Home Care EHR: Why Compliance Falls Through the Cracks

Your home care EHR does exactly what it was built to do: store and organize clinical and administrative records. What it cannot do (and was never designed to do) is actively monitor certification expirations, contact employees, and manage renewals in real time. That gap between passive storage and active management is where compliance lapses happen.

Electronic health records excel at record-keeping. They store certifications, document visits, and maintain complete patient records. But they lack the background monitoring, automated outreach, and real-time updates that certification renewal actually requires. When a certification expires, the EHR database reflects the expiration, but no one is automatically flagged. No one is automatically contacted. The record sits as-is until someone discovers the gap during an audit or a claim denial.

The stakes have risen sharply. According to CMS Medicare Fee-for-Service Supplemental Improper Payment Data (2024), the home health improper payment rate reached 6.7%, representing $1.1 billion in projected improper payments. Documentation failures drove 51.4% of those payments. These are not edge cases or freak occurrences. They reflect structural gaps that passive EHR record-keeping was never designed to close.

This article explains what a home care EHR actually does and does not do, walks through the three most common approaches agencies use to track certifications and why all three collapse at scale, and shows how a compliance agent closes the gap alongside your existing system. You do not need to replace anything. You need active management layered on top of what you already have.

Key Findings

• Home care EHRs are storage and documentation tools, not active compliance management systems.
• According to CMS (2024), documentation failures drive 51.4% of home health improper payments, totaling $1.1 billion annually.
• The three most common certification tracking approaches (spreadsheets, calendar reminders, and EHR alerts) all fail as agency size increases.
• Compliance automation monitors expiration dates 24/7, contacts employees automatically, and writes renewals back to your home care EHR without human intervention.
• Agencies using Arya Health's Compliance AI Agent achieve +45% on-time compliance and +33% faster compliance completion. Arya integrates with KanTime, StateWise, WellSky, AlayaCare, and many other common EMRs without replacing them.

What Is a Home Care EHR?

A home care EHR (Electronic Health Record) is a digital system for storing and managing patient and employee records specific to home-based care. In home care operations, the terms EHR and EMR (Electronic Medical Record) are typically used interchangeably, though EMR technically refers to records within a single practice and EHR implies a broader, shareable record set. Common platforms include KanTime, WellSky, StateWise, AlayaCare, Kinnser, and PointClickCare.

Your home care EHR handles essential functions:

• Stores visit notes and clinical documentation
• Manages scheduling and assignments
• Tracks billing and revenue cycles
• Holds employee credentials, certifications, and licenses
• Records patient assessment data and compliance metrics

Your EHR excels at these functions because they are record-keeping tasks. But certification renewal requires something different: monitoring that a date is approaching, initiating outreach to the employee, collecting updated documentation, and writing it back to the record. Your EHR is not designed to do any of that independently.

Arya Health's Compliance AI Agent closes this gap. It reads from your EMR, monitors expiration dates 24/7, contacts employees automatically when renewal deadlines approach, collects updated certifications, and writes them directly back to your record in real time. Your EHR remains your system of record. The agent becomes your system of action.

Why Home Care EHR Compliance Matters More in 2025

Enforcement Pressure Is Accelerating

Home care agencies have always managed certifications. What is new is the intensity of federal scrutiny. According to McKnight's Home Care (2025), the Office of Inspector General is escalating EVV compliance audits across the sector. The 2025 National Health Care Fraud Takedown, announced by the Department of Justice (2025), charged 325 defendants across 50 federal districts with more than $14 billion in intended loss. The home care sector is explicitly named as a primary enforcement focus.

A lapsed certification is no longer just an administrative inconvenience. It can trigger a failed audit, a claim denial, or a surveyor finding that restricts operations. And because your EHR often stores both employee credentials and patient-specific certification requirements in separate places, mismatches between what a caregiver holds and what a patient needs are easy to miss until an auditor finds them.

Documentation Failures Now Have a Dollar Figure

The financial impact of non-compliance is measurable and substantial. According to CMS Medicare Fee-for-Service Supplemental Improper Payment Data (2024), documentation failures drove 51.4% of the $1.1 billion in home health improper payments. Medical necessity failures drove another 33.7%. That is a direct cost tied to incomplete or inaccurate records, not a theoretical risk.

Agencies using Arya's Compliance AI Agent achieve +45% on-time compliance and a 25% reduction in compliance errors. These improvements reflect the gap between manual processes and what active monitoring can accomplish.

Workforce Turnover Makes Manual Tracking Impossible at Scale

Home care turnover is punishing. According to the Activated Insights 2024 Benchmarking Report, home care turnover reached 79.2% in 2024. That churn means a large portion of your workforce changes every year, and each new hire brings a fresh set of certifications that must be tracked, renewed, and verified.

At 50 caregivers, an admin can manually track expirations. At 200 or 500, the volume exceeds what any human team can manage without systematic support. Every lapse is a math problem, not a failure of attention. Passive systems like spreadsheets, calendar reminders, and EHR alerts do not scale because they require someone to see, decide, and act on every single event.

How Compliance Falls Through the Cracks: Three Broken Approaches

Approach 1: Manual Spreadsheets

The Setup: Someone builds a spreadsheet. Rows are caregivers. Columns are certification types and expiration dates. When the agency has 20 employees, this works. The owner knows everyone.

Where It Breaks: At 100 caregivers across multiple locations, the spreadsheet becomes fragile. Updates depend on someone remembering to update it. When a caregiver is reassigned to a patient with different credential requirements, cross-referencing the spreadsheet against current assignments requires manual detective work every single time. When the owner leaves the agency, context leaves with them. The next person cannot easily distinguish between which lapses are urgent and which are not.

The Real Problem: A spreadsheet is not a compliance system. It is a compliance record that requires constant human intervention to stay accurate. At scale, it is a structural liability, not a functioning tool.

Approach 2: Calendar Reminders

The Setup: Someone sets a reminder 30 days before a certification expires. The reminder fires. An admin follows up with the employee. The employee renews the cert. Problem solved.

Where It Breaks: Reality is messier. Employees do not always respond to the first follow-up. Certifications have different lead times. Some require multi-week courses. Some certifications matter only for specific patient assignments, so their urgency depends on scheduling, not just the calendar date. Calendar reminders have no context. They fire on a date and assume a linear process that almost never exists.

The Real Problem: Calendar reminders treat every expiration as equally urgent and require a human to manually execute every step after the reminder fires: outreach, follow-up, collection, and posting. Each step is a potential failure point.

Approach 3: EHR Native Alerts

The Setup: Most modern EHRs include expiration alerts. A flag appears in the employee record. A report surfaces all caregivers with credentials expiring in the next 30 or 60 days. The features work as designed.

Where It Breaks: An alert appearing in a dashboard is not the same as a renewed credential appearing in the record. The EHR can surface the flag, but it cannot decide who is responsible for follow-up, cannot contact the employee, cannot collect the renewal, and cannot write it back. In a busy agency, flags go unread. Reports get run but not actioned. The alert fired. The human follow-up never happened. The expiration date passed.

The Real Problem: EHR alerts surface data without enabling action. The gap between "I now know there is a problem" and "I have fixed the problem" is entirely manual. That gap is where most lapses actually occur.

New 2025 Requirements Your EHR Alone Cannot Handle

OASIS All-Payer Reporting Is Now Mandatory

Beginning July 1, 2025, CMS (2025) requires mandatory OASIS all-payer data collection and submission for all eligible home health patients, regardless of pay source. This expands documentation requirements beyond Medicare patients to include Medicaid and private-pay patients who were previously outside OASIS reporting obligations. All home health agencies must achieve a quality reporting compliance rate of 90% or above.

This creates a new documentation burden. Your EHR can record the assessment. That is different from ensuring the assessment was completed on time. Recording is a storage function. Monitoring completion rates requires active tracking. Agencies that have not updated their compliance processes to include OASIS completion as a tracked metric are running under an outdated model.

EVV Non-Compliance Now Causes Direct Claim Denials

Electronic Visit Verification is mandatory, and state compliance thresholds are tightening. State Medicaid agencies are setting specific accuracy thresholds. Pennsylvania requires at least 85% of EVV records to be verified without manual edits. Illinois requires providers to reach 75% compliance by September 30, 2025. The direct consequence of falling short is Medicaid claim denial for visits that do not meet EVV standards.

Your EHR records the visit. Whether the EVV data meets state-specific accuracy requirements is a separate operational question. Agencies treating EVV as a checkbox rather than an ongoing compliance metric often discover the gap during an audit, not during routine operations.

Getting Started with Arya Health's Compliance AI Agent

Arya Health's Compliance AI Agent closes the gap between EHR storage and active compliance management without requiring you to replace your current system.

Step 1: Connect to your existing EMR. Arya integrates with KanTime, Statewise, WellSky, AlayaCare, and many other common EMRs. Your existing system stays exactly as it is. The agent reads from your EMR to pull current certification records, employee profiles, and patient-specific certification requirements.

Step 2: The agent maps certifications to patient requirement. Not all certifications matter equally for all caregivers. The Compliance AI Agent factors in which certifications are hard blockers vs soft blockers and will prevent out-of-compliance caregivers from being able to schedule shifts.

Step 3: Automated outreach begins before expirations occur. The agent contacts employees about upcoming expirations directly, with no admin trigger required. It operates 24/7, unconstrained by business hours or staff availability. Follow-up happens automatically if the first contact does not produce a renewal.

Step 4: Renewals are collected and written back to the EMR. When an employee submits an updated certification, the agent writes it directly back to your EMR, with admin approval. No one needs to log in, locate the employee record, and manually post the document. This process delivers +33% faster compliance completion.

Step 5: Full visibility with zero manual execution. Your compliance team retains visibility into the status of every certification. You see what is current, what is pending, what is being actively managed. You are not trading oversight for automation. The system maintains 99.999% uptime, which means monitoring never stops.

Best Practices for Home Care EHR Compliance Management

1. Separate your storage system from your action system. Your EHR is the right place to store certification records, but the renewal process needs a separate system of action. Treat your EHR as the source of truth and a compliance agent as the system that acts. Trying to run compliance through your EHR alone means asking your record-keeping tool to do a job it was not built for.

2. Build renewal timelines around patient needs, not just expiration dates. A certification expiring in 60 days for a caregiver with no current patient assignments requiring that credential is different from the same expiration for someone actively assigned to three patients who require it. Your process should reflect that difference. Generic 30-day reminders treat all expirations as equally urgent, which means truly urgent lapses get buried in noise.

3. Automate follow-up, not just initial contact. The first reminder is easy. Compliance breaks down when an employee does not respond to initial outreach. A manual process requires someone to notice the non-response and send a second message. An automated system tracks non-response and follows up without human intervention. That second and third contact is where most renewals get completed.

4. Audit your EHR data quality before adding automation. Compliance automation is only as accurate as the data it reads. Before deploying a compliance agent, verify that your EMR records reflect current credentials, that patient assignment records are accurate, and that expiration dates are entered correctly. A one-time audit before going live improves automation accuracy significantly. Garbage in, garbage out.

5. Track OASIS completion as a compliance metric. With CMS (2025) requiring a 90% quality reporting compliance rate, OASIS timeliness is now a financial performance issue, not just a documentation task. Build OASIS completion into your regular compliance monitoring alongside certification expirations.

Common Mistakes

Mistake 1: Assuming your EHR's built-in alerts are enough. EHR alerts surface data without fixing the underlying problem. Agencies relying solely on EHR notifications frequently discover lapses after the fact, when an auditor flags the record or a billing denial traces back to an expired credential. The alert fired. The follow-up never happened. Passive awareness is not the same as active management.

Mistake 2: Treating compliance as an administrative task instead of an operational system. When compliance tracking lives in one person's spreadsheet or calendar, it fails the moment that person leaves, gets sick, or gets distracted. A compliance system should run independently of any individual. It should monitor, contact, and update on its own, with your team providing oversight rather than executing every step.

Mistake 3: Waiting until after an audit to fix the process. The time to address a compliance gap is before an auditor finds it. According to McKnight's Home Care (2025), the OIG is actively increasing EVV compliance audits. Agencies still relying on manual processes are operating with known gaps. The cost of a corrective action plan or claim denial is almost always higher than the cost of the system that would have prevented it.

Mistake 4: Missing the OASIS all-payer expansion. Many agencies built compliance processes around Medicare-only OASIS requirements. The July 2025 expansion to all-payer reporting broadens documentation obligations to a much larger patient population. Agencies that have not updated their compliance monitoring to reflect this change are running under an outdated model and will show gaps at the next survey.

Frequently Asked Questions

Does a home care EHR manage compliance automatically? No. Home care EHRs store data and can surface alerts, but they do not initiate outreach, follow up on non-responses, or update records automatically. Active compliance work still requires human intervention unless a separate compliance agent is added on top.

What is the difference between an EHR and a compliance management system? An EHR is a record-keeping system. A compliance management system actively monitors records, contacts employees about expirations, and updates credentials when renewals arrive. They solve different problems and work best together rather than as substitutes.

Do I need to replace my EHR to use Arya Health's Compliance AI Agent? No. The Compliance AI Agent integrates with WellSky, AlayaCare, and 11 other EMRs without replacing them. It reads from your existing system, performs outreach, and writes updates back to your EMR in real time. Your current EHR remains your system of record.

How does the Compliance AI Agent know which certifications are urgent? The agent factors in the specific certifications required per patient assignment. A certification expiring for someone with no current patient requirement is treated differently from one expiring for someone actively assigned to patients who require that credential. This context-aware prioritization is something generic calendar reminders cannot replicate.

What results do agencies typically see? Agencies achieve +45% on-time compliance, a 25% reduction in compliance errors, and +33% faster compliance completion. The payback period is 3.5 months for agencies adopting the Compliance AI Agent.

How does the new OASIS all-payer requirement affect my home care EHR compliance obligations? Beginning July 1, 2025, OASIS data collection is mandatory for all eligible patients regardless of pay source (CMS, 2025). This expands requirements beyond Medicare patients. CMS requires agencies to achieve 90% quality reporting compliance. Agencies that fall short face financial penalties under the Home Health Value-Based Purchasing program.

Is the Compliance AI Agent available outside business hours? Yes. The agent operates 24/7 and maintains 99.999% uptime. It contacts employees and processes renewals on its own schedule, regardless of your agency's hours.

Key Takeaways

• A home care EHR stores records but does not actively manage compliance, a critical distinction because the gap between storage and action is where certification lapses occur.
• According to CMS (2024), documentation failures caused 51.4% of the $1.1 billion in home health improper payments. The enforcement environment is tightening.
• Spreadsheets, calendar reminders, and EHR alerts all share one structural flaw: they require humans to manually execute every action step after the initial alert.
• Beginning July 1, 2025, OASIS all-payer reporting is mandatory for all eligible patients, and CMS requires a 90% quality reporting compliance rate.
• Compliance automation monitors expiration dates 24/7, initiates outreach automatically, and writes renewals back to your home care EHR without admin intervention.
• Agencies using Arya Health's Compliance AI Agent achieve +45% on-time compliance and +33% faster compliance completion.
• You don’t need to replace your EHR. The Compliance AI Agent integrates alongside your existing system and handles the active management your EHR was never designed to perform.

Ready to close your compliance gap? Book a demo to see how Arya's Compliance AI Agent works alongside your existing home care EHR.

Sources

1. Arya Health - Product Performance Data
2. CMS Medicare Fee-for-Service Supplemental Improper Payment Data (2024)
3. McKnight's Home Care (2025)
4. Department of Justice - 2025 National Health Care Fraud Takedown
5. Activated Insights 2024 Benchmarking Report
6. CMS OASIS All-Payer Reporting Mandate (2025)
7. Illinois Department of Healthcare and Family Services - Electronic Visit Verification

‍