Finally, the OIG found that increases in SNF billing resulted in $1.1 billion in Medicare payments in 2012 and 2013.

As a result of this and prior OIG reports, the OIG called for the Centers for Medicare and Medicaid Services (CMS) to reevaluate the Medicare SNF payment system. The OIG recommended that CMS take the following actions: (1) evaluate the extent that Medicare therapy payment rates should be reduced; (2) change the method used to pay for therapy; (3) adjust Medicare payments to eliminate any increases that are not related to beneficiary characteristics; and (4) strengthen oversight of SNF billing. CMS agreed with all of the OIG’s recommendations. Accordingly, it is possible.

Filed under Centers for Medicare and Medicaid Services, Department of Health and Human Services, Office of Inspector General, Skilled Nursing Facilities

OIG’s Advisory Opinion Concludes that Free Introductory Visits by Home Health Provider Are Not Prohibited Remuneration

By on September 4, 2015

A home health care provider’s policy of offering free introductory visits to patients who had already selected it as their home health care provider does not generate prohibited remuneration under the federal antikickback statute, the Office of Inspector General (OIG) of the Department of Health and Human Services (HHS) concluded in a recent advisory opinion. (OIG Advisory Opinion No. 15-12.) The home health agency requesting the advisory opinion (requestor) stated that a physician or a health care professional provides a list of home health providers to a patient who needs home health services. The requestor has no involvement in the patient’s selection process, nor does it offer or pay any remuneration to the physician or other referral source. After a patient chooses the requestor as his or her home health agency, an employee of the requestor (liaison) contacts the patient by telephone to see if he or she would like to have an introductory visit with the liaison. The purpose of the introductory visit is to facilitate the patient’s transition to home health services and to increase compliance with the treatment plan. The liaison does not provide any diagnostic or therapeutic service reimbursed by any federal health care program during the introductory visit and the services provided during the introductory visit do not require clinical training.

The OIG concluded that the introductory visits were not remuneration because they did not provide any actual or expected economic benefit to patients. Although the services may have some “intrinsic value” to patients, the OIG concluded that the “intangible worth to patients” created by the introductory visits do not implicate the federal antikickback statute or the Civil Monetary Penalty law.

Filed under Civil Monetary Penalties, Department of Health and Human Services, Home Health Agencies, Home Health Care, Office of Inspector General, OIG Advisory Opinion

OIG Issue Fraud Alert on Physician Compensation Arrangements

By on June 26, 2015

The Office of Inspector General (OIG) at the Department of Health and Humans Services (HHS) recently issued a fraud alert for physicians who enter into compensation arrangements. Every physician should review carefully the terms and conditions of compensation arrangements, such as medical directorships, to ensure that they reflect fair market value for bona fide services provided by the physician. The OIG cautioned that a compensation arrangement may violate the anti-kickback statute if even one purpose of the arrangement is to compensate a physician for past or future referrals of federal health care program business.

The fraud alert highlighted the OIG’s recent settlements with 12 individual physicians. According to the OIG, the compensation paid to these physicians under medical directorship arrangements violated the anti-kickback statute for several reasons, including the following:

  • The payments took into account the volume or value of the physicians’ referrals rather than the fair market value for the services;
  • The physicians did not actually provide the services; and
  • Some of the physicians entered into arrangements where an affiliated health care entity paid the salaries of the physicians’ front office staff which relieved the physicians of a financial burden resulting in improper remuneration to the physicians.

Given the OIG’s recent focus on physician compensation arrangements, physicians should proactively review their agreements to ensure that they meet anti-kickback statute requirements, including any applicable safe harbors.

Filed under Compensation Arrangements, Department of Health and Human Services, Fraud Alert, Office of Inspector General

HHS/OCR Issues Guidance on HIPAA and Workplace Wellness Programs

By on May 19, 2015

Many employers view wellness programs as a way to lower health care costs and promote healthy behavior. With the growth of workplace wellness programs, new guidance from the Office of Civil Rights (OCR) at the Department of Health and Human Services (HHS) is timely. HHS/OCR recently issued guidance in the form of frequently asked questions about HIPAA and workplace wellness programs.

5-19The applicability of HIPAA to a workplace wellness program depends on how the program is structured. An employer may sponsor its own wellness program or offer it through the employer’s group health plan. When a workplace wellness program is offered as part of a group health plan, individually identifiable health information collected from wellness program participants is protected under HIPAA because the group health plan is a covered entity under HIPAA. However, a workplace wellness program that is not offered as part of a group health plan but is offered by an employer directly is not covered by HIPAA since HIPAA applies only to covered entities and business associates, but not to employers in their capacity as employers. However, other federal and state laws may apply to the collection and/or use of information by an employer that directly offers a workplace wellness program.

The guidance also addresses whether a group health plan may allow an employer as plan sponsor access to protected health information about participants in a wellness program offered through the plan. If the employer does not administer the health plan, the group health plan can disclose to the employer as plan sponsor only information on which individuals are participating in the health plan and summary health information if requested for the purposes of modifying the plan or obtaining premium bids for coverage.

The guidance states that  the group health plan can provide an employer that is a plan sponsor and performs administrative functions on behalf of the group health plan with access to protected health information necessary to perform its plan administrative functions, but only if certain conditions are met. These conditions, which the employer as plan sponsor must include in plan documents and certify agreement to, include the following:

  • There must be adequate separation between employees who perform plan administrative functions and those who do not;
  • Protected health information cannot be used or disclosed for employment-related actions or other prohibited purposes under the privacy rule; and
  • There must be reasonable and appropriate administrative, technical, and physical safeguards to protect any electronic protected health information.

As employers and group health plans begin developing and implementing workplace wellness programs this year, they should review OCR’s recent guidance to ensure that they are in compliance with HIPAA.

 

Image courtesy of Flickr by Robert Gourley

Filed under Compliance Guidance, Department of Health and Human Services, HIPAA, Office of Civil Rights, Workplace Wellness Programs

Recent Compliance Guidance Issued for Health Care Governing Boards

By on May 13, 2015

In cooperation with several industry associations, the Office of Inspector General (OIG) at the Department of Health and Human Services (HHS) recently issued guidance to help governing boards of health care organizations perform their compliance duties. The guidance was developed through collaboration between the Association of Healthcare Internal Auditors, the American Health Lawyers Association, the Health Care Compliance Association, and the OIG. The compliance guidance repeats some guidance for other industry groups, such as a compliance program is not a “one size fits all” program. However, the guidance also contains information that is particularly applicable to governing boards.

The guidance addresses the following issues relating to a governing board’s oversight and review of compliance functions: (1) roles of, and relationships between, the organization’s audit, compliance, and legal departments; (2) mechanism and process for reporting within the organization; (3) identifying regulatory risk; and (4) encouraging enterprise-wide accountability for achieving compliance goals and objectives.

The guidance offers some suggestions specific to governing boards about compliance, including the following.

  • The guidance states that boards should develop a formal plan to stay current with the regulatory landscape so that the board can ask more pertinent questions and make informed decisions. The plan may involve periodic updates from staff or review of materials provided by staff or outside educational programs.
  • The guidance states that a board can raise its expertise level about regulatory and compliance matters by adding to the board or consulting with a regulatory, compliance, or legal professional.
  • There should be a process to ensure appropriate access to information, which can be set out in a formal charter document or other documents.
  • The guidance recommends that boards evaluate and discuss how management works together to address risk.
  • The guidance states that the board should set and enforce reporting to the board compliance-related information in a format that satisfies the interests or concerns of board members.

The board may want to consider scheduling regular executive sessions to discuss compliance and quality functions to encourage open communication.

Filed under Compliance Guidance, Department of Health and Human Services, Office of Inspector General

Older posts