CMS General Compliance Training: 2026 Requirements, Online Course & Completion Certificate

Overview of CMS General Compliance Training

CMS General Compliance Training equips your workforce to prevent, detect, and correct noncompliance in Medicare Advantage (Part C) and Prescription Drug (Part D) operations. It explains core Compliance Program Requirements, how to recognize risks, and the mechanics of Compliance Violation Reporting so issues are escalated and resolved quickly.

The training supports the seven elements of an effective compliance program, reinforcing written standards, role-based education, confidential reporting channels, enforcement, monitoring and auditing, and prompt corrective action. You apply these elements across your organization and to First Tier Downstream Related Entities (FDRs) that support your Part C or Part D contract.

For 2026, expectations remain focused on operational effectiveness: you must train applicable employees, managers, governing body members, and relevant FDR personnel; tailor content to job duties; and maintain auditable evidence of completion. Most organizations use the Medicare Learning Network (MLN) online modules or equivalent internal courses aligned to CMS Compliance Program Policy and guidance.

Compliance Program Operation and Reporting

A compliant program runs on clear, accessible policies, visible leadership support, and routine monitoring. You set standards of conduct, define responsibilities, and document how your compliance committee oversees risks, investigations, and remediation. Leaders and the governing body receive regular status reports so they can act on emerging issues.

Effective lines of communication are non-negotiable. You must provide confidential, anonymous options for Compliance Violation Reporting, protect good‑faith reporters from retaliation, and promptly investigate concerns. When you identify potential violations, you document findings, implement corrective action, and track outcomes to verify sustainable fixes.

FDR oversight is integral. Sponsors must communicate expectations to FDRs, verify that training and policies are implemented, and obtain evidence (for example, rosters, a Compliance Training Attestation, or audit results). Your contracts should state training and documentation obligations and your right to request proof on demand.

Training Completion and Testing Requirements

CMS expects training to occur at least annually and to be part of new‑hire and new‑leadership orientation. Many sponsors and FDR contracts set stricter timelines—commonly completion within the first 90 days of hire or contracting—so follow the most stringent standard that applies to you.

When you use MLN web‑based training, you complete a knowledge check and post‑assessment before receiving a Certificate of Completion. If you host equivalent content in your learning management system, set a clear passing score, enable retakes, and capture verifiable records of completion and competency.

Scope your audience to everyone who influences Part C or Part D work: frontline staff, supervisors, managers, executives, governing body members, temporary workers, and FDR personnel performing delegated functions. Reinforce with brief refreshers when roles, systems, or policies change mid‑year.

Certificate of Completion and Contact Hours

The MLN course issues a Certificate of Completion once the post‑assessment and survey are finished. Certificates serve as primary evidence during audits and should identify the learner’s name, course title, completion date, and, if applicable, score or pass status.

MLN lists contact hours to indicate expected seat time; these hours generally are not formal CE/CME credits. Confirm with your organization or licensing board whether contact hours from MLN satisfy any internal or professional development requirements.

Keep certificates and transcripts alongside training rosters and policies. Align certificate naming and storage to your record‑retention schedule so you can retrieve proof quickly for CMS, sponsors, or internal auditors.

Accessing the Training and Course Availability

You can take CMS General Compliance Training online through the Medicare Learning Network. Create or sign in to your MLN learning account, search for the Medicare Parts C & D general compliance module (and the fraud, waste, and abuse module if required), enroll, complete the post‑assessment, and download your Certificate of Completion.

Courses are free, self‑paced, and available year‑round. For the best experience, use a current, supported browser. If your sponsor offers an internal course, confirm that it aligns to CMS content expectations and that you can export completion evidence on demand.

Options for FDR Compliance Training Implementation

You have three practical paths: (1) require FDRs to complete the MLN modules and send their certificates; (2) host CMS‑aligned content in your own LMS and accept LMS reports or a Compliance Training Attestation from each FDR; or (3) allow FDRs to use their organization’s equivalent training if it demonstrably meets CMS Compliance Program Requirements.

Using MLN ensures standardized content and easy certificates. Hosting content in your LMS offers central tracking, reminders, and dashboards. Accepting equivalent FDR training can reduce burden but requires stronger oversight—defined content criteria, sample audits, and remediation steps for gaps.

Whichever model you choose, document the standard in contracts and procedures, define who is in scope, set completion deadlines, and describe acceptable proof (certificates, rosters, LMS exports, or attestation).

Attestation and Documentation Requirements

Many sponsors require a Compliance Training Attestation from FDRs certifying that all in‑scope personnel completed general compliance (and, when applicable, FWA) training by the deadline. Attestations typically include the legal entity name and TIN, course type and completion dates, covered workforce, and a statement that the content met CMS Compliance Program Policy expectations.

Maintain training records—policies, course versions, rosters, scores (if used), certificates, and attestations—according to Part C and D contract record‑retention rules, which generally require keeping documentation for up to 10 years. Treat missed deadlines as compliance events: investigate, remediate, and record actions taken.

In summary, CMS General Compliance Training in 2026 centers on effectiveness: deliver role‑based education, ensure timely completion, keep strong evidence, and oversee FDRs with clear standards, attestations, and audit‑ready documentation.

FAQs.

What is the CMS General Compliance Training?

It’s a foundational course that teaches you how a Medicare Parts C & D compliance program works, what behaviors and risks to watch for, and how to use Compliance Violation Reporting to escalate concerns. It supports the seven elements of an effective program and applies to staff, leaders, and relevant FDR personnel.

How do FDRs access the CMS training course?

FDRs can complete the online module through the Medicare Learning Network or, if allowed by the sponsor, through an equivalent course hosted by the sponsor or the FDR’s own LMS. In each case, the FDR must provide acceptable proof—typically a Certificate of Completion, an LMS report, or a signed attestation.

What are the completion requirements for the CMS compliance training?

Training must occur at least annually and be part of orientation for new hires and new leaders. Many contracts set a specific early deadline (often within the first 90 days). If you use MLN, you must finish the assessment to earn a certificate; internal courses should set a clear passing score and retake policy.

Can organizations modify the CMS training content?

If you use MLN, keep core content intact and add organization‑specific policies, reporting channels, or case examples as supplements. If you develop your own training, ensure it fully covers CMS Compliance Program Requirements and matches sponsor expectations for scope, depth, and proof of completion.

What is the purpose of the compliance training attestation?

A Compliance Training Attestation certifies that all required personnel completed general compliance (and, if applicable, FWA) training by the deadline using CMS‑aligned content. Sponsors use it to demonstrate FDR oversight and to streamline audits; it complements, but doesn’t replace, detailed records and certificates.