Laws & Statutes Flashcards

1
Q

What entities does HIPAA apply to?

A

Health plans
Health care clearinghouses
Health care providers

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What information does HIPAA protect?

A

Protected Health Information or Individually Identifiable Health Information

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What is “individually identifiable health information” under HIPAA?

A

Information, including demographic information, that is created or received by a Covered Entity and relates to the past, present or future physical or mental health or condition of an individual; the provision of health care to an individual; or the past, present or future payment for health care; and that identifies the individual or with respect to which there is a reasonable basis to believe the information can be used to identify an individual

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Who is responsible for investigating HIPAA complaints?

A

The Secretary of the Department of Health and Human Services
and the Office for Civil Rights

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What are the penalties for HIPAA violations?

A

(1) C.E. Did Not Know: $100-$50,000
(2) Violation due to reasonable cause, not willful neglect: $1000-$50K
(3) Violation due to willful neglect and timely corrected: $10,000-$50K
(4) Willful neglect, not corrected: $50,000

Calendar year maximum for violations of same provision: $1.5M

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What is a HIPAA “breach”

A

A breach is an acquisition, access, use, or disclosure of PHI in a manner not permitted under HIPAA that compromises the security or privacy of the PHI. All unallowed acquisition, access, use, or disclosures are presumed to be a breach unless the C.E. can demonstrate there is a low probability that the PHI has been compromised based on a risk assessment of 4 factors:

  1. Nature and extent of PHI
  2. An unauthorized person who received the PHI
  3. Whether the PHI was actually acquired or viewed
  4. The extent to which the risk was mitigated
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What does the Anti-Kickback law prohibit?

A

Asking for or receiving anything of value for the referral of business to a government-funded health care program.
For example, offering bribes or rebates

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What are the penalties for Anti-Kickback violations?

A
  • *Criminal penalties**: Felony. $25K per violation and up to 5 years in prison
  • *Civil penalties under False Claims Act**: Up to 3x the loss plus $11,000 per claim
  • *Civil Monetary Penalty**: $50K per violation and up to 3x value of kickback
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What does the Stark law prohibit?

A

Improper referrals to entity with which you have a financial relationship

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What is another term for the Stark law?

A

Phsyician self-referral law

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What are the penalties for a Stark/Physician self-referral violation?

A

Owe back amount of claim
Civil penalties under False Claims Act: Up to 3x the loss plus $11,000 per claim
Civil Monetary Penalty: $15K per service/$100K per scheme
Exclusion from federal health programs

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

How do you determine if there is a Stark/Physician self-referral violation?

A

1) Is there a referral from a physician for a health service
2) Does physician have a financial relationship with the entity that received the referral (e.g. an ownership interest)
3) Does the relationship fit into an exception? (e.g. employment, space, and equipment lease)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

What are the 2 main differences between Stark and Anti-kickback?

A

1) Stark has civil liability only whereas Anti-Kickback has both civil and criminal liability
2) Stark applies only to physicians whereas Anti-Kickback applies to physicians and other providers

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

What governmental agencies enforce the Stark, Anti-Kickback and False Claims Act?

A

Office of Inspector General (OIG)
US Department of Justice

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

What are the two types of exclusion authorities that the OIG has?

A
  • *Mandatory**: Conviction of program-related crime; felonies for controlled substances
  • *Permissive**: failure to repay school loans, etc.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

How long does an OIG exclusion last?

A

Minimum of 5 years, indefinite for exclusions based on license actions, etc. Must apply for reinstatement.

17
Q

What are some different types of health care fraud that could be the basis of a False Claim Act lawsuit?

A
  • Services Not Rendered/Add-on Services
  • Upcoding and Unbundling
  • Kick-backs
  • False Certification and Information
  • Lack of Medical Necessity
  • Fraudulent Cost Reports
  • Grant or Program Fraud
18
Q

What are the penalties for an individual or organization found guilty of violating the False Claims Act?

A

Up to three times the loss, a penalty of $5,500 to $11,000 per violation

19
Q

What constitutes a violation of the False Claim Act?

A

Any person who knowingly presents, or causes to be presented, to the U.S. Government a false or fraudulent claim for payment or approval of a government payment; knowingly makes, uses, or cause to be made or used a false record or statement to get a false or fraudulent claim allowed or paid violates the False Claim Act. Must be material.

Knowing or Knowingly is defined as:

1) has actual knowledge of the information
2) acts in deliberate ignorance of the truth or falsity of the information
3) acts in reckless disregard of the truth or falsity of the information