ClaimHour

Vertical guide · Updated June 2026

Healthcare attorney time tracking: FCA qui tam, CMS appeals, HIPAA compliance, credentialing hearings

Healthcare law practice concentrates several of the most expensive billing failure modes in law: False Claims Act cases that run 3–6 years and require fee-shifting records across the full timeline, CMS Medicare and Medicaid appeals that generate 8–15 hours of regulatory document review per response that reconstructed billing captures at 4–6 hours, HIPAA compliance work spread across 5–8 covered-entity clients that bills at 30–40% below actual time invested, and credentialing hearings that compress 20–40 hours of preparation into a 2-week window that feels shorter in memory than in the calendar. Passive metadata capture handles all of it.

TL;DR

ClaimHour captures FCA document review sessions, CMS appeal briefing work, HIPAA risk assessment calls and policy review sessions, credentialing hearing preparation, and healthcare regulatory correspondence — passively, no timer, no audio, no document contents, no protected health information. It builds the contemporaneous records that FCA § 3730(d) fee petitions require and the time-investment data that makes HIPAA compliance billing accurate. $29–$59/mo. No PMS required.

The FCA qui tam records problem

False Claims Act qui tam cases are among the longest-running matters in federal litigation. From filing to resolution — through the government's investigation period, intervention decision, seal lift, discovery, and resolution — a typical qui tam case spans 3–6 years. Relator's counsel who succeeds in a qui tam action is entitled to reasonable attorney's fees under 31 U.S.C. § 3730(d). Those fees are awarded under the standard lodestar analysis: reasonable hours times reasonable rate, with courts applying the same records-quality discount for reconstructed or block-billed time that federal courts apply in civil rights and employment fee-shifting cases.

The combination of a 3–6-year case timeline and the dense investigation-phase document review makes FCA qui tam the fee-shifting context most vulnerable to records-quality reduction. An attorney cannot reliably reconstruct what they did in the investigation phase two or three years after the work was performed. The billing entries that result — "investigation review" at round-number quarterly estimates — are precisely the entries that courts penalize under Hensley. ClaimHour builds the record event-by-event from the case's inception, producing the task-specific, per-day records that survive a Hensley hour review regardless of the timeline.

The investigation phase is the most document-intensive phase: reviewing medical records, billing code records, compliance policies, HIPAA privacy notices, and government audit reports. A mid-complexity FCA investigation generates 80–200 hours of document review across 12–18 months. In reconstruction at the case close 3–5 years later, those sessions appear as 40–90 hours. At $400/hr, the reconstruction gap on the investigation phase alone is $16,000–$44,000 per case. On a healthcare solo handling two to three active qui tam matters simultaneously, the annual impact is $32,000–$132,000.

CMS Medicare and Medicaid appeals

Healthcare attorneys representing medical providers in Medicare and Medicaid audit appeals handle a dense administrative process: Medicare Administrative Contractor (MAC) pre-payment and post-payment review, Qualified Independent Contractor (QIC) redetermination, the Administrative Law Judge (ALJ) hearing, and Medicare Appeals Council (MAC) review before any federal court access. Each level requires a written response addressing specific billing code issues, coverage determination criteria, and medical necessity standards. Drafting a QIC-level response requires reviewing the QIC's redetermination decision, the applicable Local Coverage Determination (LCD) or National Coverage Determination (NCD), the medical records at issue, and the provider's original claim documentation — 8–15 hours of dense regulatory reading and brief drafting per response.

A healthcare solo handling 10–20 active CMS appeals per year invests 80–300 hours in appeal response briefing annually. In reconstruction, that appears as 50–180 hours — a 30–40% undercount because each regulatory reading session individually seems brief and routine. ClaimHour captures each document-review session (QIC decision, LCD, medical records) as a focus-duration event so the billing record reflects the actual time at each CMS level rather than a compressed memory estimate.

Equal Access to Justice Act (EAJA) fee petitions are available in federal court appeals from final agency decisions in CMS cases where the agency's position was not substantially justified. EAJA petitions require contemporaneous records at the same level of detail as any lodestar petition. Healthcare attorneys who successfully appeal CMS denials to federal court face the same fee-application records requirement as environmental and civil rights attorneys — and the same vulnerability to records-quality discounts if the underlying records are reconstructed rather than contemporaneous.

HIPAA compliance engagements

Healthcare attorneys serving as outside HIPAA compliance counsel provide services that are structurally different from litigation: they are delivered in discrete sessions — a periodic risk assessment, a policy manual review, a staff training review, a breach notification consultation — rather than in a linear case timeline. The value of passive capture in compliance work is not primarily the fee-petition protection (compliance work typically does not produce fee petitions) but the billing accuracy: the attorney who can document that a HIPAA risk assessment review ran 3.5 hours rather than the 2 hours it felt like captures 75% more revenue on that engagement.

A healthcare attorney serving as outside HIPAA compliance counsel for five to eight covered entities — hospitals, physician practices, health plans — delivers approximately 8–15 hours of compliance work per client per year: an annual risk assessment review (2–4 hours), at least one policy-manual review session triggered by a regulatory update (2–3 hours), breach notification consultations (1–3 per year at 45–90 minutes each), and responsive advice calls on HIPAA questions (3–6 calls per year at 20–40 minutes each). Across six clients that is 48–90 hours of compliance consulting annually. Reconstructed billing recovers 32–60 hours — a 30–40% undercount worth $5,600–$11,200 per year at $350/hr. The undercount compounds year-over-year on stable compliance relationships because each session individually seemed too brief to track carefully.

Credentialing and peer review hearings

Healthcare attorneys representing physicians in hospital credentialing disputes and peer review hearings handle a compressed, high-intensity matter type: the hearing timeline is typically 60–120 days from triggering event to hearing, and the preparation is document-intensive. A physician facing a summary suspension or a professional review action (PRA) generates a hearing preparation record that includes reviewing the medical staff bylaws, reviewing the peer review committee's investigation file (which may be 200–500 pages), coordinating with a medical expert on the standard-of-care issues, drafting the physician's written response to the hospital's charges, and preparing for the formal hearing itself.

Pre-hearing preparation generates 20–40 hours of attorney work across 4–6 weeks. In reconstruction at the month's end, those sessions appear as 12–20 hours because the document review sessions each seemed like background research rather than billable work, and the medical expert coordination calls were each individually brief. ClaimHour captures the peer review committee investigation file reading sessions as focus-duration events and the medical expert calls as duration metadata — the full preparation record appears in the evening digest for daily attribution rather than at month end from memory.

Privilege and PHI: why metadata-only matters more in healthcare

Healthcare attorneys have two overlapping obligations that make traditional time-tracking tools legally problematic: attorney-client privilege over the legal representation and HIPAA obligations when the attorney's work involves patient records. A healthcare attorney who uses a cloud-based time-tracking tool that uploads document content, email subjects, or call transcripts to process billing data may be creating a HIPAA-covered transmission of protected health information (PHI) without a business associate agreement with the time-tracking vendor. That transmission is a potential HIPAA violation regardless of whether the attorney intended the PHI to be processed.

ClaimHour's metadata-only architecture eliminates this risk. The product captures document names (not contents), call durations (not audio), and email compose time (not subject lines or message content). No PHI is transmitted or processed. This is the same architecture that preserves attorney-client privilege in criminal defense and family law contexts — in healthcare law practice it is also the compliance-appropriate approach for HIPAA purposes.

How ClaimHour fits healthcare law practice

If you handle FCA relator representation or defense, CMS Medicare or Medicaid appeal briefing, HIPAA compliance engagements for covered entities, or physician credentialing hearings — and you've ever looked at a year's healthcare billing and thought the numbers were 30–40% below your actual time investment — ClaimHour was built for that gap. Join the waitlist and we'll email when early access opens.

Get early access

Related questions

Does FCA qui tam fee-shifting require the same records as civil rights fee-shifting?

Yes. 31 U.S.C. § 3730(d) fee awards are evaluated under the lodestar standard from Hensley v. Eckerhart — reasonable hours at reasonable rate, with courts reducing reconstructed, block-billed, or insufficiently documented time. FCA cases run 3–6 years; the investigation phase alone generates 80–200 hours of document review that cannot be reconstructed accurately at case close. Contemporaneous capture across the full case timeline is the only approach that produces records capable of surviving a Hensley hour review in a multi-year FCA fee application.

How does ClaimHour track regulatory document review for CMS appeals?

Each document-review session is captured as a focus-duration event: application name, document name, start time, end time. A 3-hour session reviewing a QIC redetermination decision appears in the evening digest as a 3-hour event for attribution to the relevant client matter — not a 1.5-hour memory estimate. Over a full CMS appeal briefing cycle (MAC redetermination through ALJ hearing), contemporaneous capture typically documents 40–60% more hours than reconstructed billing produces.

Can ClaimHour be used for HIPAA compliance billing to covered entities?

Yes. HIPAA compliance work generates 8–15 hours per covered-entity client per year in discrete sessions (risk assessment reviews, policy manual reviews, breach notification consultations, responsive advice calls). Passive capture documents each session at its actual duration rather than at a round-number memory estimate. Across 6 covered-entity clients, the difference between contemporaneous and reconstructed billing is typically 16–30 hours per year — $5,600–$10,500 at $350/hr.

How does ClaimHour handle sensitive healthcare record review?

ClaimHour captures document names and focus durations only — no document contents, no PHI, no call audio. A document named "Patient Billing Records Review" is captured as 2.5 hours of focus time; the underlying records are never transmitted or processed. This metadata-only architecture satisfies both attorney-client privilege requirements and HIPAA's minimum-necessary principle for business associates handling PHI-adjacent work.

Further reading