Are You Audit-Ready? A Home Care Compliance Checklist for Peace of Mind

by | Nov 12, 2025 | Compliance

It’s the message every home care agency owner dreads. A formal letter in the mail or a sterile email in your inbox with a subject line like, “Notice of Record Review” or “Request for Audit.”

Your stomach drops. Your mind starts racing. Are our files in order? Did we document that last-minute schedule change correctly? Is every single caregiver certification up to date?

In the world of home care, audits are not a matter of if, but when. Whether they come from a State Medicaid agency, a Managed Care Organization (MCO), or the Department of Health, audits are a standard part of doing business in a highly regulated industry.

The good news? An audit doesn’t have to be a catastrophe.

The difference between a smooth, successful audit and a frantic, costly nightmare is preparation. Audit readiness isn’t about a last-minute scramble to get your house in order. It’s about building a “culture of compliance” where strong processes and meticulous documentation are woven into the fabric of your daily operations.

At HangZone Care, we work with agencies every day to transform compliance from a source of anxiety into a state of constant readiness. To help you achieve that same peace of mind, we’ve developed a comprehensive checklist. Use this guide to self-audit your agency, identify potential vulnerabilities, and build the rock-solid foundation you need to face any review with confidence.

 

Understanding the Audit Landscape: Who, What, and Why?

Before diving into the checklist, it’s crucial to understand what auditors are looking for. Their primary goal is to verify that you are delivering and billing for services appropriately. They want to see proof that:

  • The services were medically necessary and authorized.
  • The services were delivered according to the client’s approved Plan of Care.
  • The person delivering the care was qualified, trained, and credentialed.
  • The visit details (time, location, duration) are accurately documented (hello, EVV!).
  • The claim you submitted for payment perfectly matches the verified service record.

Any disconnect in this chain—from caregiver credential to client plan of care to the final invoice—is a red flag for an auditor and a potential reason for claim denials or clawbacks.

 

The Ultimate Home Care Compliance Checklist

Use this checklist to conduct a thorough internal review. Be honest about your agency’s strengths and weaknesses. Every unchecked box is an opportunity to improve your processes before an auditor does it for you.

Part 1: Personnel & Caregiver Files

Your caregivers are your agency’s biggest asset, but improperly managed personnel files are one of the biggest compliance liabilities. An auditor will often start here to ensure the people providing care are legally allowed to do so.

  • Hiring & Onboarding Documentation:
    • Completed and signed employment application on file.
    • Form I-9 completed correctly and stored securely.
    • Comprehensive background checks conducted (and cleared) according to state and federal requirements.
    • Signed acknowledgments of key agency policies (e.g., code of conduct, HIPAA, abuse and neglect reporting).
  • Credentials, Certifications & Competencies:
    • Crucial: A system is in place to track expiration dates for all licenses and certifications (e.g., CNA, HHA, CPR).
    • Copies of all current licenses and certifications are on file.
    • Evidence of competency evaluations and skills verification for all services provided.
  • Training & Health Records:
    • Documentation of initial orientation and ongoing training (at least annually) as required by your state.
    • Up-to-date health records, including TB tests and any other required screenings or immunizations.

Pro-Tip: Manually tracking expiration dates on a spreadsheet is a recipe for disaster. A modern agency management platform like HangZone Care automates this, sending alerts to both administrators and caregivers well before a credential expires, ensuring no one ever provides care with a lapsed certification.

Part 2: Client Records & Plans of Care (POC)

The client’s chart is the central narrative of the care you provide. It must be complete, current, and consistent.

  • Intake & Agreements:
    • Signed client service agreement clearly outlining services, rates, and client rights.
    • Complete client intake form with all demographic and emergency contact information.
    • Signed consent forms for care, release of information, and photo/video use (if applicable).
  • The Plan of Care (POC):
    • A detailed, person-centered POC is on file for every client.
    • The POC is signed and dated by the client (or their representative) and a clinical supervisor.
    • The POC is regularly reviewed and updated to reflect any changes in the client’s condition or needs (a static, unchanged POC for a year is a major red flag).
    • All services being provided are explicitly listed and authorized in the POC.
  • Authorizations & Communication:
    • A valid authorization from the payer (MCO, state agency) is on file for all services being billed.
    • A system is in place to track authorization units and expiration dates to prevent billing for unapproved services.
    • A log of all significant communication with the client, their family, and their care team is maintained.

Pro-Tip: The link between the POC and the service delivered is critical. Auditors will compare caregiver visit notes and EVV data directly against the tasks listed in the POC. If the POC says “light housekeeping” but your visit notes mention “transportation,” you have a compliance gap.

Part 3: Visit Verification & Service Delivery (EVV)

The 21st Century Cures Act made Electronic Visit Verification (EVV) mandatory, and it’s now the primary source of truth for auditors verifying service delivery.

  • EVV Data Integrity:
    • Your EVV system captures all six federally required data points for every visit:
      1. Type of service performed
      2. Individual receiving the service
      3. Date of the service
      4. Location of service delivery
      5. Individual providing the service
      6. Time the service begins and ends
    • Your system also captures any additional data required by your specific state or MCOs.
  • Process & Exception Handling:
    • You have a clear, documented process for managing EVV exceptions (e.g., late clock-ins, missed clock-outs, visits performed outside the geofence).
    • All edits or manual entries are properly justified with notes and approved by a supervisor. Auditors scrutinize manual entries.
    • Caregiver visit notes are completed for every visit, are legible (if handwritten), detailed, and signed/dated.

Pro-Tip: Your EVV system should be your best friend during an audit. With a platform like HangZone Care, you can instantly pull audit-ready reports that show every verified visit for a specific client, complete with timestamps, GPS verification, and caregiver notes, turning a multi-day data-pulling exercise into a few clicks.

Part 4: Billing & Financial Documentation

This is where everything comes together. Billing errors are low-hanging fruit for auditors. Your goal is to create “clean claims” that are a perfect reflection of the authorized, verified services.

  • Claim Accuracy:
    • The dates and times on the claim precisely match the verified start and end times from your EVV system.
    • The caregiver listed on the claim is the same one who performed the visit according to EVV.
    • You have a robust process for reviewing all claims for accuracy before they are submitted.
  • Financial Records:
    • Records of all submitted claims are maintained and easily accessible.
    • Remittance advice and Explanation of Benefits (EOBs) are saved and reconciled against claims.
    • You have a documented process for investigating, appealing, and resolving denied claims.

Pro-Tip: Using separate systems for scheduling, EVV, and billing is the number one cause of billing errors. When data has to be manually transferred or re-entered, mistakes are inevitable. An all-in-one system ensures that the approved schedule flows to EVV, and the verified EVV data flows directly to billing, eliminating errors and creating a perfect, auditable trail.

 

Moving Beyond the Checklist: Building Your Culture of Compliance

Checking all the boxes is a fantastic start, but true audit-readiness is a mindset. It’s about creating an environment where compliance is everyone’s responsibility.

  1. Embrace Technology as Your Partner: Stop thinking of your software as just a digital filing cabinet. A powerful, integrated agency management platform is your compliance engine. It automates tracking, flags potential issues in real-time, provides a single source of truth, and generates the reports you need at a moment’s notice.
  2. Conduct Regular Self-Audits: Don’t wait for the official notice. Use this checklist to perform your own internal audits quarterly. Pick a handful of client files and caregiver files and review them from top to bottom. This proactive approach helps you find and fix issues long before they become liabilities.
  3. Prioritize Ongoing Training: Compliance isn’t static. Regulations change. Ensure your team—from caregivers to office staff—receives regular training on documentation best practices, HIPAA, and your agency’s specific policies. When everyone understands the “why” behind the rules, they are more likely to follow them correctly.

An audit may be inevitable, but the stress and panic are not. By using this checklist and fostering a culture of compliance, you can confidently say “we’re ready” whenever the auditors call.

Feeling overwhelmed by this checklist? You don’t have to go it alone. The right technology partner can automate over 80% of these compliance checks. Schedule a free, no-obligation demo of HangZone Care and let us show you how our all-in-one platform can turn your audit-readiness from a checklist into a reality.