Health Plan Identifier ( HPID ) Requirements. By Larry Grudzien Attorney at Law

Similar documents
Self Insured Plans: Instructions for Reinsurance Contributions and Obtaining a HPID

CAQH CORE Open Call Initial Observations and Areas for Potential Comment on Proposed HHS Rule for Administrative Simplification:

National Health Plan Identifier (HPID) The Who, What When, Where, and Why of HPID & OEID. The Basic Principles of the 5Ws. What:

Agenda. Play or Pay: Whether & When Decision Tree. HEALTH CARE REFORM (HCR) Latest Changes, New Requirements, Play or Pay Quick Review Special Delays

INTERMEDIATE ADMINISTRATIVE SIMPLIFICATION CENTERS FOR MEDICARE & MEDICAID SERVICES. Online Guide to: ADMINISTRATIVE SIMPLIFICATION

2016 Compliance Checklist

Eligibility and Claim Status Operating Rules and HPID (Health Plan ID)

Understanding the Administrative Simplification Provisions of the PPACA

2015 Heath Care Reform Compliance Overview

Do You Want To Know A Secret? HIPAA s Medical Privacy Regulations

Affordable Care Act Update: Employer Reporting Requirements

Reporting and Plan Documents under ERISA and Cafeteria Plan Rules

DEPARTMENT OF HEALTH AND HUMAN SERVICES. Administrative Simplification: Adoption of a Standard for a Unique Health Plan

Reporting Requirements FAQs

PPACA A Year End Review

SBAM Health & Welfare Benefits Compliance Checklist Including ERISA, ACA, Section 125, HIPAA, and other applicable federal statutes and regulations

ERISA Requirements for Employee Welfare Benefit Plans. Presented By: Judy Griffith Kegel Kelin Almy & Lord LLP

HIPAA Electronic Transactions & Code Sets

Cafeteria Plan Developments

Affordable Care Act Toolkit

Key Elements of Health Care Reform for Employers

NCVHS. May 15, Dear Madam Secretary,

Healthcare Reform for Small Employers Presented by: Larry Grudzien

CLICK HERE to return to the home page

ERISA Compliance: Wrap Plan Document and Form 5500 Filing Requirements

ERISA Compliance: Wrap Plans and Form 5500 Filing

By Larry Grudzien Attorney at Law

Reporting Requirements for Employers and Health Plans

It is the sweet, simple things in life which are the real ones after all.. CPAHU October CE Meeting

New Federal Legislation Affecting Health Plans

TRANSACTION STANDARD TRADING PARTNER AGREEMENT/ADDENDUM

Update: Electronic Transactions, HIPAA, and Medicare Reimbursement

Debbi Meisner, VP Regulatory Strategy

Reinsurance Fees Examples of Counting Methods

CLIENT INFORMATION FORM HEALTH REIMBURSEMENT ARRANGEMENTS

Microbusiness Quick Start Guide

ERISA FAQs. What Is ERISA? What Employers are Subject to ERISA? Why Should an Employer Comply With ERISA? Which Benefit Plans are ERISA Plans?

2017 Year-end Review & Reminders

HealtH Care reform 2012 and beyond

Compliance Alert. Final Regulations on Excepted Benefits Issued

HIPAA Privacy and Security for Employers in the Age of Common Data Breaches. April 30, 2015

HHS Proposes $63 Transitional Reinsurance Fee for Group Health Plans in 2014

Updated February 2017

Chapter 19 Section 2. Health Insurance Portability And Accountability Act (HIPAA) Standards For Electronic Transactions

CLIENT INFORMATION FORM FLEXIBLE SPENDING ACCOUNTS & HEALTH REIMBURSEMENT ARRANGEMENTS

COVERED ENTITY CHARTS

Health and Welfare Plan Compliance Checklist

Compliance for Health & Welfare Plans

Compliance Department March 2017

Defined Contribution What s Legal, What s Not?

HIPAA Privacy Compliance Checklist

ChoiceNet/InterCare Health Plans Getting Your Arms Around HIPAA Compliance

Pennsylvania Association of Health Underwriters Advisors and Advocates for Employers, Employees and Health Care Consumers

CURES ACT QSEHRA Q&A

Benefits Compliance Update

Covered Entity Guidance

Office of ehealth Standards and Services Update: An Overview of Priorities and Key initiatives

EVENT How to TITLE Prepare for 2015 Health Care Reform Challenges

HIPAA Portability Common Questions

Effective June 3rd, 2019, Virginia Premier will reject paper claims submitted with incomplete information for required fields.

QUESTIONS AND ANSWERS: NEW IRS REQUIREMENTS FOR EMPLOYERS

Health Care Reform Checklist

Employee Benefits Compliance Checklist for Large Employers

Introduction Notice and Disclosure Requirements Plan Design and Coverage Issues: Prior to

CLAIMS Section 6. Provider Service Center. Timely Claim Submission. Clean Claim. Prompt Payment

(a) Is created by or received from a health care provider, health plan, employer, or health care clearinghouse; and

Date: NOTE: Once you have printed the form please discard this sheet, DO NOT send this sheet with the paperwork.

HIPAA Administrative Simplification Provisions

Patient Protection and Affordable Care Act

Health Care Reform: Legislative Brief Important Effective Dates for Employers and Health Plans

Health Reimbursement Arrangement

Date(s) Requirement Details Prepare Your Company Date Completed

First Choice Health PAYOR MANUAL

Everything a health subrogation professional needs to know about Form 5500

Benefits Leader Your Guide to Health & Welfare Compliance

4/13/16. Provided by: Zywave W. Innovation Drive, Suite 300 Milwaukee, WI

HIPAA Transactions: Requirements, Opportunities and Operational Challenges HIPAA SUMMIT WEST

2015 Employer Compliance Checklist

Affordable Care ACT. What you Need to Know. Presented by Rachel Cutler Shim

Magellan Claims Settlement Practices and Dispute Resolution Notice to Providers Contracted with California Subsidiaries of Magellan Health, Inc.

Affordable Care Act: Evolving Requirements & Compliance Implications

Employee Benefits Compliance Checklist for Large Employers

Sample Topic. Awesome Content. Awesome Content. Sample image. Supporting material. Supporting material

CORE Phase I Policies and Operating Rules Approved April 2006 v5010 Update March 2011

Fairbanks North Star Borough School District

Montgomery County Medical Society

Common COBRA Mistakes & How to Fix Them Webinar. By Larry Grudzien Attorney at Law

Frequently Asked Questions 2015 Annual Enrollment (Agents and Non-Agents)

Wyoming Medicaid EDI Application

Proposed Form 5500 Changes and Implications for H&W Plans

HIPAA 5010 Webinar Questions and Answer Session

ERISA and ACA Compliance NAVIGATING THE COMPLIANCE MINEFIELD

FLEXIBLE SPENDING ACCOUNT (FSA) PLAN DESIGN GUIDE

American Bar Association. Technical Session Between the Centers for Medicare and Medicaid Services and the Joint Committee on Employee Benefits

Claim Submission. Molina Healthcare of Florida Inc. Marketplace Provider Manual

ERISA Compliance FAQs: Reporting and Disclosure Rules

Comparison of Healthcare Reimbursement Programs

2018 Compliance Checklist

HIPAA Glossary of Terms

September 6, Submitted electronically via to

Transcription:

Health Plan Identifier ( HPID ) Requirements By Larry Grudzien Attorney at Law 1

Agenda Introduction HIPAA Standard Transactions Rules Health Plan Identifier (HPID) Certification of Compliance with Standard Transactions Rules Action Plan 2

Introduction Under the original HIPAA administrative simplification statute, which included privacy and security requirements, covered entities were required to conduct certain transactions electronically using standards and code sets designated by the HHS. The Affordable Care Act (ACA) added new requirements to these Transaction Rules, including more detailed operating rules and a new electronic transaction requirement for electronic funds transfer (EFT). The ACA also required HHS to issue rules for a national Health Plan Identifier number and a new requirement for health plans to certify compliance with all of these Transaction Rules. 3

Introduction For the most part, health plans typically look to their business associates to handle these standard transactions responsibilities for them. In fact, many TPA agreements and business associate agreements expressly require the business associate to conduct any applicable transactions as standard transactions. Alternatively, if a health plan does conduct transactions of its own, it usually hires a clearinghouse to convert the required information into standard format. 4

Introduction Some of these new rules, however, place responsibilities directly on the health plan, even if it normally looks to a third party to conduct its standard transactions. For example, the health plan must register for its own Health Plan Identifier number to be used in standard transactions. And most recently, under proposed rules issued by HHS in January, the health plan must obtain a certification that its standard transactions are being conducted under the required Transaction Rules - even for transactions conducted by its business associates. 5

Introduction Under the proposed rules, by December 31, 2015, health plans will be required to obtain the certification from an outside organization and then file an attestation with HHS that it has obtained the necessary certification. Plans may be penalized $1 per covered life per day (up to a maximum cap) for failure to file the required certification. 6

HIPAA Standard Transaction Rules On August 17, 2000, HHS published final regulations adopting the original HIPAA standard transactions, which, after a delay, were effective for most plans as of October 16, 2003. The Transaction Rules require that if a health plan covered entity, as defined under the HIPAA privacy rules, conducts certain standard transactions with another covered entity using electronic media, the two covered entities must use standards and code sets designated by HHS. 7

HIPAA Standard Transaction Rules These standards and code sets establish which data must be provided and fields that must be used when transmitting electronic information. In addition, the Transaction Rules provide that if any entity requests a health plan covered entity to conduct one of the listed transactions as a standard transaction, the health plan must do so and may not delay or reject the transaction because it is standard transaction. 8

HIPAA Standard Transaction Rules What is a health plan for these purposes? Group health plans Dental and Vision Plans Health FSAs Health Reimbursement Arrangements (HRAs) HSAs subject to ERISA Individual Policies Some Employee Assistance Plans (EAPs) Retiree Health Plans Which plans are excluded? Health Plans With Fewer Than 50 Participants That Are Administered by the Sponsoring Employer Are Excluded. 9

HIPAA Standard Transaction Rules The list of transactions to which these rules apply are: Claims & Encounter Information Request from provider to plan to obtain payment or information. Eligibility Transmission from provider to plan, or plan to plan and their responses related to eligibility, coverage, or benefits under the plan. Authorization & Referrals Request for authorization for health care or to refer to another provider and response. Claim Status Inquiry about status. Enrollment & Disenrollment Transfer of subscriber information to plan to establish or terminate coverage. 10

HIPAA Standard Transaction Rules The list of transactions to which these rules apply are: Payment Payment or information about fund transfer from plan to provider s financial institution; or EOB or remittance advice from plan to provider. Premium Payments Information about payment, fund transfer, remittance, or payment processing from entity arranging provision of care. Coordination of Benefits Transfer of claims or payment information to plan for purpose of determining relative payment responsibility. 11

New ACA Requirement: New EFT / Remittance Advice Transaction The ACA mandated that HHS adopt a new transaction to add to the list above for electronic funds transfers (EFTs). HHS issued a final rule adopting the EFT transaction on January 10, 2012. 12

New ACA Requirement: New EFT/ Remittance Advice Transaction The new EFT / Remittance Advice transaction replaces the Payment transaction in the previous slides and is defined as: Electronic Funds Transactions Transmission of any of the following from a health plan to a health care provider: payment, information about the transfer of funds, and payment-processing information. Remittance Advice Transmission of any of the following from a health plan to a health care provider: an explanation of benefits or a remittance advice. Covered entities were required to comply with the new EFT/ Remittance Advice transaction by January 1, 2014. 13

New ACA Requirement: Health Plan Identifier (HPID) The original HIPAA administrative simplification statute, enacted in 1996, required HHS to adopt an identifier system for employers, health care providers, health plans, and individuals. The intent was to have the same identifiers on a national basis so that all electronic transmissions of health information would be uniform. 14

New ACA Requirement: Health Plan Identifier (HPID) HHS has adopted rules for the employer and health care provider identifier programs, but had not adopted the health plan identifier or individual identifier. The ACA again mandated that HHS issue rules adopting the health plan identifier. 15

New ACA Requirement: Health Plan Identifier (HPID) The HPID rules introduce two new terms for defining health plans, which also are used in the new certification rules. Controlling Health Plan (CHP) means a health plan that controls its own business activities, actions, or policies. Subhealth Plan (SHP) means a health plan whose business activities, actions, or policies are directed by a Controlling Health Plan. 16

New ACA Requirement: Health Plan Identifier (HPID) Who Must Obtain an HPID? CMS has issued FAQ guidance and a quick reference guide explaining the requirement and the process for health plans to obtain health plan identifiers (HPIDs). Fully Insured Health Plans. Based on their control over fully insured health plans, insurers are treated as offering CHPs, and the discrete employer plans are SHPs. Thus, the insurer is required to obtain an HPID for fully insured plans, and employers may, but are not required to, obtain HPIDs for their SHPs. 17

New ACA Requirement: Health Plan Who Must Obtain an HPID? Self-Insured Health Plans. Identifier (HPID) A self-insured health plan must obtain an HPID if it: meets the definition of health plan because it provides or pays the cost of medical care; and is a CHP. The FAQs note that a self-insured health plan that is a CHP must obtain an HPID even if it does not conduct standard transactions (e.g., if it uses a TPA to conduct standard transactions on its behalf). A self-insured health plan may authorize a TPA or other person to obtain an HPID on the health plan s behalf, but the HPID still belongs to the health plan Most self-insured plans providing medical care are controlled by the plan sponsor and will fit within the literal definition of a CHP; employers with multiple selfinsured plans may want to consider whether one could serve as a CHP for the others. 18

New ACA Requirement: Health Plan Identifier (HPID) Who Must Obtain an HPID? Health FSAs, HSAs, and HRAs. As individual accounts directed by the consumer, health FSAs and HSAs are not required to obtain HPIDs. HRAs are not required to obtain HPIDs if they are limited to reimbursing deductibles and out-of-pocket costs. The scope of the HRA exemption is less clear It is assumed that the reference to out-of-pocket costs includes cost-sharing amounts (such as deductibles, co-insurance, and co-pays) for covered services under a health plan. An HRA that reimburses noncovered services (such as acupuncture or Lasik) apparently would not qualify for this exemption. 19

New ACA Requirement: Health Plan Who Must Obtain an HPID? Small Health Plans. Identifier (HPID) The FAQs include a reminder that CHPs must obtain HPIDs by November 5, 2014, but small CHPs (those reporting annual receipts of $5 million or less to the IRS) have an additional year to comply. Since most ERISA health plans do not report annual receipts to the IRS, the FAQs provide alternative measures: Fully insured health plans should use the total premiums paid during the plan s last full fiscal year; and self-insured plans, both funded and unfunded, should use the total amount paid for health care claims by the employer, plan sponsor, or benefit fund, on behalf of the plan during the plan s last full fiscal year. Plans providing benefits through a mix of purchased insurance and self-insurance should combine these measures to determine their total annual receipts. 20

New ACA Requirement: Health Plan Who Must Obtain an HPID? Identifier (HPID) For example, if an employer has one self-funded medical plan for active employees, a separate self-funded plan for early retirees, and a separate self-funded dental plan, each plan would have to obtain a separate HPID, unless one plan is designated as the CHP and it applies for one HPID on behalf of itself and the other self-funded plans. Plan sponsors must go on the CMS portal themselves and obtain an HPID. Third-party administrators (TPAs) cannot obtain an HPID for selffunded health plans. 21

New ACA Requirement: Health Plan Identifier (HPID) In addition to HPIDs, the final regulations create an other entity identifier (OEID) for non-health plan entities such as TPAs, repricers, and health care clearinghouses, that may need to be identified in standard transactions as the actual recipient of eligibility inquiries or claims on behalf of a health plan. An entity is eligible to obtain an OEID if the entity (1) needs to be identified in transaction for which a standard has been adopted by HHS; (2) is not eligible to obtain an HPID or NPI; and (3) is not an individual. 22

New ACA Requirement: Health Plan Identifier (HPID) Large health plans must obtain an HPID by November 5, 2014. Small health plans with $5 million or less in annual receipts have an additional year to obtain an HPID i.e., their deadline is November 5, 2015. All health plans (regardless of size) must use the HPID in standard transactions beginning November 7, 2016. The regulations refer to this last date as the full implementation date. 23

New ACA Requirement: Health Plan Identifier (HPID) Where an employer has a wrap welfare plan that includes more than one health benefit option, these rules appear to allow the wrap plan to apply for one HPID on behalf of all of the Subhealth Plans or to allow each health plan option (i.e., each Subhealth Plan) to obtain its own HPID. This structure is similar to the plan number required on the Form 5500. Plans may file separate 5500s with separate plan numbers for each health benefit option, or may combine into one 5500 with one plan number. 24

New ACA Requirement: Health Plan Identifier (HPID) Once a health plan has an HPID, any covered entity that identifies the health plan in a standard transaction must use the appropriate HPID number, rather than another identifier. In addition, covered entities must require business associates to use the appropriate HPID number when they conduct standard transactions on behalf of a covered entity. 25

New ACA Requirement: Health Plan Identifier (HPID) HHS has established a website where health plans can register and obtain their HPID. There are a series of screens the plan must walk through to provide information about the plan sponsor and plan. See http://www.cms.gov/regulations-and- Guidance/HIPAA-Administrative- Simplification/Affordable-Care-Act/Health-Plan- Identifier.html. 26

New ACA Requirement: Health Plan Identifier (HPID) A national enumeration system assigns unique HPIDs to eligible health plans and OEIDs to eligible other entities, respectively, through an online application process. Access to the enumeration system to obtain HIPDs and OEIDs was made available on March 29, 2014. A new user of the application portal must first register by providing required identifying information and creating a user ID and password. After registering and logging in, the user must accept the terms and conditions of use of the website, then request application access. Further steps are required to gain access to the Health Insurance Oversight System and the HPID and OEID applications. 27

New ACA Requirement: Health Plan Identifier (HPID) The enumeration system collects and maintains certain identifying and administrative information about CHPs, SHPs, and other entities. The enumeration system also disseminates information through a publicly available searchable database or through downloadable files. Both the HPID and OEID are 10-digit numbers. The first digit distinguishes between HPIDs and OEIDs. The last digit is a check-digit to identify erroneous or invalid IDs. 28

New ACA Requirement: Certification of Compliance with Standard Transactions Rules The ACA mandates that health plans must file two onetime certifications with HHS attesting that the plan is in compliance with the applicable standard transaction requirements. The ACA imposes a penalty on noncompliant plans of $1 per covered life per day until certification is complete with a maximum penalty of $20 per covered life. The ACA also imposes a penalty of up to $40 per covered life if the plan knowingly provides inaccurate or incomplete information. 29

New ACA Requirement: Certification of Compliance with Standard Transactions Rules The ACA breaks down the certification into two parts: First Certification - The ACA required the First Certification by December 31, 2013, but new proposed rules issued in January 2014 delay the requirement until December 31, 2015. This certification requires health plans to file an attestation with HHS to demonstrate compliance with the following standard transactions: Eligibility, Claim status, and EFT & Remittance Advice. 30

New ACA Requirement: Certification of Compliance with Standard Transactions Rules The ACA breaks down the certification into two parts: Second Certification Under the ACA, the Second Certification also is due 12/31/15, but no regulations have been issued yet, so this certification may be delayed. This certification requires health plans to file an attestation with HHS to demonstrate compliance with the following standard transactions: Claims & Encounter Information, Enrollment and Disenrollment, Premium Payments, Claims Attachments, and Authorization & Referrals. 31

First Certification Requirement The First Certification of Compliance would be required for controlling health plans (CHPs), which would report on their own behalf as well as on behalf of their subhealth plans (SHPs). CHPs would have to provide a single submission that includes their number of covered lives, as defined in the regulations, as of the date of submission of the certification; and documentation demonstrating that the CHP has obtained either of two permissible certifications of compliance the HIPAA Credential or the CAQH CORE Phase III CORE Seal. 32

First Certification Requirement The submission requirements are a snap shot of a CHP s compliance with the standards and operating rules. HHS stated that it does not intend for the information or documentation to be updated or resubmitted on a regular basis suggesting that this will be a one-time filing requirement. 33

First Certification Requirement Two different methods (both administered by CAQH CORE, the same independent organization that developed the operating rules) to document the First Certification of Compliance the HIPAA Credential and the Phase III CORE Seal. HHS believes either option is a reasonable approach and there may be any number of reasons why a CHP may elect one alternative over the other. 34

First Certification Requirement HIPAA Credential CAQH CORE is still in the process of developing the HIPAA Credential, which is expected to be finalized before final regulations are issued. The key characteristics of the HIPAA Credential are Attestation that the CHP has successfully tested the operating rules for each of the First Certification Transactions with at least 3 (and up to 25) trading partners accounting for at least 30% of the total number of transactions conducted with trading partners; Flexibility of external testing unlike the Phase III CORE Seal, a specific approach to external testing is not required; Provision of contact information, including, but not limited to, name, phone number, and email address, for each of the listed trading partners; and Certification, evidenced by the signature of a senior-level executive, that the plan complies with HIPAA's security, privacy, and transaction standards. 35

First Certification Requirement Phase III CORE Seal The following four-step process for obtaining a CORE Seal: conducting a gap analysis by evaluating, planning, and completing necessary system upgrades; signing and submitting a pledge to become CORE-certified; conducting testing through a CORE-authorized testing vendor; and applying for a CORE Seal by submitting the proper documentation and fee. 36

First Certification Requirement Phase III CORE Seal Unlike the HIPAA Credential, the Phase III CORE Seal specifies the testing process, requiring testing through a CORE-authorized testing vendor using CORE Certification Master Test Suites. Test Scripts, which include a description of the requirements for each operating rule and specific documentation or information necessary to demonstrate compliance with each of the requirements, are the primary tools for each Test Suite. As with the HIPAA Credential, the plan must submit the CAQH CORE HIPAA Attestation Form, signed by a senior-level executive, indicating, to the best of the applicant s knowledge, that the entity is HIPAA-compliant for security, privacy, and the transaction standards. 37

First Certification Requirement Covered lives HHS states in the preamble to the proposed regulations that it needs to know the number of covered lives of a CHP (including the number of covered lives of its SHPs) in case it needs to assess penalties for failure to complete the certification. The proposed regulations define covered lives to mean all individuals covered by or enrolled in major medical policies of a CHP (which would include SHPs), including the subscriber and any dependents covered by the plan. Individuals who are eligible but not enrolled would not be counted. The proposed regulations define major medical policy to mean an insurance policy that covers accident and sickness and provides outpatient, hospital, medical, and surgical expense coverage. 38

Action Items Employers who conduct standard transactions as part of their plan's administration functions must comply with the EDI Standards. Health Plans must monitor new transaction standards and operating rules to ensure continued compliance. 39

Action Items Employers must verify identified all business associates involved with standard transactions and review all business associate contracts for EDI requirements so they can be incompliance. Health plans will be out of compliance with these rules if its business associates do not comply with these standards when conducting covered transactions. Health plans will rely on business associates to implement the requirements of the rules. Employer must document and monitor the obligations of business associates. 40

Action Items Employers must determine if vendors will continue to accept nonstandard transmissions from an employer/plan sponsor and whether any additional charges will be incurred for data that are received and processed in nonstandard format. If vendors require the standard format is required and the employer/plan sponsor is not prepared to comply, they must make other arrangements with a health care clearinghouse. 41

Action Items Employer should obtain an HPID of its Health plans by November 5, 2014 or 2015. Employers will need to identify CHPs and SHPs. They will need to decide whether the CHP will request a single HPID for itself and all its SHPs, or whether the SHPs will have their own HPIDs. Employers will need to communicate their HPIDs to their business associates in conducting standard transactions. 42

Action Items Employers must review the rules for certifying that the health plan's data and information systems are in compliance with any applicable standards and operating rules. 43

Action Items Business associates should review the rules for the EDI Standards and determine if they have implications for their business operations. TPAs should consider whether to obtain OEIDs. Employers may require TPAs to use OEIDs. TPAs must implement the operating rules as they become effective, which requires advance planning and resource allocation. 44

Questions??????????? 45

Contact Information Larry Grudzien, Attorney at Law Phone: 708-717-9638 Email: larry@larrygrudzien.com Website: www.larrygrudzien.com 46

2024 © financedocbox.com Privacy Policy | Terms of Service | Feedback