How Geotagged EVV Check-In Data Can Get Wired Into Medicaid and Medicare Managed Care Claim Edits to Reject Home Health Fraud at Submission and Break the Decade-Long Federal Moratorium Loop
Quick Links: Knowledge Base, Podcast, and Social
Knowledge Base — search and filter every article and podcast episode by topic, section, and keyword: kb.onhealthcare.tech
Listen to the Podcast — every article is also available as an audio episode. Free subscribers get the public episodes; paid subscribers get the full archive including subscriber-only episodes. Listen on Apple Podcasts, Spotify, or browse all episodes on the Substack Podcast page.
For paid subscribers — your subscription unlocks the entire research archive (538+ deep-dives), every paid podcast episode, and full search inside the Knowledge Base. To listen to paid episodes in Apple or Spotify, link your Substack subscription via the show settings on those platforms (instructions inside the Substack app under Subscriptions → Podcast).
For free subscribers — free posts and free podcast episodes are always public on Apple/Spotify and Substack. Upgrade any time at onhealthcare.tech/subscribe to access the paid archive and paid episodes.
Follow on Social — X · YouTube · TikTok · Instagram
Video Preview
Podcast, Part I (Free)
Podcast, Part II (Paid)
To listen to paid episodes in Apple or Spotify, link your Substack subscription via the show settings on those platforms (instructions inside the Substack app under Subscriptions → Podcast).
Table of Contents
Why CMS just dropped the moratorium and why this loop never closes
EVV in one paragraph for readers who haven’t been paying attention
The gap between EVV data and claim adjudication
What a pre-pay GPS-tied claim edit actually looks like in the 837
Why managed care is the wedge before FFS
Spoofing, dead zones, and the rest of the predictable objections
Vendor landscape after Sandata, HHAeXchange, and CareBridge consolidation
Policy levers CMS already has under 42 CFR 422 and 438
What this means for builders and investors
Abstract
CMS just dropped a nationwide HHA enrollment moratorium effective May 13, 2026, citing LA County explosion (1,000+ new HHAs since 2019, 12-15% of national total), Ohio cluster schemes (18 HHAs at one address), and a parade of criminal cases
Pattern is familiar: moratorium 2013-2019, expire, fraud explodes again, repeat
21st Century Cures Act mandated EVV for Medicaid PCS by 2021 (with FMAP penalty) and HHCS by 2023, covering six data elements including GPS-verified location
EVV data largely sits in aggregator databases (Sandata, HHAeXchange, AuthentiCare, CareBridge) and gets used post-pay
Thesis: wire EVV verification IDs into the 837P claim transaction as a REF segment, run pre-pay API match against aggregator on six elements, hard reject on no-match for high-risk providers
Managed care is the wedge because MA plans (42 CFR 422) and Medicaid MCOs (42 CFR 438) can require this contractually without new statute
Spoofing objection is solved by device attestation (Apple App Attest, Google Play Integrity) plus biometrics plus cell tower triangulation
Dead zone objection is solved by store-and-forward with statistical fraud monitoring
Vendor consolidation (HHAeXchange acquiring Sandata in 2022, Elevance acquiring CareBridge for $2.7B in 2024) makes federation feasible
Investment opportunity in middleware between EVV aggregators and claim adjudication, plus payment integrity vendors selling per-dollar-recovered
Why CMS just dropped the moratorium and why this loop never closes
CMS published the notice on May 13, walking through how HHA fraud remains stubbornly bad even after a decade of bolting on safeguards. The agency cataloged the LA County situation (well over 1,000 new HHAs since 2019, the county now holding 12 to 15 percent of all HHAs nationwide while accounting for roughly 3 percent of total Medicare beneficiaries), the Ohio cluster phenomenon (nine known cases of five-plus HHAs at one address, one location stacking 18 agencies on top of each other), and a roll call of criminal cases stretching from Massachusetts to Texas to Michigan ending in serious federal prison time. The pattern is depressingly familiar to anyone who has been watching home health for a decade. CMS imposed localized moratoria starting in 2013 in Miami-Dade, Cook County, and Harris County, expanded them statewide across Florida, Illinois, Michigan, and Texas in 2016, kept extending them, then let them quietly expire on January 30, 2019. Three years later the LA County numbers detonated. Now the moratoria are back, this time nationwide for six months with the extension button basically pre-pressed.
The honest read here is that enrollment moratoria are a goalie save, not a defense. They prevent the next batch of bad actors from getting through the door but do absolutely nothing about the 11,500 HHAs already inside the building, and they cannot run forever without becoming a de facto industry ban. The notice itself uses the phrase “pay-and-chase” in scare quotes and then proceeds to describe in detail exactly the dynamic that produces it. Claims get paid. Years pass. An investigation opens. By the time a sentence comes down (75 months federal in the Texas signature-forgery case, 12 years for the Massachusetts $100M restitution case, 42 months in the Ohio case where the owner lived in California and billed for dead patients) the cash is offshore, the shell companies are dissolved, and the Trust Funds are out the money. The Michigan $2.8M wire fraud case cited in the notice ended exactly this way, with funds moving through shell accounts and ultimately out of the country. Restitution orders look impressive in press releases. Recovery rates do not.
What no anti-fraud measure in current production actually does is stop the bill from getting paid in the first place. Capitalization requirements at 42 CFR 489.28 prevent shell HHAs with no money. The high-screening designation forces fingerprinting and site visits. The 36-month change-in-majority-ownership rule at 42 CFR 424.550 stops broker resale schemes. The 2019-2020 PPEO killed the upfront-payment vulnerability around RAPs. All useful, none of them addressed the actual mechanism by which fraudulent home health claims convert to cash, which is the submission of an 837P transaction for a visit that did not happen or did not match what was billed. That submission is where the dollars are decided.
EVV in one paragraph for readers who haven’t been paying attention
