Does CMS Medicare Advantage AI Rule require Human Oversight?
United States • enforcing
Yes — 1 provision
Requirements at a glance
This regulation imposes 5 specific requirements for Human Oversight across 1 provision:
- No sole reliance on AI — AI predictions cannot be sole basis for denying, reducing, or limiting services
- Individual circumstances — Coverage decisions must rely on individual patient history and circumstances, not population-level algorithms alone
- No alteration of public criteria — AI tools may not alter publicly available coverage criteria
- Clinician final say — For post-acute services, an algorithmic length-of-stay prediction cannot alone be the basis for terminating coverage; the member must receive an individualized medical-necessity review and clinical reassessment before denial or termination
- Tool vetting — MA plans remain responsible for ensuring AI/algorithmic tools are used consistently with coverage criteria and applicable law; CMS guidance does not specify a standalone mandated audit requirement
Clinician Oversight Mandate #
FAQ guidance (CMS memo, Feb 6, 2024) interpreting the 2024 MA final rule (CMS-4201-F); not a standalone AI-specific rule
Requirements
| Requirement | Details |
|---|---|
| No sole reliance on AI | AI predictions cannot be sole basis for denying, reducing, or limiting services |
| Individual circumstances | Coverage decisions must rely on individual patient history and circumstances, not population-level algorithms alone |
| No alteration of public criteria | AI tools may not alter publicly available coverage criteria |
| Clinician final say | For post-acute services, an algorithmic length-of-stay prediction cannot alone be the basis for terminating coverage; the member must receive an individualized medical-necessity review and clinical reassessment before denial or termination |
| Tool vetting | MA plans remain responsible for ensuring AI/algorithmic tools are used consistently with coverage criteria and applicable law; CMS guidance does not specify a standalone mandated audit requirement |
Penalties
| Violation | Fine |
|---|---|
| Non-compliance | CMS enforcement; potential plan sanctions |