Compliance at the Crossroads: How can the Compliance Profession Move to the Second Generation? A Practical Approach to Integrating Compliance, Risk and.

Slides:



Advertisements
Similar presentations
Managing Compliance Related to Human Subjects Research Review Joseph Sherwin, Ph.D. Office of Regulatory Affairs University of Pennsylvania Fourth Annual.
Advertisements

Pharmaceutical Congress Spring 2003 Preconference Symposia Compliance 101 for Pharmaceutical Manufacturers Michael P. Swiatocha June 8, 2003.
Internal Control–Integrated Framework
HIPAA Privacy Rule Training
Increasing public concern about loss of privacy Broad availability of information stored and exchanged in electronic format Concerns about genetic information.
Managing Access to Student Health Information per Federal HIPAA Guidelines Joan M. Kiel, Ph.D., CHPS Duquesne University Pittsburgh, Penna
Contractor Code of Business Ethics and Conduct Laura K. Kennedy Senior Vice President, Ethics and Compliance SAIC.
2010 Region II Conference Corporate Compliance Panel June 3, 2010
Compliance Programs after The Affordable Care Act Angela Mattie, JD, MPH Teresa Tai, PhD, MA Quinnipiac University, School of Business, Department.
Security Controls – What Works
EMS Auditing Definitions
© 2013 Cengage Learning. All Rights Reserved. 1 Part Four: Implementing Business Ethics in a Global Economy Chapter 8: Developing an Effective Ethics Program.
Quality evaluation and improvement for Internal Audit
CORPORATE COMPLIANCE OVERVIEW David Meisels OSB Corporate Counsel Roundtable April 26, 2012.
Supplier Ethics: Program Checklist
Applying a Systems Approach EPA Regions 9 & 10 and The Federal Network for Sustainability.
Corporate Ethics Compliance *
Building a Compliance Risk Monitoring Program HCCA Compliance Institute New OrleansApril 19, 2005 Lois Dehls Cornell, Esq. Assistant Vice President, Deputy.
Internal Auditing and Outsourcing
Component 2: The Culture of Health Care Unit 3: Health Care Settings— The Places Where Care Is Delivered Lecture 3 This material was developed by Oregon.
Staff Structure Support HCCA Special Interest Group New Regulations: A Strategy for Implementation Sharon Schmid Vice President, Compliance and.
© 2009 The McGraw-Hill Companies, Inc. All rights reserved. 1 McGraw-Hill Chapter 5 HIPAA Enforcement HIPAA for Allied Health Careers.
HIPAA PRIVACY AND SECURITY AWARENESS.
CORPORATE COMPLIANCE Tim Timmons Vice President Compliance and Regulatory Services Health Future, LLC.
Compliance and Quality Bringing It Together for Your Board Kristin Jenkins, J.D., FACHE October 2008.
Colorado Springs Utilities Environmental Services Functional Assessment Presentation for the American Public Power Association’s 2001 Engineering & Operations.
DSDS Quality Assurance Unit State of Alaska, Dept. of Health and Social Services Division of Senior and Disabilities Services (DSDS) Quality Assurance.
Institutional Research Compliance Juliann Tenney, JD Research Compliance and Privacy Officer Director, Institutional Research Compliance Program.
Developing and Implementing an Effective Compliance Program Mary Sacilotto,BA,CHC Chief Compliance Officer Alliance, Inc.
Managing the Privacy Function at a Large Company Kimberly S. Gray, Esq., CIPP Chief Privacy Officer Highmark Inc.
Integrating HIPAA Into Your Compliance Program Fifth Annual National Congress on Health Care Compliance February 7, 2002 Glenna S. Jackson Vice President.
SCHERING-PLOUGH INTERNATIONAL Building an International Compliance Program An Operational Approach Dalton Smart CPA, MBA Schering-Plough International.
1 The Auditor’s Perspective Division of Sponsored Research Research Administration Training Series Presented by: Joe Cannella Audit Manager,
Agency Risk Management & Internal Control Standards (ARMICS)
©2004 Deloitte Development LLC. All rights reserved Pharmaceutical Regulatory and Compliance Congress Compliance Auditing & Monitoring 3.02 Auditing.
CERTIFICATION In the Electronics Recycling Industry © 2007 IAER Web Site - -
Health Care Compliance Association Region VII Compliance Conference August 1, 2003.
The Third Annual Medical Device Regulatory, Reimbursement and Compliance Congress How to establish a Compliance Program that will Minimize the Impact of.
HIPAA Michigan Cancer Registrars Association 2005 Annual Educational Conference Sandy Routhier.
Privacy Project Framework & Structure HIPAA Summit Brent Saunders
ISO GENERAL REQUIREMENTS. ISO Environmental Management Systems 2 Lesson Learning Goals At the end of this lesson you should be able to: 
FleetBoston Financial HIPAA Privacy Compliance Agnes Bundy Scanlan Managing Director and Chief Privacy Officer FleetBoston Financial.
Current Issues in Pharmaceutical and Medical Device Compliance Management Introductory Comments Pharma, Medical Device & Biotech Colloquium June 6, 2005.
Connecting the Dots A Practical Approach to Integrating Compliance, Risk and Quality Jody Ann Noon RN, JD Partner Health Care Regulatory Practice.
Auditing and Monitoring for HIPAA Compliance
Copyright © 2013 by The McGraw-Hill Companies, Inc. All rights reserved.McGraw-Hill/Irwin.
Guidance Training CFR §483.75(i) F501 Medical Director.
How to Operationalize the Guidance In A Pharmaceutical Company OIG Guidance Pharma Audioconference Doug Lankler May 21, 2003.
Agenda for Session Compliance in Clinical Research
Guidance Training (F520) §483.75(o) Quality Assessment and Assurance.
Welcome….!!! CORPORATE COMPLIANCE PROGRAM Presented by The Office of Corporate Integrity 1.
Patrick Sulzberger, CPA, CHC Compliance & The Board A Guide to Excellence.
International Security Management Standards. BS ISO/IEC 17799:2005 BS ISO/IEC 27001:2005 First edition – ISO/IEC 17799:2000 Second edition ISO/IEC 17799:2005.
The Second Annual Medical Device Regulatory, Reimbursement and Compliance Congress Presented by J. Glenn George Thursday, March 29, 2007 Day II – Track.
Chief Compliance Officer
Building A Pharmaceutical Compliance Program Presentation to the Sixth Annual Congress on Health Care Compliance February 7, 2003 Janice Toran Fujisawa.
1 An Overview of Process and Procedures for Health IT Collaboration GSA Office of Citizen Services and Communications Intergovernmental Solutions Division.
0 Due Diligence Monitoring and Auditing of Third Party Vendors October 28, 2008 Pharmaceutical Regulatory and Compliance Congress and Best Practices Forum.
Valiants Verify Compliance Program Judith W. Spain, J.D., CCEP ® Chief Ethics and Compliance Officer General Counsel (Effective March 2016) 1.
Catherine A. Martin Principal Co-Chair - Health Law Department Ober|Kaler Presented by Amy Dilcher Vice President & General Counsel Meritus Health Hagerstown,
Shared Services and Third Party Assurance: Panel May 19, 2016.
HIPAA Privacy Rule Training
Corporate Responsibility
The Most Important Element to Assure That Your Sales and Marketing Compliance Program is Working Effectively: Monitoring and Auditing Kelly B. Freeman,
Privacy Project Framework & Structure
Disability Services Agencies Briefing On HIPAA
Risk Management: why and how to protect your health center
Defining An Effectiveness Standard
HIPAA Policy & Procedure Strategies
HIPAA Security A Quantitative and Qualitative Risk Assessment
Presentation transcript:

Compliance at the Crossroads: How can the Compliance Profession Move to the Second Generation? A Practical Approach to Integrating Compliance, Risk and Quality presented by: Jody Ann Noon RN, JD Partner Health Care Regulatory Practice and William M. Altman Senior Vice President Compliance and Government Programs Kindred Healthcare, Inc.

Overview of Session Quick Review of the History of Compliance Snapshot View of Where Compliance is Today -- At the Crossroads Analysis of possible Roles for Compliance in the Second Generation Review/Discussion of Substantive Examples

History of Compliance (Part One) Federal Sentencing Guidelines Health Care Fraud Prosecutions and Health Care Cost Containment Early Corporate Integrity Agreements (CIAs) OIG Guidance More Extensive CIAs

History of Compliance Part One Summary Health Care Organizations should have a Compliance Program -- so get over it and make sure it meets the basic seven elements A Profession is born

History of Compliance (Part Two) -- The Crossroads Is your Compliance Program effective (whatever that means)? Does your Compliance Program provide added value to the organization? Is your Compliance Program limited to addressing certain narrow compliance topics, or does it address a broad range of topics? If the Government’s focus on health care compliance wanes, what would be the role of Compliance?

The Role of Compliance The effectiveness of Senior Management’s oversight is typically limited because: –Limited linkage between governance and control activities –Existing internal control structures do not address the full range of risks –Key risks are managed by separate groups (e.g., FDA compliance, clinical trials, manufacturing quality) The “missing link” is a compliance program and infrastructure to measure and monitor the effectiveness and alignment between corporate governance and business unit / functional risk management, compliance and quality activities. Compliance

Finance SEC (e.g., Sarbanes) Service Delivery FDA Privacy False Claims CoPs Sales & Marketing Kickbacks Privacy Accounts Receivable False Claims SEC Compliance Traditional Model Quality, compliance and business risks managed by silo - difficult to track all of the moving parts

Quality, compliance and business risks managed in a coordinated manner - easier to see key interrelationships and interdependencies Emerging Model Boar d Chief Compliance Officer Day-to-Day Operations Financial Risk Regulatory Risk Systems/IT Risks Operational Risks

The Compliance Program Design Dilemma Compliance-related risks touch every aspect of the organization’s business & are difficult to “compartmentalize” The design should be based upon the organization’s business structure The design should result in a set of organization-wide compliance processes Medicare Billing Requirements? Privacy? What else?

... Create a Compliance “Crosswalk” Business Process Will be impacted by many regulations Regulations apply to more than one business process Customer Billing Code the claim False Claims The Compliance Program Design Solution...

Step One: Characterize the Organization’s Business Structure Multi-Line Parent Provider Administrative Services Coding & Billing Verify Service Documentation Generate Service Code Bill Third Parties DBA “B”DBA “C”

Step Two: Establish the Standards for Each Risk Area Define the risk areas –Financial –Regulatory –Systems/IT –Operational Define the standards –The criteria for compliance –Groupings for Score Card purposes Cite the authority –Helpful to identify the source –Allows for translation Standard to Operations Operations to Standards

Step Three: Create the Crosswalk Document Services Generate Service Code Bill Responsible Parties Receive And Post Payments Identify the compliance risks associated with each department and business process Coding & Billing

Step Four: Create a Uniform Process for Review Frequency of reviews Scope of the review –Are their policies and procedures for the standard? –Have employees been trained on the policies and procedures? –Is there evidence that the policies and procedures are being followed? Are employees aware of them? Perform audits of certain requirements to evaluate compliance

Step Five: Establish a Uniform Metric How is compliance evaluated? –Points? –Stoplights? What criteria will be used to “score” the finding? –Presence of policies –Presence of SOPs –Employee Education –Employee Awareness –Formal Audits of documentation Sarbanes-Oxley OIG HIPAA

Step Six: Develop the Report Card Admissions Customer Service Marketing Medical Records Privacy Inducements By Department By Risk Area Privacy Privacy Notice Employee Training Complaints Employee Discipline Authorizations Minimum Necessary Access to Records Amendment of Records Confidential Communications Facility Directory Business Associate Agreements This allows the organization to identify areas of overlap and areas upon which to focus its efforts

The Compliance Documentation Process Standards –Each area of risk has a defined set of standards Gap Assessment –Policies and SOPs are compared to the standards –Implementation of policies and SOPs is assessed via observation, surveys, focus groups and interviews Findings –The standards are summarized in a Score Card or Status Board –The findings following a review are summarized on a dashboard –The Findings can be placed into a database or knowledge management system for easy reference and reporting Corrective Action Plans –Allow for documentation of specific findings Ongoing Audit Protocol –Utilize the baseline assessment to establish audit metrics and protocol

The Key to Compliance is Taking reasonable steps to comply with the regulations. Reasonable compliance can be demonstrated through a thoughtful and well-organized compliance program.

Examples of Substantive “Second Generation” Compliance Issues Legal vs. Compliance vs. Ethical Issues Does Compliance have a role on issues central to the organization’s success? –Quality of Care/Patient Safety –Risk Management (Clinical and Financial) –Corporate Accountability –Organizational Excellence Can Compliance prove its value to the organization beyond regulatory compliance? Compliance as Public Relations, Government Relations, and Policy Making

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.