Who are these healthcare compliance scenarios for?

Hospitals, health systems, physician practices, clinics, medical groups, ambulatory and post-acute providers, healthcare staffing firms, and the compliance, HR, and revenue-cycle teams that support them.

Healthcare Compliance Scenarios

Compliance Scenarios for Hospitals, Health Systems, and Physician Practices

Q: What are the main compliance risks healthcare employees face?

Four come up repeatedly on the provider side: improperly accessing patient information (HIPAA), accepting meals and gifts from manufacturers (the Sunshine Act / Open Payments), conflicts of interest and referral arrangements (the Anti-Kickback Statute and Stark Law), and billing federal payers for more than was provided (the False Claims Act).

Q: How are these different from generic compliance training?

They are set provider-side, in realistic clinical and administrative moments, and they name the specific statutes healthcare teams are measured against — HIPAA, the Sunshine Act, the Anti-Kickback Statute, Stark Law, and the False Claims Act — rather than teaching rules in the abstract.

The same topics you already train on — privacy, gifts, conflicts, fraud — look different on a hospital floor or in a practice. These put them where care actually happens, and name the statutes healthcare teams are measured against: HIPAA, the Sunshine Act, the Anti-Kickback Statute and Stark Law, and the False Claims Act.

Quick Answer

What are the main compliance risks healthcare employees face?

Four come up again and again on the provider side: improperly accessing patient information (HIPAA), accepting meals and gifts from manufacturers (the Sunshine Act / Open Payments), conflicts of interest and referral arrangements (the Anti-Kickback Statute and Stark Law), and billing federal payers for more than was provided (the False Claims Act). Each carries real personal and organizational exposure — and each turns on a recognition that’s easy to miss in the moment.

Browse the four below, or see the full Scenario Library and the Decision-Ready Employees approach.

The Same Rules, in the Setting They Actually Land

A generic privacy course doesn’t teach a tech what “minimum necessary” means when a patient everyone’s talking about is two doors down. A generic gifts policy doesn’t prepare a physician for the rep’s dinner invitation that quietly becomes a public Open Payments entry. The recognitions are specific to healthcare, and so are the consequences.

Why the Statute Matters

In healthcare, the line a decision crosses usually has a name — HIPAA, the Sunshine Act, the Anti-Kickback Statute, Stark, the False Claims Act — and naming it is what turns “that felt off” into “here’s the rule and here’s the call.”

Each scenario is set on the provider side, at the fictional Calderwynn Health, and written for the recognition and compliance a leader wants their people to have before the moment arrives — not a definition they memorize afterward.

Four Healthcare Scenarios

Four pillars, four distinct statutes. Run them independently or as a set.

HIPAA — Patient Privacy

A Patient Everyone’s Talking About Just Got Admitted. Is One Look Really a Problem? →

A care tech with access to the chart is tempted to peek at a high-profile patient’s record. Three choices and the right answer on the HIPAA minimum-necessary standard, audit trails, and why curiosity is not a work reason.

Sunshine Act — Gifts & Open Payments

The Drug Rep Wants to Take the Whole Team to Dinner. Does It Really Get Reported? →

A pharmaceutical rep offers the team a nice dinner. Three choices and the right answer on the Sunshine Act / Open Payments, reportable transfers of value, and the Anti-Kickback shadow behind “it’s just a meal.”

Conflicts of Interest — Anti-Kickback / Stark

My Spouse Works for the Drug Company We’re About to Add to the Formulary. Do I Need to Say Anything? →

A physician on the formulary committee has a household financial tie to a supplier under review. Three choices and the right answer on disclosing and managing a conflict of interest, and the Anti-Kickback and Stark exposure behind “I can stay objective.”

False Claims Act — Billing & Coding

I’m Told to Bill Every Visit a Level Higher “Because the Doctor Probably Did the Work.” Is That Just Aggressive Coding? →

A coder is pressured to upcode under productivity targets. Three choices and the right answer on the False Claims Act, coding what’s documented, individual exposure, and the whistleblower risk built into healthcare billing.

How These Fit Your Program

These deeper topics you may already cover elsewhere — see the broader conflicts of interest and anti-corruption scenarios for the cross-industry versions. The healthcare set is for organizations that want the moment, the statute, and the recognition in the setting where their people actually work.

Each scenario runs as a 10–15-minute Decision Brief™ with a team or as self-paced reinforcement. Used as compliance training for health systems and physician practices, the set scales from a single team to an enterprise rollout.

Compliance training built for how care actually works

Run these scenarios with your teams as 15-minute Decision Briefs™, or talk to us about healthcare-specific training.

Explore Decision Briefs →
Contact Xcelus