Browse: Departments Dates Agencies
DEPARTMENT OF HEALTH AND HUMAN SERVICES
Centers for Medicare & Medicaid Services
NOTICE: NOTICES
DOCUMENT ACTION: Notice of a Modified or Altered System of Records (SOR).
SUBJECT CATEGORY: Privacy Act of 1974; Report of a Modified or Altered System of Records
DOCUMENT SUMMARY: In accordance with the requirements of the Privacy Act of
1974, we are proposing to modify or alter a SOR, ``CMS Fraud
Investigation Database (FID), System No. 09700527,'' most recently
modified at 67 FR 65795 (October 28, 2002). We propose to modify
existing routine use number 1 that permits disclosure to agency [[Page 77760]]
contractors and consultants to include disclosure to CMS grantees who
perform a task for the agency. CMS grantees, charged with completing
projects or activities that require CMS data to carry out that
activity, are classified separate from CMS contractors and/or
consultants. The modified routine use will remained as routine use
number 1. We will delete routine use number 2 authorizing disclosure to
support constituent requests made to a congressional representative. If
an authorization for the disclosure has been obtained from the data
subject, then no routine use is needed. The Privacy Act allows for
disclosures with the ``prior written consent'' of the data subject.
We propose to broaden the scope of the disclosure provisions of this system by adding a routine use to permit the release of information to another Federal and state agencies to: (1) Contribute to the accuracy of CMS' proper payment of Medicare benefits; (2) enable such agency to administer a Federal health benefits program, and/or (3) assist Federal/state Medicaid programs within the state. We will broaden the scope of routine uses number 4 and 5 authorizing disclosures to combat fraud and abuse in the Medicare and Medicaid programs to include combating ``waste'' which refers to specific beneficiary/recipient practices that result in unnecessary cost to all Federallyfunded health benefit programs.
We are modifying the language in the remaining routine uses to
provide a proper explanation as to the need for the routine use and to
provide clarity to CMS's intention to disclose individualspecific
information contained in this system. The routine uses will then be
prioritized and reordered according to their usage. We will also take
the opportunity to update any sections of the system that were affected
by the recent reorganization or because of the impact of the Medicare
Prescription Drug, Improvement, and Modernization Act of 2003 (MMA) (Pub. L. 108173) provisions and to update language in the
administrative sections to correspond with language used in other CMS SORs.
The primary purpose of the system of records is to collect and maintain information to: (1) Identify if a violation(s) of a provision of the Social Security Act (the Act) or a related penal or civil provision of the United States Code (U.S.C.) related to Medicare (Title XVIII), Medicaid (Title XIX), HMO/Managed Care (Title XX), and Children's Health Insurance Program (Title XXI) have been committed; (2) determine if HHS has made a proper payment as prescribed under applicable sections of the Act; (3) determine whether these programs have been abused; and (4) coordinate investigations related to Medicare, Medicaid, HMO/Managed Care, and Children's Health Insurance Program; (5) prevent duplications investigatory efforts; and (5) provide case file material to the HHS Office of the Inspector General when a case is referred for fraud investigation. Information retrieved from this system of records will also be disclosed to: (1) Support regulatory, reimbursement, and policy functions performed within the Agency or by a contractor, consultant, or a CMS grantee; (2) assist another Federal and/or state agency, agency of a state government, an agency established by state law, or its fiscal agent; (3) support litigation involving the Agency related to this system of records; and (4) combat fraud, waste, and abuse in certain health care programs. We have provided background information about the modified system in the SUPPLEMENTARY INFORMATION section below. Although the Privacy Act requires only that CMS provide an opportunity for interested persons to comment on the proposed routine uses, CMS invites comments on all portions of this notice. See ``Effective Dates'' section for comment period.
Effective Dates: CMS filed a modified or altered system report with the Chair of the House Committee on Government Reform and Oversight, the Chair of the Senate Committee on Homeland Security & Governmental Affairs, and the Administrator, Office of Information and Regulatory Affairs, Office of Management and Budget (OMB) on December 20, 2006. To ensure that all parties have adequate time in which to comment, the modified system, including routine uses, will become effective 30 days from the publication of the notice, or 40 days from the date it was submitted to OMB and Congress, whichever is later, unless CMS receives comments that require alterations to this notice.
SUMMARY: Privacy Act; systems of records,
SUPPLEMENTAL INFORMATION
I. Description of the Modified or Altered System of Records A. Statutory and Regulatory Basis for SORThis system was established under the authority of sections 205, 1106, 1107, 1815, 1816, 1833, 1842, 1872, 1874, 1876, 1877, and 1902 of the Social Security Act (Title 42 U.S.C. sections 405, 1306, 1307, 1395g, 1395h, 1395l, 1395u, 1395ii, 1395kk, 1395mm, 1395nn, and 1396a). B. Collection and Maintenance of Data in the System
Individuals alleged to have violated provision of the Act related
to Medicare (Title XVIII), Medicaid (Title XIX), HMO/Managed Care
(Title XX), and Children's Health Insurance Program (Title XXI) or
other criminal/civil statutes as they pertain to the Social Security
Act (the Act) programs where substantial basis for criminal/civil
prosecution exist, defendants in criminal prosecution cases, or persons
alleged to have abused the programs. The system contains the name, work
address, work phone number, social security number, Unique Provider
Identification Number (UPIN), and other identifying demographics of
individuals alleged to have violated provision of the Act or persons alleged to have abused Medicare and/or Medicaid programs.
II. Agency Policies, Procedures, and Restrictions on the Routine Use
A. Agency Policies, Procedures, and Restrictions on the Routine Use
The Privacy Act permits us to disclose information without an individual's consent if the information is to be used for a purpose that is compatible with the purpose(s) for which the information was collected. Any such disclosure of data is known as a ``routine use.'' The government will only release FID information that can be associated with an individual as provided for under ``Section III. Proposed Routine Use Disclosures of Data in the System.'' Both individually identifiable and nonindividuallyidentifiable data may be disclosed under a routine use.
We will only disclose the minimum personal data necessary to
achieve the purpose of FID. CMS has the following policies and
procedures concerning disclosures of information that will be maintained in the system. Disclosure of
[[Page 77761]]
information from the system will be approved only to the extent
necessary to accomplish the purpose of the disclosure and only after
FOR FURTHER INFORMATION CONTACT Tara Ross, Health Insurance
Specialist, Program Integrity Group, Office of Financial Management,
CMS, Mail Stop C30216, 7500 Security Boulevard, Baltimore, Maryland
212441850. The telephone number is (410) 7869530 or email
tara.ross@cms.hhs.gov.
Common CFR Searches
14 CFR Part 39 40 CFR Part 52 14 CFR Part 71 33 CFR Part 165 50 CFR Part 679 26 CFR Part 1 40 CFR Part 180 47 CFR Part 73 50 CFR Part 17 33 CFR Part 117 44 CFR Part 67 50 CFR Part 648 14 CFR Part 97 33 CFR Part 100 40 CFR Part 63 50 CFR Part 622 26 CFR Part 301 39 CFR Part 111 40 CFR Part 300 50 CFR Part 660 44 CFR Part 65 40 CFR Parts 52 and 81 40 CFR Part 271 47 CFR Part 64 50 CFR Part 665 47 CFR Part 76 50 CFR Part 229 14 CFR Part 23 14 CFR Part 25 21 CFR Part 522