Modernizing Medicine Agrees to Pay $45 Million to Resolve Allegations of Accepting and Paying Illegal Kickbacks and Causing False Claims

Modernizing Medicine Agrees to Pay $45 Million to Resolve Allegations of Accepting and Paying Illegal Kickbacks and Causing False Claims

Tuesday, November 1, 2022

Modernizing Medicine Inc. (ModMed), an electronic health record (EHR) technology vendor located in Boca Raton, Florida, has agreed to pay $45 million to resolve allegations that it violated the False Claims Act (FCA) by accepting and providing unlawful remuneration in exchange for referrals and by causing its users to report inaccurate information in connection with claims for federal incentive payments.

The Anti-Kickback Statute prohibits anyone from offering or paying, directly or indirectly, any remuneration — which includes money or any other thing of value — to induce referrals of items or services covered by Medicare, Medicaid and other federally funded programs. In a complaint filed in conjunction with today’s settlement, the United States alleged that ModMed violated the FCA and the Anti-Kickback Statute through three marketing programs: First, ModMed solicited and received kickbacks from Miraca Life Sciences Inc. (Miraca) in exchange for recommending and arranging for ModMed’s users to utilize Miraca’s pathology lab services. Second, ModMed conspired with Miraca to improperly donate ModMed’s EHR to health care providers in an effort to increase lab orders to Miraca and simultaneously add customers to ModMed’s user base. Third, ModMed paid kickbacks to its current health care provider customers and to other influential sources in the healthcare industry to recommend ModMed’s EHR and refer potential customers to ModMed. 

“Electronic health records serve a critical role in informing physician decision making, and it is therefore essential that health care providers select such technology free from the influence of improper financial inducements,” said Principal Deputy Assistant Attorney General Brian M. Boynton, head of the Department of Justice’s Civil Division. “Vendors of electronic health records will be held to the same standards of compliance that we expect of everyone who provides health care services.”

“Today’s settlement marks the fourth resolution that our office has achieved as we seek to root out fraud in the electronic health record technology field,” said U.S. Attorney Nikolas P. Kerest for the District of Vermont. “It is imperative that medical providers be able to trust the health record systems with which they document important and sensitive patient information, and for too long electronic health record vendors have prioritized only sales. The government alleges that for years, ModMed, through a variety of schemes, engaged in illegal kickbacks that distorted both the EMR and pathology lab markets, in addition to providing its users with a deficient product. This resolution reflects the seriousness of the government’s allegations and the determination of the Department of Justice to restore integrity to the electronic health record field.”

As a result of this conduct, the government alleges that ModMed improperly generated sales for itself and for Miraca, while causing health care providers to submit false claims for reimbursement to the federal government for pathology services, and for incentive payments from the Department of Health and Human Services (HHS) for the adoption and “meaningful use” of ModMed’s EHR technology.

In January 2019, Miraca (now known as Inform Diagnostics) agreed to pay $63.5 million to resolve allegations that it violated the Anti-Kickback Statute and the Stark Law by providing to referring physicians subsidies for EHR systems and free or discounted technology consulting services. 2019 Press Release.

Additionally, under HHS’ EHR Incentive Programs, HHS offered incentive payments to health care providers that adopted certified EHR technology and met certain requirements relating to their “meaningful use” of that technology. Eligibility for incentive payments required health care providers to use certified EHR technology that, among other things, utilized certain standard vocabularies for drugs (RxNorm) and clinical terminology (SNOMED CT) in order to conduct certain transactions. The government’s complaint in intervention alleges that ModMed knew that its EHR did not always allow physician users to electronically record medical records using the required standard vocabularies, thereby causing certain of its users to submit false claims for incentive payments under that program.

The settlement with ModMed resolves, in part, allegations in a lawsuit filed in the District of Vermont by Amanda Long, a former Vice President of Product Management at ModMed. The lawsuit was filed under the qui tam, or whistleblower, provisions of the FCA, which permit private individuals to sue on behalf of the government for false claims and to share in any recovery. The qui tam case is captioned United States ex rel. Long v. Modernizing Med., Inc., No. 2:17-cv-179 (D. Vt.). The Act allows the government to intervene and take over the action, as it did in this case. As part of today’s resolution, Ms. Long will receive approximately $9 million.

The resolution obtained in this matter was the result of a coordinated effort between the Justice Department’s Civil Division, Commercial Litigation Branch, Fraud Section, and the U.S. Attorney’s Office for the District of Vermont. The FBI and the Department of Health and Human Services, Office of Counsel to the Inspector General provided investigative assistance.

The investigation and pursuit of this matter illustrate the government’s emphasis on combating health care fraud, including in the healthcare technology arena. One of the most powerful tools in this effort is the FCA. Tips and complaints from all sources about potential fraud, waste, abuse, and mismanagement, can be reported to the Department of Health and Human Services at 800-HHS-TIPS (800-447-8477).

Assistant U.S. Attorney Lauren A. Lively for the District of Vermont and Trial Attorneys Kelley Hauser and Sarah Hill of the Civil Division’s Commercial Litigation Branch, Fraud Section handled this matter.


Issued by: Office for Civil Rights (OCR) Do the HIPAA Rules allow a covered entity or business associate to use a CSP that stores ePHI on servers outside of the United States? Answer: Yes, provided the covered entity (or business associate) enters into a business associate agreement (BAA) with the CSP and otherwise complies with the applicable requirements of the HIPAA Rules. However, while the HIPAA Rules do not include requirements specific to protection of electronic protected health information (ePHI) processed or stored by a CSP or any other business associate outside of the United States, OCR notes that ...read more



Private Practice Ceases Conditioning of Compliance with the Privacy Rule Covered Entity: Private Practice Issue: Conditioning Compliance with the Privacy Rule A physician practice requested that patients sign an agreement entitled “Consent and Mutual Agreement to Maintain Privacy.” The agreement prohibited the patient from directly or indirectly publishing or airing commentary about the physician, his expertise, and/or treatment in exchange for the physician’s compliance with the Privacy Rule. A patient’s rights under the Privacy Rule are not contingent on the patient’s agreement with a covered entity. A covered entity’s obligation to comply with all requirements of the Privacy Rule ...read more



Radiologist Revises Process for Workers Compensation Disclosures Covered Entity: Health Care Provider Issue: Impermissible Uses and Disclosures A radiology practice that interpreted a hospital patient’s imaging tests submitted a worker’s compensation claim to the patient’s employer. The claim included the patient’s test results.  However, the patient was not covered by worker’s compensation and had not identified worker’s compensation as responsible for payment. OCR’s investigation revealed that the radiology practice had relied upon incorrect billing information from the treating hospital in submitting the claim.  Among other corrective actions to resolve the specific issues in the case, the practice apologized to ...read more



National Pharmacy Chain Extends Protections for PHI on Insurance Cards Covered Entity: Pharmacies Issue: Impermissible Uses and Disclosures; Safeguards A pharmacy employee placed a customer's insurance card in another customer's prescription bag. The pharmacy did not consider the customer's insurance card to be protected health information (PHI). OCR clarified that an individual's health insurance card meets the statutory definition of PHI and, as such, needs to be safeguarded. Among other corrective actions to resolve the specific issues in the case, the pharmacy revised its policies regarding PHI and retrained its staff. The revised policies are applicable to all individual ...read more

February 2026
SuMoTuWeThFrSa
1234567
891011121314
15161718192021
22232425262728

Blog Home

Newest Blog Entries
1/21/25 Understanding Business Associate Agreements

11/12/22 Modernizing Medicine Agrees to Pay $45 Million to Resolve Allegations of Accepting and Paying Illegal Kickbacks and Causing False Claims

11/12/22 Indian National Charged in $8 Million COVID-19 Relief Fraud Scheme

11/12/22 Former Hospital Employee Pleads Guilty To Criminal HIPPA Charges

11/12/22 Covered entities and those persons rendered accountable by general principles of corporate criminal liability may be prosecuted directly under 42 U.S.C. § 1320d-6

11/12/22 The Delaware Division of Developmental Disabilities Services Data Breach

11/12/22 OCR Settles Three Cases with Dental Practices for Patient Right of Access under HIPAA

11/12/22 HHS Issues Guidance on HIPAA and Audio-Only Telehealth

11/12/22 Five Former Methodist Hospital Employees Charged with HIPAA Violations

11/12/22 May a covered entity use or disclose protected health information for litigation?

11/12/22 When does the Privacy Rule allow covered entities to disclose protected health information to law enforcement officials?

Blog Archives
November 2022 (54)
January 2025 (1)

Blog Labels
Covered Entity (40)
PPP Fraud (1)
HIPAA Enforcement (3)
Telehealth (1)
ePHI (2)
BAA (4)
EHR Fraud (1)
Data Breach (1)
HIPAA (2)