Civil Monetary Penalties (CMP) for Employing Excluded Individuals in Healthcare

Exclusion Authority by Office of Inspector General

The Office of Inspector General (OIG) has authority to impose a Federal Health Care Program Exclusion on individuals and entities that engage in misconduct such as Medicare and Medicaid Fraud, patient abuse or neglect, kickbacks, or certain licensing actions. Excluded parties are listed on the List of Excluded Individuals/Entities (LEIE), the OIG’s public registry you must consult when making hiring, privileging, contracting, and referral decisions.

Once excluded, a person or entity may not furnish, order, or prescribe items or services that are payable—directly or indirectly—by a federal health care program. Claims linked to an excluded individual become non-payable and expose your organization to recovery actions and sanctions, even if the person worked in a nonclinical or back‑office role that contributed to billable services.

Providers carry an Affirmative Duty to Verify Exclusion Status for their workforce and contractors as part of core Exclusion Screening Requirements. Routine checks of the LEIE and prompt response to potential matches are essential to prevent tainted claims and downstream liability.

Civil Monetary Penalty Provisions

The Civil Monetary Penalties Law authorizes the OIG to impose civil monetary penalties, assessments, and other remedies when you employ or contract with an excluded person to provide items or services that federal health care programs pay for. Liability can arise for presenting—or causing to be presented—claims tied to services furnished, ordered, or prescribed by an excluded individual.

The standard is not limited to actual knowledge. If you knew or should have known about exclusion, you can face CMP exposure. Paying an excluded person with non-federal funds does not cure the violation when their work contributes to services billed to federal programs.

Consequences can include per‑item or per‑service penalties, assessments based on the amounts paid by programs, potential program exclusion of the provider, and compliance obligations that follow OIG Enforcement Actions. The OIG also considers aggravating and mitigating factors such as duration, dollar impact, cooperation, and self‑disclosure.

Liability for Healthcare Providers

Hospitals, physician practices, pharmacies, laboratories, DME suppliers, home health agencies, behavioral health providers, managed care organizations, and telehealth platforms all face risk. Liability extends to agents and contractors, including staffing firms, billing companies, revenue cycle vendors, and medical directors.

Risk‑creating activities include employing, contracting with, privileging, or accepting orders and prescriptions from excluded persons. Both direct patient care and “behind‑the‑scenes” roles—such as coding, billing, utilization review, or leadership that steers claim‑generating operations—can trigger CMP exposure when they contribute to items or services reimbursed by federal programs.

To meet Exclusion Screening Requirements and your Affirmative Duty to Verify Exclusion Status, you should screen all employees, medical staff, contractors, owners, board members, volunteers, and students who may impact federally reimbursable services. If you discover an exclusion after onboarding, immediately remove the individual from federal program work, perform a claim lookback, quantify exposure, consider self‑disclosure, and implement corrective actions.

Enforcement Case Studies

Example 1: Back‑office function creates tainted claims

A multispecialty group unknowingly retained an excluded billing supervisor. Although the person never treated patients, their work directed claim submission. After internal auditing flagged the issue, the group conducted a lookback, repaid affected amounts, entered a settlement that included CMPs and assessments, and strengthened screening controls—illustrating that administrative roles can still trigger OIG Enforcement Actions.

Example 2: Prescribing by an excluded provider

A pharmacy dispensed medications based on prescriptions written by an excluded practitioner. Claims tied to those prescriptions were non‑payable, leading to repayments and CMPs. The pharmacy implemented prescriber verification at dispensing and monthly monitoring to prevent recurrence.

Example 3: Contractor oversight failure

A home health agency used a staffing vendor that failed to screen a nurse who had been excluded. The agency, not just the vendor, faced liability because the excluded individual furnished services billed to federal programs. Contract revisions, vendor attestations, and monthly LEIE monitoring became mandatory controls going forward.

Routine Exclusion Screening Practices

Implement a documented, repeatable process that covers all populations who can influence billed services. Strong screening reduces CMP risk and shows good‑faith compliance.

Core steps

• Define scope: employees, medical staff, contractors, owners, board members, students, volunteers, and key vendors whose work affects claims.
• Timing: screen the List of Excluded Individuals/Entities (LEIE) at hire or engagement, at credentialing or re‑credentialing, and monthly thereafter to match the LEIE update cadence.
• Identity resolution: search by name and applicable identifiers (e.g., NPI or date of birth when permissible). Capture aliases and prior names.
• Documentation: retain search logs, results, match‑resolution notes, and adverse‑action decisions according to your record retention policy and payer expectations.
• Positive match protocol: immediately remove the person from federal program work, verify the match with unique identifiers, start a lookback, and escalate to compliance and legal for next steps.
• Third‑party management: require vendor and staffing contracts to include Exclusion Screening Requirements, LEIE checks, and right‑to‑audit clauses, with timely notice of any matches.
• Automation and monitoring: use reliable tools or workflows with audit trails, exception alerts, and dashboard reporting to assure continuous oversight.

Compliance Best Practices

• Governance and accountability: assign executive ownership, define roles, and brief the board or compliance committee on exclusion risk and trend metrics.
• Policies and training: publish clear procedures on screening frequency, populations in scope, evidence retention, and match resolution; train HR, credentialing, pharmacy, and revenue cycle teams.
• Risk‑based auditing: periodically sample hires, contractors, and prescribers to verify screening quality and timeliness; validate vendor attestations.
• Contracts and credentialing: bake Civil Monetary Penalties Law obligations into provider and vendor agreements, including cooperation in investigations and immediate removal upon a positive match.
• Event‑triggered checks: re‑screen after role changes, mergers or acquisitions, roster imports, and when adverse information surfaces.
• Response playbook: define steps for isolation, lookback scope, repayment, and use of OIG self‑disclosure pathways when appropriate.
• Culture and incentives: link performance goals to timely screening and accurate prescriber verification to reinforce accountability.

Bottom line: consistent LEIE screening, swift response to potential matches, and strong documentation are the most effective ways to prevent Civil Monetary Penalties (CMP) for employing excluded individuals in healthcare and to demonstrate proactive, good‑faith compliance.

FAQs.

What causes an individual to be excluded from Federal health care programs?

Common causes include convictions or admissions related to Medicare and Medicaid Fraud, patient abuse or neglect, kickbacks, certain controlled substance offenses, and professional license actions. These events can lead the OIG to impose a Federal Health Care Program Exclusion and list the person on the LEIE.

How are civil monetary penalties calculated for employing excluded individuals?

Penalties are generally based on the number and nature of affected items or services, the amounts paid by federal programs, the duration of the conduct, and your level of knowledge. Aggravating or mitigating factors—such as self‑disclosure, cooperation, prior history, and corrective action—can increase or reduce CMPs and assessments under the Civil Monetary Penalties Law.

What are the provider responsibilities to avoid CMP liability?

You must fulfill Exclusion Screening Requirements by verifying all relevant personnel and contractors against the LEIE at onboarding and monthly thereafter, documenting results, resolving potential matches, and removing any excluded person from federal program work. You should also monitor prescribers and ordering providers, educate staff, manage vendors, and promptly address findings to prevent tainted claims.

How frequently should exclusion screenings be conducted?

Best practice is to screen at onboarding and monthly, aligning with the LEIE’s update cycle. You should also perform event‑triggered checks—for example, when roles change, prescriber rosters update, or you add new vendors—to maintain continuous protection against CMP exposure.