Georgia's Trusted Healthcare
& Medical Provider Attorneys

Archives for May 2014

Healthcare Fraud: What To Do If You’re Audited

healthcare fraudOver the past several years, we’ve seen a trend in increased investigations and enforcement of healthcare fraud. This trend continued in 2013 and is continuing in 2014. Nationally, in 2013, the United States Attorney’s Office investigated 1,013 new criminal matters involving healthcare fraud and filed charges in 480 of these cases. In Georgia, in 2013, there were 336 Medicaid Fraud Investigations.  Of those investigations, only 13 led to indictment; but of those 13 indicted, 10 resulted in convictions. Given this trend, if you are a healthcare provider, it is vital to know what to do if you find yourself being investigated for fraud.   Following are some important  steps to follow if the government shows up at your door with a search warrant: —  Immediately call your attorney. Do not pass go. Call.  It is crucial to call an attorney who has experience in both health care law and in defense. —  Ask for identification of the people at your door. Review the credentials or business card. Write down the name and contact information. —  Do NOT destroy, alter or remove any documents. —  Be polite. Remain calm. Be cooperative. Say please and thank you. —  Ask for a copy of the search warrant and any affidavit filed in support of the warrant. —  Ask what crime and conduct is under investigation. —  Request that no interviews be conducted until your attorney arrives. —  Immediately advise all supervisory personnel of the search and that they are to wait for the attorney to arrive before answering any questions. —  Compile an inventory of all the documents being removed and ask if you can copy all the documents being seized – this includes making a back up disk for all computer files —  Make a record of everything said by an investigating officer. If you cannot do this during the search, write up your recollection after the search —  If possible, videotape or photograph the search —  DO NOT speak with the press Jeyaram & Associates has helped numerous organizations facing charges of healthcare fraud. To learn more or for assistance, contact Kimberly Sheridan at

More Providers Audited for HIPAA Compliance – Are You Ready?

The number of entities audited for HIPAA compliance has increased. Are you prepared if OCR comes knocking on your door?

Under the HITECH Act, the Department of Health and Human Services is required to conduct periodic audits to ensure that entities are complying with HIPAA. Phase 1 audits concluded in 2012. Now OCR has released information on Phase 2 and more audits are set to begin around October of this year.

HIPAA Covered Entities and Business Associates selected for audits will be asked to quickly produce policies and procedures, executed business associate agreements and other HIPAA-related documentation so that it can be reviewed by OCR to determine if any deficiencies exist. OCR has noted that it intends to focus on the deficiencies identified through Phase 1 audits. These include lack of proper policies and procedures, presence of security risks, failing to conduct a security risk assessment, and failing to have business associate agreements on file.

Small providers should also take note—according to OCR, small providers tended to have more deficiencies than larger providers. OCR has also revealed other details regarding the 2nd audits, OCR will be conducting the audits internally. They have also increased the number of entities to be audited to 400 entities, 350 of which will be Covered Entities and the remaining 50 will be Business Associates. Some of the audits will focus on the Privacy Rule, others on the Breach Notification Rule, and the remainder will focus on compliance with the Security Rule.

If your organization is a covered entity or business associate under HIPAA you want to make sure that you are prepared in case you are one of the entities subject to an audit this Fall. Steps you will want to take include:

  • Have all your HIPAA policies and procedure updated and on file
  • Make sure all your Business Associate Agreements reflect the 2013 changes to the HIPAA Rules and have those agreements properly executed and on file
  • Conduct a security risk assessment if you have not already and ensure that security risks are addressed
  • Engage an experienced healthcare law firm to proactively help you review the aforementioned items to help you identify any potential deficiencies

To view OCR’s Presentation on Phase 2 Audits, click here: OCR Audits Phase 2 by Linda Sanches, Senior Advisor for Health Information 

For more information contact DJ Jeyaram at or Danielle Hildebrand at