Why 2026 Is a Turning Point for Medicare Advantage Compliance

Medicare Advantage plans are facing a level of federal scrutiny they have not seen before. The Centers for Medicare and Medicaid Services has made its position clear: Risk Adjustment Data Validation audits are no longer occasional events. They are now an annual reality for virtually every eligible Medicare Advantage organization in the country.

The scale of the shift is significant, and plans that have not yet treated RADV readiness as a core compliance priority are already behind.

Table of Contents

What RADV Audits Are and Why They Matter

A Risk Adjustment Data Validation audit is the mechanism CMS uses to confirm that the diagnosis codes a Medicare Advantage organization submits for risk adjustment are actually supported by medical records. Medicare Advantage plans receive monthly risk-adjusted payments from CMS based on their enrollees’ documented diagnoses. The sicker and more complex the patient population, the higher the payment.

RADV audits verify that documentation holds up. If a diagnosis cannot be validated in the medical record, the plan may be required to repay the associated payment. The financial exposure from unsupported diagnoses has always been real, but the scale of enforcement has changed dramatically in the past year.

A Program Transformed: What Changed in 2025 and 2026

For years, CMS audited only a limited subset of Medicare Advantage plans each year, around 60 contracts annually. In May 2025, the agency announced a sweeping transformation of the program. Going forward, all eligible Medicare Advantage contracts would be audited every year. That figure sits at approximately 550 plans.

CMS simultaneously announced plans to expand its medical coder workforce from 40 to approximately 2,000 by September 2025, and to introduce AI-enabled tools to support coder efficiency, while maintaining that all final overpayment determinations would be made by certified human coders. Sample sizes per plan also expanded, from a fixed 35 records to between 35 and 200 depending on contract size.

Payment Year 2020 audits were initiated in February and March 2026, with CMS committed to working through the backlog of payment years 2018 through 2024. Federal estimates place annual MA overpayments at approximately 17 billion dollars, with the Medicare Payment Advisory Commission suggesting the figure could be as high as 43 billion dollars annually. The scale of that number explains why CMS is moving with urgency.

Understanding what this enforcement environment means for your organization is not optional. A well-researched analysis of the 2026 landscape, including the January CMS memo updates, extrapolation methodology questions, and what plans should be doing now, is available through Raapidinc’s detailed guide on RADV audits.

The Extrapolation Question and Its Legal Uncertainty

One of the most consequential developments in recent RADV history is the question of extrapolation. CMS’s 2023 RADV Final Rule established that audit findings would no longer be limited to the sampled records. Instead, error rates identified in a sample could be projected across an entire contract for that payment year.

In September 2025, a federal court vacated portions of that 2023 Final Rule on procedural grounds. CMS appealed the decision in November 2025 and has made clear that audits will continue regardless of the litigation outcome. The January 27, 2026 CMS memo confirmed ongoing audit activity and outlined operational adjustments made in response to stakeholder feedback, including a restored five-month medical record submission window.

Plans should not interpret the legal uncertainty as a reduction in risk. CMS has stated its commitment to completing the audit backlog and strengthening oversight of the MA program, and the infrastructure to do so is now substantially in place.

What Medicare Advantage Organizations Must Do Now

The practical implications for MAOs are substantial. Receiving a RADV audit notice means responding to medical record requests for a sample of enrolled beneficiaries, locating documentation that validates each audited HCC code, and submitting records within the defined window. With sample sizes potentially reaching 200 records per contract and multiple payment years being audited in a compressed timeframe, the administrative burden is significant.

The strongest defence against adverse audit findings is not reactive. It is a proactive approach to documentation quality, coding accuracy, and internal audit processes built into routine operations rather than mobilised only when a CMS notice arrives.

Plans that maintain high-quality, validated documentation continuously are better positioned to withstand scrutiny than those that scramble to locate records after the fact. This is not simply a compliance principle. It is a financial reality given the exposure that extrapolation creates, even under an evolving legal framework.

For those wanting to understand the regulatory framework in greater depth, the Medicare policy research available through peer-reviewed and academic sources provides a useful grounding in how risk adjustment policy has evolved and where it is heading.

The Role of Documentation in Reducing Audit Risk

The MEAT criteria, which stands for Monitoring, Evaluation, Assessment, and Treatment, is the standard CMS uses to determine whether a documented diagnosis meets the threshold for risk adjustment. A diagnosis that appears in a chart without evidence that it was actively addressed during the encounter may not hold up under audit.

Physicians and clinical documentation improvement specialists play a central role in ensuring that records reflect the actual complexity of patient care. Diagnoses should be specific, current, and supported by clinical evidence within the record. Generic or incomplete entries are among the most common reasons a diagnosis fails validation.

Retrospective chart review processes, when used to identify and close documentation gaps before an audit sample is submitted, can make a meaningful difference in validation rates. These are not workarounds. They are a legitimate and encouraged part of the submission process.

Technology and the Shift Toward Year-Round Readiness

The scale of the 2026 audit program makes manual tracking and spreadsheet-based management genuinely inadequate for most organisations. Plans managing multiple payment year audits simultaneously, with submission windows, record retrieval timelines, and HCC-level tracking across hundreds of beneficiaries, need purpose-built infrastructure to do it efficiently.

Specialist RADV audit management platforms have emerged to address exactly this challenge. The best ones provide submission workflow visibility, prioritise which records to retrieve and submit first, surface potential documentation gaps, and give compliance leaders and executive teams a real-time view of audit status and projected financial exposure.

CMS has signalled clearly that RADV audits are a long-term enforcement priority, not a temporary initiative. The organisations that build sustainable compliance infrastructure now will be significantly better positioned as the audit pace continues to accelerate.

Final Thoughts

The 2026 RADV landscape represents a structural change in how Medicare Advantage compliance works. Annual audits across all eligible contracts, expanded sample sizes, AI-assisted coding reviews, and a compressed backlog recovery timeline have combined to create an environment that rewards preparation and penalises reactive approaches.

Plans that understand the requirements, maintain documentation quality, and invest in the right audit readiness tools are the ones best placed to manage this environment. The information to make those decisions well is available. The question is whether organisations are acting on it in time.

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Connecting together in knowledge, advancing together in health

Related Stories

What Do Speech-Language Professionals Actually Do?

Migraine vs Headache: Why Light Sensitivity is Different

How Do Supplement and Health Brands Plan a 1-Day “Content Sprint” Using the Right On-Camera Talent?

A Complete Guide to Intravenous Nutrient Therapy for Athletic Recovery in 2026

Short-Term vs Long-Term Physiological Responses to Psychoactive Substances

Why Medical Treatment in Poland is the Smart Choice for International Patients

Psilocybin Edibles Guide: Finest Chocolates, Gummies, and Bars in Toronto

Leading MIT Products To Try in 2026

Rapamycin Supplement: A Deep Dive Into Its Science, Benefits, and Considerations

Daily Supplements for Men: Enhancing Your Health

Our address: