CMS Program for Evaluating Payment Patterns Electronic Reports (PEPPER) reports will be released soon. PEPPER is a Medicare Part A claims data report that compares your SNF to state, national and MAC or FI jurisdiction data. PEPPER includes this comparative data for six Target Areas:
The Department of Health & Human Services Office of Civil Rights (OCR), which enforces HIPAA, recently released a Security Risk Assessment (“SRA”) Tool to help providers comply with the HIPAA Security Rule. Security risk assessments are required by the HIPAA Security Rule, and are also required for providers hoping to receive payments through the Meaningful Use Program for EHR.
The HIPAA Security Rule requires covered entities and business associates to assess whether their administrative, physical and technical safeguards sufficiently protect the security of their PHI. The OCR’s SRA Tool, available for download here, walks the user through each safeguard, and is designed to help users assess each security standards and identify remediation needed. The OCR states that the SRA Tool does not transmit user information to the government.
No more excuses!
The Department of Health and Human Services (HHS) recently announced that it will conduct a “HIPAA Covered Entity and Business Associate Pre-Audit Survey." It will conduct a survey of 800 covered entities and 400 business associates to determine whether they are appropriate participants for the Office of Civil Rights (OCR) HIPAA Audit Program.
What is PEPPER?
By now, skilled nursing facilities should have received the CMS Program for Evaluating Payment Patterns Electronic Reports ("PEPPER"). PEPPER is a Medicare Part A claims data report that compares your SNF to aggregated state, national and Medicare Administrative Contractor (MAC) or Fiscal Intermediary (FI) jurisdiction data. PEPPER includes this comparative data for six "Target Areas": 1) Therapy RUGs with high ADLs; 2) Nontherapy RUGs with high ADLs; 3) Change of therapy assessments; 4) Ultrahigh therapy RUGs; 5) Therapy RUGs; and 6) 90+ day episodes of care.
The enforcement date for the HIPAA Omnibus Final Rule is just around the corner. As September 23 approaches, compliance officers may be wondering if everything is on schedule for completion by the enforcement date. In HIPAA, we have a hefty set of regulations to guide us in safe, secure management of the health information of those we care for. Using a well organized, systematic plan for drafting and implementing policies and forms is the best approach to attaining HIPAA compliance.
The OIG recently released a review of SNF care and discharge plans. The OIG found that 37% of SNFs did not meet the care planning requirements or did not provide services in accordance with care plans. They go on to say that for 31% of stays, SNFs did not meet discharge planning requirements. The OIG calls for stricter oversight of SNF care and discharge plans as Medicare paid approximately $5.1 billion for stays in which SNFs did not meet the requirements.
This week, the Office of Inspector General (OIG) released a report: Inappropriate Payments to Skilled Nursing Facilities Cost Medicare More than a Billion Dollars in 2009. The OIG found that 25% of SNF claims submitted in 2009 were in error, amounting to $1.5 billion in overpayments. To read the full report, click here.