Archives     Advertise     Editorial Calendar     Subscribe     Contact Us    



Death Master Crime Fighters


 

Superheroes are often thought of as fictional, costumed crusaders who battle villains, but you need not open a comic book to marvel at the employees in various industries (including healthcare and government) who are fighting crime every day. Their weapon of choice? The Death Master File (DMF).


What is the Death Master File?

The Social Security Administration (SSA) maintains an electronic database called the NUMIDENT (short for "numerical identification") containing information on everyone who's received a social security number (SSN) since issuance began in 1936.

The DMF, a subset of the NUMIDENT, contains more than 86 million death records that the SSA has received from a variety of sources, including funeral homes, postal authorities, banks, states and federal agencies. (Note: The DMF doesn't contain information for every deceased person because many deaths go unreported.)

Per the Freedom of Information Act (FOIA), the SSA is required to release death information to the public. However, Section 205(r) of the Social Security Act exempts state information from the FOIA, thus prohibiting the SSA from disclosing death records provided by states (if a state's record is the sole source of that information) to the public. Therefore, the SSA maintains two versions of the DMF:

  • The full file (shared only with certain federal/state agencies) is made up of all death records from the NUMIDENT, including records received from states.
  • The public file, which is commonly referred to as the Social Security Death Index (SSDI), is provided to the Department of Commerce's National Technical Information Service (NTIS). The NTIS acts as a clearinghouse that sells access to this information to the public (including healthcare entities, insurance companies, federal and state agencies, banks, credit companies, genealogists, etc. that have been certified). The SSDI comprises information from the NUMIDENT, but not the death records that have been provided solely from a state.


Fighting Crime with the DMF

So how do everyday professionals combat crime with the DMF? In short, they help detect and prevent identity theft. Identity theft often involves the fraudulent use of a SSN because of its status as an authenticator of identification for numerous purposes such as obtaining employment and setting up bank accounts. Decedents' SSNs are particularly vulnerable and, thus, a frequent target for identity theft.

Our compliance heroes meticulously and methodically check information they receive in their respective jobs against the DMF to determine if there is fraudulent activity. Examples include:

  • Healthcare
  • Verifying that individuals trying to avoid healthcare sanctions and exclusions are not using a false SSN to obtain employment (onboarding professionals).
  • Performing regular (monthly or quarterly) exclusion screenings to monitor for sanctions (compliance/payer credentialing).
  • Ensuring that services are not being billed to Medicaid and Medicare under a deceased doctor.
  • Ensuring that payments are not made to providers or suppliers for services billed for deceased beneficiaries (surveillance and utilization review staff).
  • Tracking study subjects (medical researchers).
  • Tracking former patients (hospitals, oncologists).
  • Employers
  • Verifying that individuals are not using a false SSN to obtain employment.
  • Other Industries
  • Ensuring that firearms are not being obtained by someone posing as a US citizen (retailers).
  • Determining whether an individual has filed a fraudulent tax return (government).
  • Verifying identity when setting up bank accounts, issuing loans or extending lines of credit (financial institutions).


DMF Restrictions

In the past, some large genealogy companies were providing free online versions of the SSDI, which allowed dishonest individuals to obtain SSNs in order to commit fraud. In 2011, changes to the information that is included in the SSDI were effected (including the removal of state records), and access restrictions were increased.

Then, the Bipartisan Budget Act of 2013 implemented a three-year period (beginning on the date of death) during which only authorized users and recipients who qualify can access a decedent's DMF record. Deaths are also not incorporated into the SSDI until the three-year period is complete. These changes mean that individuals and genealogists can no longer use the FOIA to request social security records for individuals who have died within the past three years.


With Great Power Comes Great Responsibility

To further ensure only the good guys are getting their hands on the confidential database, the NTIS established a certification program for those seeking DMF access. This program, under a final rule effective Nov. 28, 2016, limits access to persons or companies that (1) can prove either legitimate fraud prevention interest, or business purpose pursuant to a law, rule, regulation, or fiduciary duty; (2) have network security procedures in place to safeguard the DMF information; and (3) have experience in maintaining the confidentiality, security, and appropriate use of such information.

Organizations seeking access now must obtain an attestation from an independent third-party Accredited Conformity Assessment Body (ACAB) stating that their information security systems, facilities and procedures are effective to protect the DMF. A service organization control (SOC 2) report can document whether an organization meets those requirements, as it provides detailed information about the controls relevant to the security, availability, and processing integrity of the systems that process user data, as well as the confidentiality and privacy of that information.


By Your Powers Combined...

If your organization is ready to join the ranks of everyday heroes, contact an ACAB to have a SOC engagement performed. Receiving an "unqualified" SOC 2 report is a critical step in obtaining certification so that you, too, can use the DMF to help fight identity fraud.


Moni J. Cook, CPA, CHC, CCSFP, a senior manager in the risk assurance & advisory services practice of KraftCPAs PLLC, has more than 22 years of operational, financial and regulatory experience. KraftCPAs provides clients in the healthcare industry with various services, including audit, tax, accounting, service organization control (SOC), and internal audit. For more information, contact Moni at mcook@kraftcpas.com.






WEB:
KraftCPAs

 
Share:

Related Articles:


Recent Articles

Increasing Number Of Tennesseans Dying From Drug Overdoses

Tennessee Department of Health data show 1,631 Tennesseans died from drug overdoses in 2016, the highest annual number of such deaths recorded in state history. This is an increase from the 1,451 overdose deaths recorded among Tennessee residents in 2015.

Read More

AMA Urges Congress to Take Swift Action to Retain DACA Program Protections

The American Medical Association sent a letter to Congress on Sept. 5 outlining why DACA is an American healthcare issue and urging legislators to take prompt action to ensure individuals with Deferred Action for Childhood Arrivals status are able to remain in the United States.

Read More

New Antiviral Drug Inhibits Epidemic SARS, MERS & More

A multi-institutional team of researchers has found a new antiviral drug candidate that could treat or prevent a number of potential pandemic outbreaks.

Read More

Disaster Preparedness: Are We Ready?

In a world of ever-evolving threats, the officials responsible for a community's health and safety must constantly update, evaluate, prepare and communicate their preparedness plan.

Read More

Addressing Opioid Addiction in America

Even as the AMA works with physicians and other providers to address opioid addiction, the national epidemic continues to evolve.

Read More

Moving Forward on Health Reform

THA's Craig Becker shares the hospital perspective on healthcare reform and what's needed to maintain access to care across Tennessee.

Read More

MGMA Releases 2017 Regulatory Burden Survey: MIPS Tops the List

The results of the Medical Group Management Association (MGMA) 2017 Regulatory Burden Survey reveal there is no shortage of opportunity to reduce regulatory burdens on physician practices.

Read More

In Case of Emergency

On Sept. 8, 2016 the final rule Emergency Preparedness Requirements for Medicare and Medicaid Participating Providers and Suppliers was published in the Federal Register. By Nov. 16, 2017, providers and suppliers must be in compliance.

Read More

Innovative Meharry Program Helps Mothers with Opioid Addiction

The Rainbow Program at Meharry offers pregnant and postpartum women with substance abuse disorders new hope.

Read More

The Osher Center: Healing Mind, Body & Spirit

Multi-faceted approach to pain management blends old and new therapies at The Osher Center for Integrative Medicine at Vanderbilt

Read More

Email Print
 
 

 

 


Tags:
Death Master File, DMF, Fraud, Healthcare Fraud, Identity Theft, KraftCPAs, Moni Cook, NUMIDENT, Social Security Administration, Social Security Number
Powered by Bondware
News Publishing Software

The browser you are using is outdated!

You may not be getting all you can out of your browsing experience
and may be open to security risks!

Consider upgrading to the latest version of your browser or choose on below: