Epstein Becker Green Webinar - "Proactive Compliance Initiatives for Private Equity Platform Companies: Proactive Health Care Regulatory Compliance" - with Attorneys John W. Eriksen, Joshua J. Freemire, and Kevin J. Ryan - October 23, 2018. While the platform proceeds with expansion and other accretive initiatives, it is also critical to establish a parallel work stream focused on the establishment or expansion of a platform’s compliance program commensurate with the platform’s existing and growing operations. The platform should have an appropriate compliance infrastructure, such as designated compliance personnel, training, background checks for employees, reporting mechanisms for employees, documented remediation of any identified issues, and ongoing self-audits of billing, coding, and documentation. Key subjects of compliance are fraud, waste and abuse, the Health Insurance Portability and Accountability Act of 1996 (HIPAA), the ability to respond to audits, licensure, the corporate practice of medicine, and other key regulatory compliance areas. Establishing and being able to demonstrate an effectively operating compliance function will help lower uncertainties and enhance a platform’s value upon an exit. The fourth webinar in this series will address different approaches to enhancing compliance initiatives for platform companies to employ as they continue existing operations and expand operations via integrating new acquisitions. These proactive efforts can be effectuated in a cost-effective manner and be a key investment towards enhancing overall value of the growing platform. Visit https://www.ebglaw.com/events/proactive-compliance-initiatives-for-private-equity-platform-companies-proactive-health-care-regulatory-compliance/ These materials have been provided for informational purposes only and are not intended and should not be construed to constitute legal advice. The content of these materials is copyrighted to Epstein Becker & Green, P.C. ATTORNEY ADVERTISING.

1. © 2018 Epstein Becker & Green, P.C. | All Rights Reserved. ebglaw.com
Proactive Health Care Regulatory
Compliance
Enhancing the Value of Growing Private Equity Platform
Companies via Proactive Compliance Initiatives
October 23, 2018

2. © 2018 Epstein Becker & Green, P.C. | All Rights Reserved. | ebglaw.com 2
This presentation has been provided for informational
purposes only and is not intended and should not be
construed to constitute legal advice. Please consult your
attorneys in connection with any fact-specific situation under
federal, state, and/or local laws that may impose additional
obligations on you and your company.
Cisco WebEx can be used to record webinars/briefings. By
participating in this webinar/briefing, you agree that your
communications may be monitored or recorded at any time
during the webinar/briefing.
Attorney Advertising

3. © 2018 Epstein Becker & Green, P.C. | All Rights Reserved. | ebglaw.com
Presented by
3
John W. Eriksen
Member of the Firm
jeriksen@ebglaw.com
202-861-0900
Joshua J. Freemire
Member of the Firm
jfreemire@ebglaw.com
443-378-7400
Kevin J. Ryan
Member of the Firm
kryan@ebglaw.com
312-499-1421

4. © 2018 Epstein Becker & Green, P.C. | All Rights Reserved. | ebglaw.com
Agenda
4
1) What is a Compliance Program?
Hint - not just policies in a drawer
2) Why do we need one?
The Government
3) What are the Compliance “must haves” for a right-sized program?
Government Guidance
4) What are key organizing features?
It’s the “who” as much as the “what”
5) Document, Double Check, Document
Follow your own rules – including discipline

5. © 2018 Epstein Becker & Green, P.C. | All Rights Reserved. | ebglaw.com 5
What Is a Compliance Program
 Not just “a” compliance program, but an “effective” compliance program
 A coordinated program to:
• Identify risks
• Prevent, as best as possible, improper behavior
• Identify improper behavior not prevented
• Correct damage caused by improper behavior
• Discipline and train employees (including executives)
 Program is PROACTIVE not REACTIVE
 Program is ACTIVE not PASSIVE
 Program is NOT “internal affairs” – compliance helps a company succeed by
minimizing costs of investigations, “government touches”, repayments, etc.

6. © 2018 Epstein Becker & Green, P.C. | All Rights Reserved. | ebglaw.com 6
Why is an “Effective Compliance Program”
Necessary?
Reality: Because it’s required. The government
expects every health care company to have one.
Practically:
 Lessons likelihood of improper conduct:
• HIPAA
• F&A
• Harrassment
• Clinical quality failures
 Reduces likelihood of a qui tam action
(whistleblowers)
 Reduces criminal culpability score under the
Federal Sentencing Guidelines by up to 50
percent

7. © 2018 Epstein Becker & Green, P.C. | All Rights Reserved. | ebglaw.com 7
Effective Compliance = Effective Company
 More (Positive) Practicalities
• Better trained employees
• Employees require less micro-management
oCulture of self-reporting / peer-supervision
• Better documentation / record keeping
• Fewer billing disputes
• Fewer “government touches” (investigations, audits, etc.) – when they happen,
they are more easily addressed
• Employee confidence and pride
• Customer / Patient reputation for “doing the right thing”
• Better Recruiting
• Easier Marketing
• Overall, Compliance Programs Provide Good ROI

8. © 2018 Epstein Becker & Green, P.C. | All Rights Reserved. | ebglaw.com 8
“7 Elements”
Written Policies,
Procedures and
Standards of
Conduct
Compliance Officer
and Compliance
Committee
Effective Training
and Education
Effective Lines of
Communication
Internal
Monitoring and
Auditing
Disciplinary
Guidelines
Responding
Promptly to
Detected
Offenses and
Corrective Action

9. © 2018 Epstein Becker & Green, P.C. | All Rights Reserved. | ebglaw.com 9
Must Haves for Most Compliance Programs
 Look to OIG and other guidance
• Work plan
• Compliance guidance
 Federal Fraud and abuse
• Stark, AKS, CMP
• Description of prohibited conduct in common terms
• Relationships with referral sources / sales / marketing
 Code of Conduct
 Internal auditing
 Internal reporting / communications / investigations
 Training

10. © 2018 Epstein Becker & Green, P.C. | All Rights Reserved. | ebglaw.com 10
Privacy and Security
 Federal HIPAA laws but
ALSO state specific laws
• State laws can have
stricter time lines,
broader definitions,
more stringent
reporting
requirements
 Separate policies for
privacy and security
• Possibly separate
privacy and security
officers
o Needn’t be FTE
 Risk assessments
• Consider privilege
• Not “one and done”

11. © 2018 Epstein Becker & Green, P.C. | All Rights Reserved. | ebglaw.com 11
Fee Splitting and Kickbacks – State Specific
Risks
11
Many states also prohibit a professional or
professional practice entity from sharing
professional fees with a third party (other than
a partner, employee, or professional
subcontractor) for any service, and prohibit the
payment of money to parties in exchange for
generating business or referrals for the
professional or professional practice entity.

12. © 2018 Epstein Becker & Green, P.C. | All Rights Reserved. | ebglaw.com 12
Corporate Practice of Medicine – Unique Challenges
12
Most states have some form
of “corporate practice”
prohibition, and professions
other than medicine
(doctors) may be covered –
including psychologists or
therapists.
At its core, CPOM is a prohibition on
non-licensed individuals owning or
controlling professional medical
practices. Applicable law may be
located in licensing rules, entity
formation requirements; practice
rules; or in opinions or guidance of
AG or state licensing board(s).
States vary in their level of
scrutiny and enforcement
activity. Compliance in a
“friendly” or “captive” PC
structure requires the
observation of formalities
separating the professional
entity and the management
entity.

13. © 2018 Epstein Becker & Green, P.C. | All Rights Reserved. | ebglaw.com 13
Key Organizational Features
 Clear leadership
• Compliance team preferably separate from legal
 Written Policies, reviewed and updated at least yearly
• Approved by leadership
• Published to all
• Trained yearly
 Focus on Specific Risk Areas Identified in Guidance
• OIG Compliance Guidance
• Sentencing Guidelines
• Corporate Integrity Agreements
 Communication Structures
• Hotlines and reporting

14. © 2018 Epstein Becker & Green, P.C. | All Rights Reserved. | ebglaw.com 14
Defined Decision Making Roles – MSA
Compliance Structures
© 2018 Epstein Becker & Green, P.C. | All Rights Reserved. | ebglaw.com 14
 Written policies
(including
management
agreement) should
govern what decisions
are made by Manager,
what by Practice
 Clinical decision making
includes hiring and firing
of professionals, pricing,
payor contracting, hours
worked, services offered,
treatments prescribed
and similar subject areas
that determine how
professional services are
provided by Practice
 Policies should also
describe where
collaboration is
necessary
 Practice should have
policies dictating who
makes (or approves)
such decisions – typically
the owner of the PC
 Where owner approval is
required, should be
written and records of
approval maintained

15. © 2018 Epstein Becker & Green, P.C. | All Rights Reserved. | ebglaw.com 15
Implementation – There is no “effective”
passive program
 Background checks
• At hire and monthly (exclusions)
 Review and update policies
• Annual risk assessments
• Ongoing updates as needed
 Document all training and ongoing assessments
• If you don’t document it, you didn’t do it
 Training
• At least at hire and yearly
• Mandatory
• Board should receive training as well

16. © 2018 Epstein Becker & Green, P.C. | All Rights Reserved. | ebglaw.com 16
Follow Your Own Rules
Perform audits as scheduled
• Record results and follow-up
• If schedule too aggressive – change the schedule
Do not fail to follow-up
• Every issue should be followed to closure
Get “Privileged”
• Where wrongdoing may exist – involve counsel and investigate
Report and Correct errors
• Internally and externally – repay if need be – “buying a release”
Discipline as called for
• Sanctions can range from oral warnings to termination, but – follow your own
rules – punishment cannot vary with the perceived “value” of an employee

17. © 2018 Epstein Becker & Green, P.C. | All Rights Reserved. | ebglaw.com 17
Stay Up to Date
 Compliance officer and counsel should understand industry trends
• Enforcement trends
• Common risks in the industry
• Government and Payor focus areas
 Designate a person or group to remain “on top of…” industry issues
 Chances to comment on legislation or regulation
 Pending changes to state law
 Pending changes to LCDs or other payor or reimbursement rules or policies
 Pending changes to covered population (Medicaid expansion)
 Be Prepared For Change

18. © 2018 Epstein Becker & Green, P.C. | All Rights Reserved. | ebglaw.com
Presented by
18
John W. Eriksen
Member of the Firm
jeriksen@ebglaw.com
202-861-0900
Joshua J. Freemire
Member of the Firm
jfreemire@ebglaw.com
443-378-7400
Kevin J. Ryan
Member of the Firm
kryan@ebglaw.com
312-499-1421

19. © 2018 Epstein Becker & Green, P.C. | All Rights Reserved. | ebglaw.com 19
 Employee Benefits and Executive Compensation Compliance and
Planning (Part 5)
When: October 30, 2018 at 12:00pm – 12:45pm
People: Christopher McMican, Kevin Ryan, Peter Steinmeyer
Registration is complimentary. For additional details, visit www.ebglaw.com/events.
Upcoming Webinars
Proactive Compliance Initiatives for Private Equity Platform Companies
Webinar Series