Resources

Client Alerts, News Articles, Blog Posts, & Multimedia

Everything you need to know about BMD and the industry.

DOJ Updates Corporate Compliance Plan Guidance

Client Alert
June 18, 2020

With the passage of the Affordable Care Act in 2010, all healthcare providers were required to adopt and implement a corporate compliance plan. Historically, having an effective corporate compliance plan in place has been key to defending healthcare providers in fraud and abuse actions by Medicare, Medicaid, and commercial payers. Over the past couple of years, the U.S. Department of Justice’s (DOJ) Criminal Division has increased the number of prosecutions against U.S. corporations, including healthcare providers. Earlier this month, the DOJ’s Criminal Division updated its “Evaluation of Corporate Compliance Programs” guidance to educate prosecutors on how a corporate compliance program will be evaluated going forward. https://www.justice.gov/criminal-fraud/page/file/937501/download

If a healthcare provider is able to actively demonstrate its commitment to a culture of compliance as reflected in a comprehensive program, an Assistant U.S. Attorney (hereinafter “AUSA”) may elect to not file charges and/or may seek reduced charges. Regardless if an AUSA does bring formal charges, the new guidance allows a federal judge to impose a reduced sentence. Now, more than ever, it’s critically important that healthcare providers have an effective compliance program in place as it materially affects the penalties imposed for healthcare fraud and abuse violations. Having an effective compliance program can mean the difference in whether criminal charges are brought (which could result in prison time or large fines).

The June 2020 update from the DOJ covers a variety of specific topics, but essentially focuses on three questions in relation to an organization’s compliance program: 

  1. Is the compliance program well designed?
  2. Is the program applied earnestly and in good faith?
  3. Does the program work in practice?

In other words, an effective compliance plan must be a “living, breathing document” and not just a generic set of policies and procedures that is left forgotten on a shelf or computer system. 

A successful compliance program should focus on the provider’s internal compliance training program. The DOJ described an appropriately tailored training as “the hallmark of a well-designed compliance program” and periodic training helps to ensure that a compliance program is integrated into the organization. Relevant employees, as well as, senior managers (and in some situations, agents and business partners) should have training provided by the company regularly so that they may properly communicate and implement compliance policies and procedures. Furthermore, the organization must pay special attention to providing employees with the tools in which to seek assistance and/or respond to any potential compliance issues.

Throughout the update, the DOJ identifies specific areas where AUSA’s should focus in their determination of whether a compliance program is well-designed, earnestly implemented and effective. Two of these areas assist providers in designing, implementing and improving their compliance-based programs.

  1. Risk-Bask Training

Providers are expected to conduct an in-depth analysis of which employees require training and on what subjects. The organization should provide tailored trainings which reflect the specific risks in the work environment. Any employee who works in a high-risk role, has been involved in prior misconduct, or is senior management should receive ongoing trainings. 

  1. Form/Content/Effectiveness of Training

AUSA’s will not be impressed by merely having a program designed. They will instead focus on the form in which the training is being provided, including who is presenting the trainings. Real-world compliance lapses and testing by companies should be frequent.

The attorneys of Brennan, Manna & Diamond’s healthcare team are available to assist healthcare providers in drafting, implementing and improving their corporate compliance programs, trainings, and implementation processes.  Please contact Jeana Singleton at jmsingleton@bmdllc.com or 330-253-2001, Richard Crosby at rlcrosby@bmdpl.com or 614-246-7500, or your BMD healthcare attorney for more information. 

DOJDepartment of JusticeHealthcare ProvidersComplianceCompliance Planrisk-bask trainingeffectiveness of trainingAUSACompliance Programcompliance plan guidanceevaluation of corporate compliance programhealthcare fraud and abusehealthcare abuse violationhealthcare fraud violationmedicaremedicaidcommercial payersBMD Attorney Richard CrosbyJeana Singleton
Client Alert

RNs and APRNs Take Note: Ohio Board of Nursing Mandates a New CE Reporting Period

April 29, 2026Ohio’s Board of Nursing has updated the continuing education reporting period for RNs and APRNs. Beginning March 26, 2026, CE credits must be completed between July 1 and June 30 of odd-numbered years, replacing the previous November to October timeframe.Client Alert

Ohio Med Spas: Peptide Do's and Do Not's

April 29, 2026Recent guidance from the Ohio Board of Pharmacy outlines key compliance requirements for med spas using peptides. While some peptide drugs are FDA approved, others are not or cannot be compounded. Med spa operators should ensure they source medications from licensed suppliers, avoid non-approved or “research use only” products, and follow all compounding and storage regulations to maintain compliance and avoid enforcement actions.Client Alert

Substance Use Disorder Providers: 42 CFR Part 2 Now Enforceable

April 15, 2026Updates to 42 CFR Part 2 are now enforceable, bringing significant changes to how substance use disorder (SUD) records are handled. The Final Rule aligns Part 2 more closely with HIPAA, introduces updated penalties, allows a single patient consent for treatment, payment, and operations, and adds new requirements for Notices of Privacy Practices. It also creates a formal definition of SUD counseling notes and imposes strict consent requirements for their use and disclosure. Providers should review and update policies to ensure compliance.Client Alert

AAA Introduces AI-Assisted Arbitrator for Certain Disputes

April 7, 2026The American Arbitration Association has introduced an AI-assisted arbitration platform designed to streamline certain document-based disputes. While a human arbitrator still makes the final decision, the technology can improve efficiency, reduce costs, and accelerate case resolution. Companies should weigh these benefits against considerations such as transparency, risk, and contractual requirements before adopting AI-assisted arbitration.Client Alert

Quiet Hours Texts and TCPA Claims: Consent Remains King as Courts Divide on Text Messages

March 31, 2026Businesses face increasing TCPA lawsuits over off-hours marketing texts, but recent court decisions highlight strong defenses. Clear consumer consent and updated terms and conditions can defeat many claims, while a growing number of courts are finding that text messages are not “telephone calls” under the statute. Proactive compliance measures, including clickwrap agreements and forum-selection clauses, are critical to reducing risk.
Older posts