The adoption of telemedicine by health care providers has been accelerated throughout the COVID-19 pandemic, and a concerted effort on behalf of federal and state regulators to ensure access to medical care has either relaxed or suspended prior telemedicine requirements while increasing the breadth of reimbursement for telemedicine services. A push by legislators and health care providers has been made—and will continue to be made—to further expand telemedicine coverage by making permanent certain pandemic telemedicine waivers. The impact of these laxer restrictions may create conditions susceptible to fraud and abuse, and recent enforcement by the Department of Justice (DOJ) indicates telemedicine will be increasingly monitored in the post-pandemic world.
Loosening of Telemedicine Requirements
Prior to the pandemic, reimbursement for telehealth1 services was relatively limited, available only to certain practitioners2 providing specific services approved to be furnished via telehealth,3 usually to patients in rural areas at “originating sites.”4 Following the declaration of a public health emergency, these limitations were upended through passage of the Coronavirus Preparedness and Response Supplemental Appropriations Act5 and the Coronavirus Aid, Relief and Economic Security Act,6 which granted the Centers for Medicare & Medicaid Services (CMS) authority to broaden its telehealth coverage pursuant to Section 1135 waivers.7 CMS quickly expanded reimbursement for telehealth services to additional practitioners and certain audio-only telehealth services, and suspended limitations as to where a patient could receive telemedicine.8 Medicare licensing requirements for out-of-state practitioners were essentially waived,9 and increased flexibility regarding physician supervision provided via interactive telecommunications technology was given.10 The Department of Health and Human Services (HHS) also announced a policy of “enforcement discretion” for Medicare telehealth services furnished pursuant to the Section 1135 waivers, further encouraging the adoption of telehealth and telemedicine amongst providers.11
States simultaneously increased their own state-specific telehealth coverage. Arizona required health insurers regulated by its Department of insurance to provide telemedicine coverage when services would otherwise be covered if performed in person.12 Connecticut modified its statutory definition of telehealth to include audio-only telehealth delivered to established patients under Medicaid and commercial health insurance.13 Tennessee, like many others, lifted licensing restrictions to allow out-of-state health care professionals to provide care in Tennessee, at its Commissioner of Health’s discretion.14 And states previously barring the provision of telehealth services without an existing patient-provider relationship suspended any such requirements.15
The combination of these actions led to a rapid adoption of telemedicine by medical providers in the United States. From February to April of 2020, Medicare primary care visits conducted via telemedicine increased from 0.1% to 43.5%.16 Even after in-person primary care visits resumed in May, the use of telemedicine has remained exponentially elevated in comparison to pre-pandemic levels, giving providers and their patients ample time to observe telemedicine’s benefits.17
The Push for Permanence
Given the success of telemedicine during the pandemic, lawmakers have made an increased effort to advocate for the permanent expansion of the telehealth waivers. Bills introduced in both the House and the Senate have sought to either extend suspensions of certain telehealth reimbursement requirements beyond the public health emergency or do away with them completely. One such bill, titled the “Protecting Access to Post-COVID-19 Telehealth Act of 2020,” called for the elimination of geographic restrictions for originating sites and restrictions relating to telehealth services furnished in a patient’s home.18 Others include a “Telehealth Modernization Act,”19 which would amend 42 C.F.R. § 1395m to allow the HHS Secretary discretion to include additional types of practitioners to be reimbursed for telehealth, and the “Ensuring Telehealth Expansion Act,” which, in addition to other changes, would extend Medicare’s current telehealth flexibilities until December 31, 2025. 20 Similar bills have been introduced at the state level to increase telehealth coverage for providers under Medicaid programs and state-regulated health insurance.21
These legislatures are not acting alone. Various health care providers and provider groups have called for the expansion of telehealth over the course of the pandemic—and prior. The American Hospital Association created a fact sheet detailing the necessary actions to extend or maintain telehealth flexibilities implemented during the public health emergency, titled “Making Telehealth Flexibilities Permanent: Legislation or Regulation?”22 Another provider group—the American Psychiatric Association—put forth a white paper to “highlight effective and liberalizing changes to telehealth regulations that enabled healthcare to continue during the COVID-19 pandemic” and “provide the basis for the American Psychiatric Association’s advocacy on behalf of continuing and, in some cases, expanding further the changes made during the pandemic.”23 And a letter to congressional leaders signed by more than 340 groups in health care, ranging from the American Heart Association to various academic medical centers, requested permanent reform as to telehealth restrictions on patient location and the list of practitioners eligible to provide telehealth and for Federally Qualified Health Centers and Rural Health Clinics to be able to continue to provide virtual services post-COVID.24
While each of these groups offers various ideas as to how telehealth and telemedicine should be expanded, some of the most common themes involve: (1) expansion of telehealth beyond patients located in rural areas; (2) the removal of certain geographic limitations as to where care can be provided, including Medicare’s requirements for “originating sites”; (3) the inclusion of new practitioner groups; and (4) reimbursement parity for telehealth health care services versus traditional in-person services. With vaccines now available and state legislatures set to convene in early 2021, demands like the above will continue to be amplified.
DOJ Telemedicine Takedown
On September 30, 2020, the DOJ announced the largest health care fraud enforcement in its history, charging over 345 defendants with submitting more than $6 billion in fraudulent claims.25 More than $4.5 billion of these fraudulent claims related to telemedicine, and 86 defendants in 19 federal judicial districts were charged for participating in schemes where “telemedicine executives allegedly paid doctors and nurse practitioners to order unnecessary durable medical equipment, genetic and other diagnostic testing, and pain medications, either without any patient interaction or with only a brief telephonic conversation with patients they had never met or seen.”26 Suppliers then purchased the physician or nurse practitioner orders in exchanged for illegal kickbacks or bribes, and subsequently billed federal health care programs.27 This telemedicine takedown portion of the fraud enforcement, dubbed “Operation Rubber Stamp,” followed two similar initiatives aimed at telemedicine fraud in 2019, 28 and comments by the HHS Office of Inspector General (OIG) regarding the takedown make clear government regulators increasingly view telemedicine as an area ripe for fraud and abuse.29
Although the conduct prosecuted under Operation Rubber Stamp occurred prior to the pandemic, it gives insight as to what the focus of federal enforcers will be following it. Cases show a common pattern of telemedicine being incorporated into traditional kickback schemes, in which “referrals,” or orders for federally reimbursable items or services, are paid for by unscrupulous providers. Beneficiary information was often accumulated by aggressive telemarketers, which were paid a kickback by telemedicine companies.30 Once a beneficiary’s information was received, the fraudulent telemedicine company would in turn give it to physicians it had employed or contracted with to provide “consultations” and ultimately write orders for health care items or services.31 However, according to the government, these consultations frequently did not occur, and rarely met Medicare standards for reimbursement.32
In a New Jersey case, doctors allegedly paid by telemedicine companies “signed prescriptions and DME orders without ever having physically examined, seen or communicated . . . with the [patients].”33 The doctors, according to the government, “almost never” consulted the patients’ medical histories aside from information collected by marketing companies, and “rarely if ever” investigated to determine whether a beneficiary lived in a rural area or was at an appropriate site for telemedicine to be delivered.34 Physicians allegedly were paid on a fee basis for each consultation, and additional pay was included for orders written.35 The telemedicine consultation itself was not billed by either the provider or the telemedicine company, but only served as pretense for the medically necessity of a particular item in order to receive a kickback, the government alleged.36
While failure to meet Medicare reimbursement standards for telemedicine is frequently cited in these cases, the bulk of the illegal conduct alleged still falls under the Anti-Kickback Statute’s general prohibition on payment for referrals. Telemedicine therefore serves to provide new avenues for fraudulent conduct within such schemes but is itself not the source of the fraud, given that the telemedicine visits are not billed.37 Thus, while the anticipated loosening of telemedicine reimbursement standards may provide federal agencies less authority to implicate dishonest providers, their focus will likely remain on egregious offenders who use telemedicine as a conduit to reach vulnerable beneficiaries across state lines in marketing schemes, which will remain illegal regardless of telemedicine reimbursement changes.
Fraudulent Billing and Coding
More common forms of telemedicine fraud involve provider billing and coding errors, which will only increase in volume as CMS continues to expand its list of reimbursable telehealth services.38 Such fraud often mirrors that seen in in-person care: upcoding, failing to meet reimbursement standards, providing medically unnecessary services, and submitting claims for services never rendered. However, some concerns seem particularly acute in telemedicine, given the absence of direct patient contact and lack of uniformity as to telemedicine reimbursement rules. Failure to use an appropriate interactive telecommunication system,39 billing despite technical issues with the interactive telecommunications system, up-coding time spent with a patient, misrepresenting the type of virtual service provided,40 and phantom billing for patients missing a telemedicine appointment are examples of conduct that may be increasingly scrutinized by third-party payers.
The frequency of such errors—whether purposeful or accidental—can be difficult to ascertain, though the OIG has addressed fraudulent telemedicine billing in three audits of telemedicine services provided prior to the pandemic. In 2018 the OIG released a report auditing a stratified random sample of 100 professional telemedicine claims billed in 2014 and 2015 without an associated originating-site facility fee from a total of 191,118 such claims.41 The OIG concluded that 31 claims did not meet Medicare requirements, with the primary error (24 claims) being payment for services received by beneficiaries at nonrural originating sites.42 Additional errors included claims billed by ineligible providers, services provided at unauthorized originating sites, services provided by an unallowable means of communication, and a claim for an uncovered service as well as a claim for a service provided by a physician located outside the United States.43
Similar reports were released this year concerning audits of telemedicine services provided under Texas and South Carolina’s Medicaid programs, with strikingly dissimilar results. The South Carolina audit determined that 97 of the 100 sampled payments were made in error, with 95 of these errors resulting from the failure of providers to document their “start and stop times” for services and the “consulting site” location where the services were rendered.44 Notably, these documentation requirements came from neither statute nor regulation, but instead South Carolina’s Physician Services Provider Manual.45 In contrast, the Texas audit found 39 of the 40 claims sampled were made in accordance with Texas Medicaid requirements, with the OIG offering no recommendations for improvement.46
Although the results of the 2018 audit likely skewed the error rate for improper originating sites given no facility fee was billed, they do indicate that the suspension of certain statutory telemedicine requirements pushed for by legislators and provider groups—such as the rural area requirement—could decrease provider fraud in billing. This is further demonstrated by the discrepancy in the audits of Texas and South Carolina’s Medicaid programs, in which state-specific telemedicine requirements led to drastic differences in billing error. While arguments can be made as to the merits of individual telemedicine requirements at both the state and federal level, the removal of some of these requirements may reduce fraud for honest providers who have provided an otherwise legitimate telemedicine service.
The Telemedicine Fraud of Tomorrow
COVID-19 has permanently changed the delivery of health care. As utilization of telemedicine grows, so does the momentum to make permanent certain aspects of federal and state telehealth waivers. The loosening of certain restrictions, such as Medicare’s requirements for originating sites, may reduce fraudulent billing errors. However, marketing schemes aimed at vulnerable patient populations that employ telemedicine will likely become more prevalent, and enforcement by federal regulators regarding the use of telemedicine in otherwise traditional kickback schemes will increase in the post-COVID world.
Footnotes
1 “Telemedicine” is usually defined as a type of “telehealth” involving the provision of remote clinical services via a telecommunications infrastructure over a distance. See, e.g., Am. Academy of Family Physicians, What’s the Difference Between Telemedicine and Telehealth?, https://www.aafp.org/news/media-center/kits/telemedicine-and-telehealth.html (last accessed Dec. 21, 2020). These terms are at times used interchangeably by the Centers for Medicare & Medicaid Services. See, e.g., Ctrs. for Medicare & Medicaid Servs., Medicare Telemedicine Health Care Provider Fact Sheet (Mar. 17, 2020), https://www.cms.gov/newsroom/fact-sheets/medicare-telemedicine-health-care-provider-fact-sheet) (“Telehealth, telemedicine, and related terms generally refer to the exchange of medical information from one site to another through electronic communication to improve a patient’s health.”) (hereafter, “Medicare Telemedicine Fact Sheet”).