Medical Billing Audits: What Every Practice Manager Needs to Know Before Revenue Walks Out the Door
By Nasar Haq | June 29, 2026 | 14 min read | Updated: June 29, 2026
Quick Summary: The average practice has 7–12% of its revenue sitting in correctable billing errors that nobody has found yet. A billing audit finds them. Here’s what an audit actually examines, what it costs, and when your practice needs one.
Every medical practice has a billing process. Most assume it's working well enough. But "well enough" in medical billing means you're probably leaving 7–12% of your collectible revenue on the table — not from insurance paying too little, but from your own billing operation making preventable errors that nobody catches until the money is gone.
A medical billing audit is the only way to know for certain whether your billing process is capturing everything it should. It's not a compliance formality or an accounting exercise. It's a financial diagnostic that reveals exactly where your practice is losing revenue — and exactly how much.
- 7–12% Revenue in Correctable Errors - Found in the average practice audit
- $40K–$120K Annual Recoverable Revenue - Typical mid-size practice finding
- 63% Practices Never Audit - Per MGMA survey data
- 10–15% Average Denial Rate - Industry avg — best-in-class is under 5%
What a Medical Billing Audit Actually Is
A medical billing audit is a systematic review of your practice's billing operations — from the way charges are captured in the exam room to the way payments are posted and denials are worked. It's not the same as a financial audit (which verifies your accounting) or a HIPAA audit (which checks security controls). A billing audit specifically examines whether your practice is getting paid correctly for the work it performs.
The audit looks at a sample of claims — typically 50 to 200 charts depending on practice size — and compares the documentation, the codes submitted, and the payments received against what should have happened. The gap between "what happened" and "what should have happened" is your revenue exposure.
- Medical Billing Audit
- A structured review of a practice's billing documentation, coding accuracy, charge capture, payment posting, and denial management processes. The purpose is to identify revenue leakage — money lost to coding errors, missed charges, incorrect modifiers, fee schedule misalignment, or unworked denials — and to assess compliance risk against CMS and OIG guidelines.
Why Billing Audits Matter More Than Most Practices Realize
Most practices don't audit their billing. An MGMA survey found that roughly 63% of medical practices have never conducted a formal billing audit. The reason is straightforward: if claims are getting paid, the assumption is that billing is working. But claims getting paid doesn't mean claims are getting paid correctly.
Undercoding is the most common finding in billing audits — not overcoding. Providers who are cautious about compliance often code at a 99213 when their documentation supports a 99214 or 99215. Across a busy primary care practice seeing 25 patients a day, the difference between a 99213 and a 99214 is roughly $40 per visit. That's $1,000 per week per provider, or $52,000 per year — from a single code level on a single visit type.
Beyond coding, audits reveal systemic issues: charges that were rendered but never entered, modifiers that were omitted causing bundling denials, fee schedules that haven't been updated to match current Medicare or commercial rates, and denial patterns that repeat month after month because nobody analyzed the root cause. Each of these issues compounds over time. A billing audit stops the compounding.
The 7 Areas a Billing Audit Examines
A comprehensive billing audit covers seven distinct areas, each with its own revenue impact. A surface-level audit that only checks coding accuracy misses six of the seven.
- Coding accuracy. Are the CPT, ICD-10, and HCPCS codes submitted supported by the clinical documentation? Are E/M levels appropriate for the documented complexity? Are procedure codes specific enough? This area typically reveals 3–5% revenue impact from undercoding alone.
- Charge capture. Are all rendered services making it onto the claim? Missed charges are invisible — they don't show up as denials because they were never submitted. Common misses: ancillary services, add-on codes, same-day labs, and in-office procedures performed during an E/M visit.
- Modifier usage. Are modifiers being applied correctly? Modifier 25 on E/M visits with same-day procedures, modifier 59 for distinct services, laterality modifiers (RT/LT), and global period modifiers (24, 78, 79). Incorrect modifier usage is the #1 cause of claim denials across specialties.
- Fee schedule alignment. Is your practice's fee schedule aligned with current Medicare and commercial payer rates? Many practices set fee schedules once and never update them, resulting in systematic underpayment on every claim for years.
- Denial pattern analysis. What's getting denied, why, and how often? Are denials being appealed within payer deadlines? A healthy practice has a denial rate under 5%. If yours is 8–15%, the audit identifies the specific root causes and quantifies the revenue impact.
- AR aging analysis. How much of your accounts receivable is past 90 days? What percentage is being written off? Is follow-up happening systematically or only when staff have time?
- Compliance risk assessment. Are there patterns that could trigger a payer audit or OIG investigation? Consistent upcoding patterns, unusual modifier usage, or claim volumes that deviate from peer benchmarks are all red flags the audit evaluates.
| Audit Area | What It Finds | Typical Revenue Impact | Frequency of Issues |
|---|---|---|---|
| Coding Accuracy | Undercoded E/M levels, incorrect procedure codes | 3–5% of total charges | Found in 70%+ of audits |
| Charge Capture | Services rendered but never billed | 2–4% of total charges | Found in 60% of audits |
| Modifier Usage | Missing or incorrect modifiers causing denials | 1–3% denial increase | Found in 80% of audits |
| Fee Schedule | Rates below Medicare or contract allowables | 2–6% underpayment | Found in 50% of audits |
| Denial Patterns | Systematic denial root causes | Varies — often $30K–$80K/year | Found in 90% of audits |
| AR Aging | Unworked claims aging past collection windows | 5–15% of over-90 AR | Found in 75% of audits |
| Compliance Risk | Patterns flagged by OIG Work Plan | Potential recoupment exposure | Found in 40% of audits |
Internal vs. External Audits: Which One You Need
Internal audits are conducted by your own billing team or a designated compliance officer. External audits are conducted by an independent third party — a billing company, consulting firm, or compliance specialist. Both serve a purpose, but they catch different things.
Internal vs. External Billing Audits
Internal Audit
- Conducted by your own staff or compliance officer
- Lower cost — uses existing resources
- Good for ongoing monitoring and spot checks
- Can be done quarterly or monthly on small samples
- Limited by the team's own blind spots — the same process that created the errors is reviewing them
- May miss fee schedule misalignment and industry benchmarks
External Audit
- Conducted by independent billing experts
- Higher cost — typically $3,000–$15,000 depending on scope
- Best for comprehensive baseline assessment
- Should be done annually or when performance metrics decline
- Brings outside perspective and cross-practice benchmarks
- Identifies systemic issues internal teams overlook
The ideal approach is both: an annual external audit for comprehensive assessment, supplemented by monthly or quarterly internal spot audits on 10–20 charts to catch issues between the full reviews. If your practice has never been audited externally, start there — the baseline findings will shape your internal audit checklist going forward.
Red Flags That Mean You Need an Audit Now
Annual auditing is a best practice, but certain signals indicate your practice needs one immediately — not on a schedule, but right now. These aren't subtle indicators. They're active symptoms of billing problems that are costing your practice money every day they go unaddressed.
- Denial rate above 8%. The industry benchmark for a well-managed practice is under 5%. An 8%+ denial rate means systemic issues in coding, eligibility verification, or claim submission that a billing audit will identify and quantify.
- AR over 90 days exceeds 20% of total AR. Healthy practices keep less than 15% of their AR past 90 days. When the over-90 bucket grows, claims are aging past their recovery window and revenue is expiring.
- Revenue flat or declining despite stable or growing patient volume. This is the clearest sign of billing underperformance. If you're seeing more patients but collecting the same or less, the problem is almost certainly billing execution — undercoding, missed charges, or payer contract issues.
- New provider added without a corresponding revenue increase. A new provider should generate $200,000–$500,000+ in annual collections depending on specialty. If revenue didn't jump proportionally, the new provider's billing may be systematically undercoded or their payer enrollment may be incomplete.
- Billing staff turnover in the past 12 months. When billing staff leave, institutional knowledge leaves with them. New staff may not know your specialty's coding nuances, payer-specific rules, or denial appeal workflows. An audit catches what fell through the cracks during the transition.
- No audit has ever been performed. If your practice has been operating for 3+ years without a billing audit, the probability of revenue leakage is near-certain. The question isn't whether issues exist — it's how large they are.
What a Medical Billing Audit Costs
The cost of a billing audit depends on the scope, the size of the practice, and who conducts it. But in almost every case, the audit pays for itself in recovered revenue within the first 90 days of implementing its findings.
| Audit Type | Typical Cost | Scope | Best For |
|---|---|---|---|
| Focused coding audit (50 charts) | $2,000–$5,000 | Coding accuracy only | Practices wanting a quick baseline |
| Comprehensive billing audit | $5,000–$15,000 | All 7 areas — coding, charges, modifiers, fees, denials, AR, compliance | Practices that have never been audited or have declining metrics |
| Ongoing audit program | $1,500–$3,000/quarter | Monthly chart reviews + quarterly reports | Practices that want continuous monitoring |
| Medtransic incoming audit | Included at no cost | 90 days of claims — all 7 areas | Practices evaluating Medtransic as a billing partner |
OIG Compliance: The Risk Most Practices Don't See Coming
The Office of Inspector General (OIG) at the Department of Health and Human Services publishes an annual Work Plan that identifies specific billing patterns under federal scrutiny. These are the areas where the government is actively looking for improper payments, and practices that fall into these patterns without self-auditing face significant financial and legal risk.
Recent OIG Work Plan focus areas include: evaluation and management coding accuracy (especially levels 4 and 5), modifier 25 usage on same-day E/M and procedure claims, place-of-service errors on telehealth claims, and duplicate billing across providers in the same group. A billing audit that includes compliance risk assessment cross-references your claim patterns against these OIG focus areas to identify exposure before an external audit finds it for you.
What to Expect from the Audit Process
A comprehensive billing audit typically takes 2–4 weeks from start to final report, depending on the size of the practice and the scope of the review. Understanding the process helps practice managers prepare and ensures the audit team has everything they need to deliver actionable findings.
- Week 1: Data collection. The audit team gathers claim data, encounter documentation, fee schedules, payer contracts, denial reports, AR aging reports, and coding distribution summaries. The practice provides EHR access or exports for the sample period (typically 90 days).
- Week 1–2: Chart review. The audit team reviews 50–200 randomly selected charts, comparing the clinical documentation against the codes submitted and payments received. Each chart is scored for coding accuracy, charge completeness, and modifier appropriateness.
- Week 2–3: Pattern analysis. Beyond individual chart findings, the audit identifies systemic patterns: denial root causes, coding distribution anomalies, fee schedule gaps, and AR aging trends. This is where the highest-value findings typically emerge.
- Week 3–4: Report and recommendations. The audit produces a detailed report with specific findings, dollar amounts for each revenue impact area, compliance risk assessment, and prioritized recommendations for correction. The best audit reports include an implementation roadmap with expected ROI timelines.
What Happens After the Audit
An audit report is only valuable if its findings get implemented. The most common mistake practices make is paying for an audit, receiving the report, and then filing it away without acting on the recommendations. The revenue leakage continues.
| Practices That Act on Audit Findings | Practices That Don't |
|---|---|
| Fix coding templates and documentation prompts within 30 days | File the report and return to existing processes |
| Update fee schedules to match current payer contracts | Continue billing at the same code distribution |
| Implement denial tracking with root cause categorization | Same denial patterns repeat month after month |
| Retrain staff on modifier rules and charge capture workflows | Revenue leakage compounds over time |
| See 5–12% revenue increase within 90 days | Pay for another audit 2 years later and find the same issues |
The implementation period after an audit is typically 30–60 days for coding and charge capture corrections, and 60–90 days for process changes like denial workflow redesign and fee schedule renegotiation. The revenue impact of these changes should be measurable within one billing cycle.
How Medtransic Conducts Billing Audits
Medtransic offers a complimentary 90-day billing audit for practices evaluating our medical billing services. We review 90 days of your claims across all seven audit areas — coding accuracy, charge capture, modifier usage, fee schedule alignment, denial patterns, AR aging, and compliance risk — and produce a detailed report with specific dollar amounts for each finding.
Our audit team includes AAPC-certified coding specialists and specialty-specific billing experts who benchmark your practice's performance against industry standards and peer practices in your specialty. The audit isn't a sales pitch disguised as a review — it's a genuine financial diagnostic that shows you exactly where revenue is being lost, whether you choose to work with Medtransic or not.
For practices that have been operating without an audit, the findings are almost always significant. Our incoming practice audits typically identify $40,000–$120,000 in annual recoverable revenue for mid-size practices (3–7 providers). For larger groups, the numbers scale proportionally. The correctable issues we find most frequently: E/M undercoding (present in 70%+ of practices), missed ancillary charges, fee schedules 2–4 years out of date, and denial rates running 2–3x above the 5% benchmark.
Sources & References
- HHS Office of Inspector General — Annual Work Plan — Federal enforcement focus areas for Medicare and Medicaid billing
- AAPC (American Academy of Professional Coders) — Coding accuracy benchmarks, E/M undercoding prevalence data
- MGMA (Medical Group Management Association) — Practice management benchmarks including denial rates, collection rates, and audit frequency data
- Centers for Medicare & Medicaid Services (CMS) — Fee schedule data, E/M documentation guidelines, compliance requirements
- HFMA (Healthcare Financial Management Association) — Revenue cycle benchmarks and billing audit methodology standards
Frequently Asked Questions
How much does a medical billing audit cost?
A focused coding audit reviewing 50 charts typically costs $2,000–$5,000. A comprehensive billing audit covering coding, charge capture, modifiers, fee schedules, denial patterns, AR aging, and compliance risk costs $5,000–$15,000 depending on practice size. Medtransic offers a complimentary 90-day billing audit for practices evaluating our billing services — covering all seven audit areas at no cost. In almost every case, the audit pays for itself within 90 days through recovered revenue and corrected billing processes.
How often should a medical practice audit its billing?
Best practice is an annual comprehensive external audit supplemented by quarterly internal spot audits of 10–20 charts. However, you should audit immediately if your denial rate exceeds 8%, your AR over 90 days exceeds 20% of total AR, revenue is flat despite growing patient volume, or you've had billing staff turnover in the past 12 months. Practices that have never been audited should prioritize a baseline audit — the probability of finding significant revenue leakage after 3+ years of unaudited billing is near-certain.
What is OIG compliance in medical billing?
OIG compliance refers to adhering to the billing standards and focus areas outlined by the Office of Inspector General at the Department of Health and Human Services. The OIG publishes an annual Work Plan identifying specific billing patterns under federal scrutiny — such as E/M upcoding, modifier 25 misuse, telehealth place-of-service errors, and duplicate billing. Practices that proactively audit against OIG focus areas demonstrate good faith compliance and reduce their exposure to recoupment demands, civil monetary penalties, and False Claims Act liability.
What does a medical billing audit find?
The most common audit findings are: E/M undercoding (found in 70%+ of practices — providers coding conservatively at 99213 when documentation supports 99214 or 99215), missed charge capture for ancillary services and add-on codes, incorrect or missing modifier usage causing avoidable denials, fee schedules that haven't been updated to match current payer contracts, systematic denial patterns with identifiable root causes, and AR aging past collection windows without follow-up. The average practice audit identifies 7–12% of total revenue in correctable errors.
Can a billing audit help with denial management?
Yes — denial pattern analysis is one of the seven core areas a billing audit examines. The audit identifies which denial reason codes appear most frequently, which payers generate the highest denial rates, whether denials are being appealed within payer deadlines, and what root causes are driving the denials. Most practices find that 60–70% of their denials trace back to 3–5 recurring root causes that are straightforward to fix once identified. A practice running a 12% denial rate can typically bring it below 5% within 90 days of implementing audit-driven corrections.
What is the difference between a billing audit and a HIPAA audit?
A billing audit examines your revenue cycle — coding accuracy, charge capture, payment posting, denial management, and fee schedule alignment. Its goal is to identify revenue leakage and billing compliance risk. A HIPAA audit examines your data security and privacy practices — access controls, encryption, breach notification procedures, and business associate agreements. Both are important, but they address completely different risk areas. A billing audit protects your revenue. A HIPAA audit protects your patient data and regulatory standing.
Find Out What Your Billing Is Actually Missing
Medtransic's complimentary 90-day billing audit reviews your coding accuracy, charge capture, denial patterns, fee schedule alignment, and AR aging — with specific dollar amounts for every finding. Most practices discover $40,000–$120,000 in annual recoverable revenue. No obligation — just a clear picture of where your billing stands.