The following retention events must also be considered in reference to the required timeframes in which medical records must be maintained by providers. These retention requirements are based on Health Net's current Corporate Records Retention Schedule:

Health Net must ensure maintenance of all records and documentation (including medical records) necessary to verify information and reports required by statute, regulation or contractual obligation for five years from the end of the fiscal year in which Health Net's contract expires or is terminated with a member.

Standards for the administration of medical records by participating providers are established by the Health Net Quality Improvement Committee (HNQIC). The standards form the basis for the evaluation of medical records by Health Net. Medical records for primary care physicians (PCPs) may be selected for evaluation as part of the annual delegation oversight assessment.

Health Net requires participating providers to have a written policy in place that provides for the protection of confidential protected health information (PHI) in accordance with the Health Insurance Portability and Accountability Act (HIPAA). The policy must be kept in hard copy or electronic format and must include a functioning mechanism designed to safeguard medical records and information against loss, destruction, tampering, unauthorized access or use, and verbal discussions about member information to maintain confidentiality.

Participating physician groups (PPGs), physicians, hospitals and ancillary providers are required to provide Health Net with copies of medical records and accounting and administrative books and records, as they pertain to the Provider Participation Agreement (PPA).

The provider has financial responsibility to provide copies of medical records so that Health Net can make claims and benefit determinations for Health Net utilization management, quality improvement, Healthcare Effectiveness Data and Information Set (HEDIS®), and appeals and grievance programs.

Medical records may be required for regulatory reviews by the Centers for Medicare & Medicaid Services (CMS), Department of Health Care Services (DHCS), Department of Managed Health Care (DMHC), National Committee for Quality Assurance (NCQA), Independent Quality Review and Improvement Organization (QIO), and other regulatory bodies.

Subject only to applicable state and federal confidentiality or privacy laws, the provider must share records when Health Net or its designated representative requests access to them in order to audit, inspect, review, perform chart reviews, and duplicate such records.

For on-Exchange plans and Medicare line of business, if performed onsite, access to records for the purpose of an audit must be scheduled at mutually agreed upon times, upon at least 30 business days prior written notice by the health plan or its designated representative, but not more than 60 days following such written notice.

For Medi-Cal and Cal MediConnect, if performed onsite, access to records for the purpose of an audit must be scheduled at mutually agreed upon times, upon at least 30 business days prior written notice by Health Net or its designated representative, but not more than 60 days following such written notice. However, access to records and audits that are part of a facility site review audit, grievance visit or potential quality issue (PQI) visit can be unannounced.

When Health Net requests access to electronic medical records (EMR), the provider will grant the health plan access to the provider's EMR in order to effectively case manage members and capture medical record data for risk adjustment and quality reporting. There will be no other fees charged to the health plan for this access.

Participating providers are required to have systems and procedures in place that provide consistent, confidential and comprehensive record-keeping practices. Written procedures must be available upon Health Net's request for:

Participating physician groups (PPGs), physicians, hospitals, and ancillary providers are required to provide Health Net and CalViva Health with copies of medical records and accounting and administrative books and records, as they pertain to the Provider Participation Agreement (PPA).

The provider has financial responsibility to provide copies of medical records so that Health Net and CalViva Health can make claims and benefit determinations for utilization management, quality improvement, Healthcare Effectiveness Data and Information Set (HEDIS®), and appeals and grievance programs.

Medical records may be required for regulatory reviews by the Centers for Medicare & Medicaid Services (CMS), Department of Health Care Services (DHCS), Department of Managed Health Care (DMHC), National Committee for Quality Assurance (NCQA), Independent Quality Review and Improvement Organization (QIO), and other regulatory bodies.

Subject only to applicable state and federal confidentiality or privacy laws, the provider must share records when the health plan or its designated representative requests access to them, in order to audit, inspect, review, perform chart reviews, and duplicate such records.

If performed onsite, access to records for the purpose of an audit must be scheduled at mutually agreed upon times, upon at least 30 business days prior written notice by the health plan or its designated representative, but not more than 60 days following such written notice. However, access to records and audits that are part of a facility site review audit, grievance visit or potential quality issue (PQI) visit can be unannounced.

When the health plan requests access to electronic medical records (EMR), the provider will grant the health plan access to the provider's EMR in order to effectively case manage members and capture medical record data for risk adjustment and quality reporting. There will be no other fees charged to the health plan for this access. 

For more information, select any subject below: