Exclusions Screening in Healthcare: A Step-by-Step Guide to OIG, SAM.gov, and State Medicaid Checks

Exclusions screening protects federal healthcare programs and your organization by verifying that employees, providers, and vendors are not barred from participation. This guide explains the OIG List of Excluded Individuals/Entities, the System for Award Management Exclusions in SAM.gov, and State Medicaid Exclusion Files, then walks you through a practical, defensible process for routine Provider Exclusion Monitoring.

OIG Exclusions List Overview

The U.S. Department of Health and Human Services Office of Inspector General (OIG) maintains the OIG List of Excluded Individuals/Entities (LEIE). Anyone on the LEIE is excluded from participation in federal healthcare programs, meaning items or services they furnish—directly or indirectly—are not payable by Medicare, Medicaid, or other federal programs.

Exclusions can be mandatory (for example, program-related crimes) or permissive (such as license revocation). For screening, the LEIE is your primary source. It includes names, known aliases, dates, unique identifiers (like NPI when available), exclusion type, effective dates, and reinstatement status. Your policy should recognize the LEIE as the baseline dataset for Regulatory Screening Mandates tied to Healthcare Fraud Prevention Regulations.

SAM.gov Exclusions Database

The System for Award Management Exclusions (SAM.gov Exclusions) is a government-wide database of suspension and debarment actions for procurement and nonprocurement programs. While not healthcare-specific, SAM.gov captures entities and individuals ineligible for federal contracts, grants, and certain assistance—key to Federal Healthcare Funding Compliance if your organization receives federal awards or uses federally funded subrecipients and vendors.

Because SAM.gov and the OIG LEIE are separate datasets, you must check both. Some records may appear in one and not the other, and the basis for exclusion can differ. In practice, screen clinical and nonclinical staff against the LEIE and screen vendors, contractors, and affiliates against SAM.gov Exclusions by legal name and, when available, the Unique Entity Identifier (UEI) or CAGE code.

State Medicaid Exclusions Lists

Many states publish State Medicaid Exclusion Files (sometimes called terminated, suspended, or sanctioned provider lists). These capture actions specific to a state’s Medicaid program and may include terminations not yet reflected federally. If you operate in multiple states—or serve members across state lines—screen against every relevant state list in addition to the LEIE and SAM.gov.

State lists vary in format and update cadence. Build procedures to pull the latest files, normalize data, and compare using multiple identifiers (name, DOB, NPI, license number) to reduce false positives. This state-level layer is essential to comprehensive Provider Exclusion Monitoring.

Purpose of Exclusions Screening

Exclusions screening serves four goals central to Healthcare Fraud Prevention Regulations and payer contracts:

• Preventing improper payments for items or services furnished by excluded parties.
• Protecting patient safety and program integrity by keeping known bad actors out of care pathways.
• Maintaining eligibility for federal funds, grants, and contracts through proactive compliance.
• Reducing exposure to overpayments, civil monetary penalties, and False Claims Act risk.

Screening Process Steps

1. Define scope and policy. Document your Regulatory Screening Mandates: which populations (employees, contractors, referring/ordering providers, vendors, owners), which datasets (LEIE, SAM.gov Exclusions, State Medicaid Exclusion Files), and how often.
2. Assemble a clean roster. Maintain a single, de-duplicated list for all screened populations, including onboarding dates, roles, and risk tiers.
3. Collect identifiers. Capture only what you need: legal name, known aliases, date of birth, NPI, license number/state, and for entities, UEI or CAGE. Follow privacy and HR rules when handling PII.
4. Screen against the OIG LEIE. Use exact and fuzzy matching on names and NPIs. Record search parameters, run date, and results to create an auditable trail.
5. Screen against SAM.gov Exclusions. Search people and organizations by legal name and UEI. Prioritize vendors, contracted providers, and grantees tied to Federal Healthcare Funding Compliance.
6. Screen against relevant state lists. Pull and check all states where you deliver services, where individuals hold licenses, or where vendors operate.
7. Resolve potential matches. Compare multiple identifiers, obtain supporting documents, and escalate uncertain cases to compliance. Do not allow work to proceed until cleared.
8. Document everything. Preserve evidence (exported results, screenshots, or hash-verified files), plus the reviewer’s name and timestamp, consistent with your record-retention policy.
9. Act on confirmed exclusions. Immediately remove the individual/entity from federal program-related work, quarantine claims, assess and return overpayments promptly, notify payers as required, and consider voluntary self-disclosure pathways.
10. Implement ongoing monitoring. Automate monthly Provider Exclusion Monitoring, track reinstatement letters before reinstating anyone, and regularly test your process with internal audits.

Frequency of Screening

Best practice—and a common payer expectation—is to screen at critical events and monthly thereafter. At a minimum, screen pre-hire or pre-contract, before credentialing or recredentialing, prior to referral or ordering privileges, and after material changes (name change, new license, acquisition, or subcontractor onboarding).

Use risk-based enhancements for high-impact roles (billing, prescribing, leadership), delegated entities, and vendors tied to federal funds. When in doubt, monthly screening across all populations provides the strongest control and simplest audit story.

Compliance Requirements in Healthcare

Build a program that can withstand regulatory scrutiny:

• Governance: Assign accountable owners, inform the board, and resource the program adequately.
• Policies and procedures: Write clear workflows for LEIE, System for Award Management Exclusions, and state list checks, including match resolution and escalation.
• Training: Educate HR, credentialing, supply chain, and revenue cycle on roles, red flags, and documentation standards.
• Contract controls: Flow down “no excluded persons” clauses to contractors and delegates; require attestations and the right to audit.
• Documentation and retention: Keep dated evidence of every search and decision; ensure reproducibility for auditors and payers.
• Incident response: Define steps for immediate removal, claims impact analysis, overpayment refunds, notifications, and corrective action.
• Technology and data protection: Use secure tools, access controls, and match logic that balances sensitivity with low false positives.
• Continuous improvement: Periodically test controls, benchmark against Regulatory Screening Mandates, and update procedures as laws and payer rules evolve.

Conclusion

Effective exclusions screening blends clear policy, reliable data, disciplined execution, and thorough documentation. By integrating the OIG LEIE, SAM.gov Exclusions, and State Medicaid Exclusion Files into a single, monthly monitoring program, you safeguard patients, protect revenue, and meet the compliance obligations that come with federal healthcare participation.

FAQs

What is exclusions screening in healthcare?

Exclusions screening is the systematic process of checking your workforce, providers, contractors, and vendors against the OIG List of Excluded Individuals/Entities, the System for Award Management Exclusions, and State Medicaid Exclusion Files to ensure no excluded party furnishes items or services billable to federal healthcare programs.

How often should healthcare providers be screened for exclusions?

Screen at onboarding or credentialing and monthly thereafter. Add event-driven checks after name or license changes, acquisitions, new contracts, or when risk indicators arise. Monthly monitoring is the simplest, most defensible cadence for most organizations.

What are the consequences of employing an excluded individual?

Your organization may owe overpayments and face civil monetary penalties, possible False Claims Act exposure, contract terminations, reputational harm, and loss of eligibility for certain federal funds. Claims tied to excluded individuals are typically nonpayable.

How do state Medicaid exclusion lists differ from OIG lists?

The OIG LEIE is a national baseline tied to federal healthcare programs, while state Medicaid lists capture state-specific terminations and sanctions. State actions may appear earlier or differ in scope, so you should check both to ensure complete compliance.