Navigating the HCBS Settings Rule: From Complex Regulation to Operational Clarity

What the HCBS Settings Final Rule Requires

Published in January 2014 and implemented over a decade-long transition, the HCBS Settings Final Rule establishes that settings where Medicaid HCBS are delivered must have specific qualities that ensure participants experience integration in and full access to the greater community, including opportunities to seek employment and work in competitive settings, engage in community life, and control personal resources.

At the operational level, this means:

• All HCBS provider settings must meet federal standards for community integration and individual rights
• Settings that are "institutional in nature" or have institutional characteristics are presumed to not meet the rule and must submit additional evidence to CMS
• Provider sites subject to heightened scrutiny require a formal evidence-submission process to demonstrate compliance
• States must conduct site-level assessments, collect provider self-assessments, and submit transition plans to CMS
• Ongoing monitoring and remediation are required — compliance is not a one-time event

States that don't have a systematic compliance infrastructure will find themselves managing thousands of provider records manually. The Settings Rule isn't just a policy challenge — it's an operational one.

The Operational Complexity States Face

For a state with hundreds or thousands of HCBS provider sites, implementing the Settings Rule systematically requires:

1. A provider site inventory with current contact information, setting type, and service type
2. A structured self-assessment process for each provider site
3. A review and validation workflow for state staff to assess submitted self-assessments
4. A heightened scrutiny identification process that flags settings with institutional characteristics
5. An evidence collection and submission workflow for heightened-scrutiny sites
6. A remediation tracking system for sites that require corrective action
7. CMS-formatted documentation for state transition plan submissions
8. An ongoing monitoring cadence to ensure compliance is maintained over time

Very few states have software built to support all of these workflows in an integrated way. Most are managing this process across combinations of spreadsheets, email chains, and general-purpose document management systems.

How CertifyMed Approaches Settings Rule Compliance

Provider Site Registry

CertifyMed maintains a structured provider site registry that serves as the master record for all settings subject to the rule. Each site record includes setting type, physical address, services provided, current compliance status, and a complete history of assessments and corrective actions.

Digital Self-Assessment Workflows

CertifyMed provides configurable digital self-assessment tools that can be distributed to providers through a secure portal. Providers complete structured questionnaires through a guided interface, upload supporting documentation, and submit directly to state staff for review — eliminating the email-and-spreadsheet cycle.

Heightened Scrutiny Identification and Tracking

CertifyMed automatically flags settings that exhibit characteristics associated with institutional settings: shared staff with other facility types, on-site clinical services, shared ownership with nursing facilities, and other factors enumerated in CMS guidance. Flagged settings are routed into a heightened-scrutiny workflow with the evidence collection and documentation requirements pre-configured.

Remediation Plan Management

For settings that require corrective action, CertifyMed provides a structured remediation tracking module. Remediation plans are created, assigned, and tracked within the platform — with milestone alerts, deadline management, and evidence upload. State staff can see the current status of every open remediation across all providers at a glance.

CMS Documentation and Reporting

CertifyMed generates the documentation required for state transition plan submissions, annual updates, and CMS audit responses directly from the data in the system. Report generation that previously required weeks of manual work can be completed in hours.

Ongoing Compliance vs. One-Time Certification

One of the most important aspects of the CertifyMed approach is that it treats Settings Rule compliance as an ongoing operational discipline rather than a one-time certification exercise. Provider sites are reassessed on configurable intervals. Changes in ownership, staffing, or physical setting trigger automatic reassessment flags. And the remediation and monitoring workflow is continuous.

This is essential because CMS has been clear: states are expected to demonstrate ongoing compliance, not just a clean snapshot at transition plan submission.

Availability

CertifyMed's HCBS Settings Rule Compliance module is available beginning July 1, 2026. Contact us to schedule a demo with our compliance team.