FDR Compliance Resources
Welcome to the Compliance Resource Center for the Central California Alliance for Health's (the Alliance’s) contracted First Tier, Downstream, and Related Entities (FDRs). This page provides critical information and tools to help you meet your compliance obligations under CMS requirements.
At the Alliance, we are committed to conducting business with honesty, integrity, and accountability. Our Compliance Program is designed to support a culture of ethical conduct and regulatory excellence. Through this program, we aim to:
- Reinforce our organization-wide commitment to upholding the highest standards of compliance and ethical behavior
- Prevent, detect, and correct fraud, waste, and abuse (FWA)
- Ensure full compliance with all applicable laws, regulations, and CMS requirements
- We expect all First Tier, Downstream, and Related Entities (FDRs) to share this commitment as essential partners in delivering high-quality care to our Medicare members.
Working with Our First Tier, Downstream, and Related Entities (FDRs)
If your organization performs administrative or health care service functions on behalf of the Alliance’s Medicare Advantage program, you are considered an FDR. This classification applies whether you contract directly with the Alliance or are part of a delegated arrangement through another entity. As an FDR, you play an important role in supporting our compliance with Medicare program requirements and are expected to meet all applicable regulatory obligations.
First Tier, Downstream, and Related Entities are defined by CMS as follows:
First Tier Entity is any party that enters into a written agreement, acceptable to CMS, with an MA Organization or Part D plan sponsor or applicant to provide administrative services or healthcare services to a Medicare eligible individual under the MA program or Part D program.
Downstream Entity is any party that enters into a written agreement, acceptable to CMS, with persons or entities involved with MA benefit or Part D benefit, below the level of the arrangement between an MA organization or applicant or a Part D plan sponsor or applicant and a first tier entity. These written arrangements continue down to the level of the ultimate provider of both health and administrative services
Related Entity means any entity that is related to the MA or Part D sponsor by common ownership or control and:
- Performs some of the MA organization or Part D plan sponsor’s management functions under contract or delegation; or
- Furnishes services to Medicare enrollees under an oral or written agreement; or
- Leases real property or sells material to the MA organization or Part D plan sponsor at a cost of more than $2,500 during a contract period.
These definitions are established in 42 CFR §§ 422.500 and 423.501 and further clarified in Chapter 9 (Part D) and Chapter 21 (Part C) of the Medicare Managed Care Manual.
Designation of a Compliance Officer
As part of our ongoing commitment to compliance and ethical conduct, the Alliance has designated a Compliance Officer who is responsible for overseeing our Compliance Program and ensuring adherence to all applicable state and Federal regulations. If you have any questions, concerns, or would like to report a potential compliance issue, you may contact our Compliance Officer directly:
- Jenifer Mandella
Chief Compliance Officer, Central California Alliance for Health (“the Alliance”)
Mailing Address:
Central California Alliance for Health
1600 Green Hills Road
Scotts Valley, CA 95066
You may also report issues anonymously on the Alliance website: Report Compliance and Fraud, Waste and Abuse Concerns
- Our Compliance Program ensures that we and our FDRs comply with all applicable Medicare regulations, including fraud, waste, and abuse (FWA) prevention.
- FDRs must operate in accordance with:
- Medicare Parts C & D Compliance Program Guidelines (42 CFR §§ 422.503 and 423.504)
- CMS’s Chapter 9 (Part D) and Chapter 21 (Part C) Compliance Manuals
- Federal and state laws governing healthcare services
- Alliance Compliance Plan
- Compliance Policies
- FDRs are expected to adopt and follow our Code of Conduct or implement an equivalent one.
- You must review and comply with our key compliance policies.
- Alliance Code of Conduct
- Compliance Policies & Procedures
- FDRs must complete CMS-mandated General Compliance and FWA Training within 90 days of contracting and annually thereafter.
- Training is required for all current employees including permanent, temporary, full-time, and part-time employees, volunteers (e.g., unpaid interns), consultants, and other persons who have job duties related to Medicare Advantage (Part C) and/or Prescription Drug (Part D) business, and members of the governing body.
- CMS Medicare Learning Network (MLN) Fraud Training: Combating Medicare Parts C & D Fraud, Waste, & Abuse
- FDRs are required to screen their employees, contractors, and subcontractors prior to hire/contract and monthly thereafter against:
- OIG List of Excluded Individuals/Entities (LEIE)
- GSA System for Award Management (SAM)
- Medicare Opt-Out (Providers Only)
- CMS Preclusion List (Providers Only)
- If you suspect fraud, waste, abuse, or other non-compliance, you are required to report it to the Alliance immediately.
- The Alliance strictly prohibits any form of retaliation or retribution against individuals or entities who, in good faith, report concerns, suspected violations of law, regulation, or company policy, or participate in investigations or compliance-related activities.
- Reports may be made anonymously.
- Anonymous Reporting Form: Report Compliance and Fraud, Waste and Abuse Concerns
- In general, the Alliance does not allow offshoring of PHI or PII, exceptions must be reviewed and may be approved by the Privacy Officer.
- FDRs must notify and receive prior approval from the Alliance before utilizing offshore services.
- FDRs are expected to conduct regular internal monitoring, oversight and auditing of the services performed for the Alliance to ensure compliance with applicable laws, rules and regulations is maintained.
- We regularly monitor and audit our FDRs to ensure compliance.
- You must:
- Cooperate with audit requests
- Retain documentation for at least 10 years
- Implement Corrective Action Plans (CAPs) when deficiencies are identified
- FDRs must maintain all records related to work conducted on behalf of the Alliance, including but not limited to training logs, screening records, audit results, CAPs and related correspondence.
- All records must be retained for a minimum of 10 years from the date of service or contract expiration.
- For questions, guidance, or support, please contact:
- Email: [email protected]
- CMS Medicare Managed Care Manuals: Medicare Managed Care Manuals
- CMS FWA Resources: Combating Medicare Parts C & D Fraud, Waste, & Abuse
- OIG Exclusion List: Exclusions | Office of Inspector General | U.S. Department of Health and Human Services
- SAM.gov: Home | SAM.gov
- HPMS Memos: HPMS Memos Archive – Weekly | CMS
- DHCS Program Requirements
- DHCS boilerplate contract & Policy Guide: DHCS 2026 EAE D-SNP SMAC Boilerplate
- DSNP policy guide: DHCS Policy Guide
- California Code of Regulations: California Code of Regulations - California Code of Regulations
- DHCS All Plan Letters: Managed Care All Plan Letters - 1998 to Current
