Providers continue to experience significant financial challenges and must do all they can to protect revenue. Shoring up compliance and risk management efforts in the mid-cycle is essential to this effort. Implementing a comprehensive internal compliance audit program is a great place to begin. This should include regular evaluation and management (E&M) utilization reviews since payers give special attention to this area. Doing so can help mitigate payer audits and investigations and provide insight into problematic trends so they can be addressed before a payer audit has a chance to occur.

Another area of increasing risk for providers is privacy and security. Between January and August of 2023, 463 healthcare data breaches were reported, a 21.4% month-over-month increase.² Data breaches are particularly costly and can cause significant harm to provider organizations and their patients. To prevent data breaches or hacking events, organizations must ensure HIPAA compliance and have a comprehensive security program that evolves as new threats are identified. Since most ransomware hacks stem from phishing emails, employee education and awareness are critical³

A third critical area providers need to focus on is billing compliance, which should include a plan aligned with the organization’s corporate contingency policies and the development of incident protocols and response teams. Third-party billers and vendors should be part of this plan.

References

1. https://www.ncbi.nlm.nih.gov/pmc/articles/PMC10908333/
2. https://www.hipaajournal.com/august-2023-healthcare-data-breach-report/
3. https://www.ibm.com/topics/phishing