CMAA Study Guide: High-Yield Topics on Medical Billing Basics and Office Management for the NHA Exam

CMAA Study Guide: High-Yield Topics on Medical Billing Basics and Office Management for the NHA Exam

by

The CMAA exam rewards clear, practical knowledge. You are tested on what front-office staff do every day: manage patient flow, guard privacy, and move a claim from check-in to payment. This guide focuses on the high-yield billing basics and office management tasks you are likely to see on the NHA exam, with the “why” and examples so you can reason through questions, not just memorize terms.

What the CMAA Exam Expects on Billing and Office Management

The exam checks whether you can keep a medical office running without wasting time or money. That means you must understand:

  • Insurance rules to calculate patient responsibility and prevent denials. Why: wrong benefits at check-in leads to unpaid claims later.
  • Claim workflow from eligibility to posting payments. Why: a clean claim gets paid faster; a messy claim delays cash flow.
  • Privacy and compliance including HIPAA and OSHA. Why: mistakes here create legal risk, fines, and lost trust.
  • Scheduling and communication to match provider time with patient needs. Why: poor scheduling causes bottlenecks and no-shows.
  • Financial controls like day sheets and deposits. Why: accurate money handling prevents losses and audit problems.

Insurance Basics You Must Master

Get comfortable with core terms. You will use them in math questions and policy decisions.

  • Premium: what the patient (or employer) pays to have insurance. Why: premiums do not reduce what the patient owes at the visit.
  • Deductible: what the patient must pay before the plan pays. Why: early in the year, patients often owe more.
  • Copay: fixed amount due at service (for example, $25). Why: collect at check-in to avoid chasing small balances.
  • Coinsurance: patient pays a percent after deductible (for example, 20%). Why: used for procedures and imaging often.
  • Out-of-pocket max: most the patient pays in a year. Why: after this, the plan pays 100% of allowed amounts.
  • Allowable amount: payer’s approved fee. Why: you cannot bill the patient more than allowable minus plan payments and copays/coinsurance for in-network services.
  • Adjustment/write-off: the difference between provider charge and payer allowable on contracted claims. Why: not billable to the patient in-network.
  • Capitation: fixed monthly payment per member. Why: visit-level charges are not billed to the payer; you track encounters, not claims.

Know plan types and why they matter:

  • HMO: requires a primary care “gatekeeper” and referrals. Why: no referral = denial for many specialty visits.
  • PPO: more flexibility, higher costs out-of-network. Why: check network status to estimate patient costs.
  • EPO: no out-of-network benefits except emergencies. Why: you must warn patients about out-of-network risk.
  • HDHP + HSA: high deductible with tax-advantaged savings. Why: expect higher point-of-service collections.

Government plans:

  • Medicare: Part A (hospital), Part B (outpatient), Part C (Advantage), Part D (drugs). Why: ABN may be required when services may not be covered by Part B.
  • Medicaid: income-based; strict prior auth rules. Why: verify eligibility on the date of service.
  • TRICARE/VA: for service members and veterans. Why: plan types and referral rules vary; check sponsor status.
  • Workers’ comp: job-related injuries. Why: bill the carrier, not the health plan; collect no copays.

Example: Provider charge $200, allowable $120, deductible not met, coinsurance 20%. Patient pays $120 (all allowable) until deductible is met. If deductible already met, patient pays $24 (20% of $120) and plan pays $96; the $80 difference between $200 and $120 is adjusted off by contract.

The Revenue Cycle From Check-In to Payment

Understand each step and the error it prevents.

  • Pre-visit/Check-in: verify identity, demographics, coverage, and benefits; collect copay; get signatures (HIPAA acknowledgment, consent to treat). Why: prevents wrong-payer claims and collections delays.
  • Eligibility verification: confirm active coverage, effective dates, PCP/referral requirement, deductible remaining, copay/coinsurance. Why: lets you quote a realistic estimate.
  • Referrals and prior authorizations: obtain before the visit if needed. Why: retro auth is usually denied.
  • Encounter form/superbill: list diagnoses (ICD-10-CM), services (CPT/HCPCS), and modifiers. Why: feeds the claim with accurate codes.
  • Claim creation: CMS-1500 for outpatient/professional services. Why: standardized, machine-readable form.
  • Scrubbing and submission: clearinghouse checks for missing or invalid data. Why: catches rejections before payer denials.
  • Adjudication: payer reviews coverage, medical necessity, and contracts. Why: results in an EOB/ERA with payments or denials.
  • Posting: record payments, adjustments, and patient responsibility. Why: accurate balances drive correct statements.
  • Denial management and appeals: fix and resubmit or appeal with documentation. Why: timely action recovers revenue.
  • Patient statements and collections: clear bills, payment plans, and compliant collections. Why: reduces bad debt and complaints.

Forms and Codes You Will See

CMS-1500 (02/12) essentials you should know and why they matter:

  • Box 1/1a: insurance type and member ID. Wrong ID = rejection.
  • Box 2–7: patient/insured names and addresses. Mismatches cause delays.
  • Box 9/11d: other insurance and coordination of benefits. Missing COB = denial.
  • Box 10a–c: work, auto, or other accident. Directs claim to proper payer.
  • Box 12/13: signatures for release and assignment of benefits. Without these, payers send checks to the patient.
  • Box 14: date of current illness/injury. Supports medical necessity timeline.
  • Box 17/17b: referring provider and NPI. Required for HMO referrals and some services.
  • Box 21: ICD-10-CM diagnoses (A–L). Drives medical necessity; match to services.
  • Box 23: prior authorization number. Missing auth = denial.
  • Boxes 24A–J: line-level details: dates, place of service, CPT/HCPCS, modifiers, diagnosis pointer, charges, units. The heart of the claim.
  • Box 25/33a: tax ID and billing NPI. Identifies who gets paid.
  • Boxes 32/32a: service facility and NPI. Critical if billing from one site but rendering at another.

Code sets:

  • ICD-10-CM: diagnoses (why the service was done). Use the most specific code. Example: J06.9 acute upper respiratory infection, unspecified.
  • CPT: procedures and E/M (what was done). Example: 99213 for established patient E/M.
  • HCPCS Level II: supplies, drugs, and services not in CPT. Example: A4550 for surgical tray (payer-dependent coverage).

Modifiers: tell the payer special circumstances.

  • -25: significant, separately identifiable E/M on the same day as a procedure. Why: prevents bundling denial. Example: 99213-25 with 93000 when both are justified.
  • -59: distinct procedural service. Why: shows separate site or session when services might bundle.
  • -26/-TC: professional vs technical components. Why: used for imaging and tests split between interpretation and equipment.
  • -95: synchronous telemedicine. Why: many payers require it for telehealth claims.

Place of Service (POS) examples: 11 (office), 12 (home), 10 (telehealth in patient’s home), 22 (outpatient hospital). Wrong POS = underpayment or denial.

Authorizations, Referrals, and Coordination of Benefits

These three are easy to mix up on the exam.

  • Referral: PCP sends patient to a specialist; required by many HMOs. Why: without it, the claim often denies.
  • Prior authorization: payer approves certain services in advance. Why: required for MRIs, surgeries, some drugs.
  • Coordination of benefits (COB): determines which plan pays first when more than one exists. Why: billing the wrong primary leads to denial.

Common COB rules:

  • Birthday rule (dependents): the parent whose birthday (month/day) occurs first in the year is primary.
  • Medicare: usually primary unless there is a large employer plan for an active worker or other specific situations. When in doubt, verify MSP status.

ABN (Advance Beneficiary Notice): used for Medicare Part B when a service may not be covered. It must be specific, include a cost estimate, be signed before service, and offer choices. Why: without a valid ABN, you cannot bill the patient if Medicare denies for medical necessity.

HIPAA, Privacy, and Release of Information for CMAA

HIPAA protects PHI (individually identifiable health information) in any form. Your job is to disclose the minimum necessary for treatment, payment, and operations (TPO) unless the patient authorizes more.

  • Notice of Privacy Practices (NPP): give at first visit and document acknowledgment. Why: informs patients of rights.
  • Consent vs authorization: general consent covers treatment and payment; authorization is required for uses outside TPO (for example, sending records to an attorney). Must include what, who, purpose, expiration, signature, and date.
  • Verification: before discussing PHI, verify identity and the individual’s authority to receive information (for example, legal guardian).
  • Safeguards: do not leave PHI visible; use secure fax/email per policy; double-check recipients. Why: reduces breaches.
  • Breach steps: report internally immediately; do not delete or alter records; follow notification policies. Why: delays worsen penalties.

Denials, Appeals, and Clean Claim Habits

Most denials are preventable. Build habits that keep claims clean.

  • Validate data: names, DOB, ID numbers, NPI, POS, and coding all match. Why: simple typos cause rejections.
  • Medical necessity: link the correct diagnosis pointer to each CPT line. Why: payers deny mismatched services.
  • Timely filing: submit within payer deadlines (for example, 90–365 days). Why: late claims are not payable.
  • Documentation on hand: referrals, authorizations, and notes. Why: you need them for appeals.

When denied:

  • Read the EOB/ERA remark codes: they tell you exactly why.
  • Corrected claim vs appeal: fix errors (for example, wrong NPI) as a corrected claim; argue coverage or medical necessity with an appeal letter and supporting evidence.
  • Track follow-up: note submission dates and payer reference numbers. Why: missed deadlines end the appeal.

Scheduling and Patient Flow

Scheduling affects satisfaction and revenue. Choose methods that fit the practice.

  • Wave: schedule several patients at the top of the hour. Why: absorbs no-shows; can create waiting.
  • Modified wave: mix top-of-hour and mid-hour slots. Why: smoother flow.
  • Cluster/block: group similar visits (for example, immunizations). Why: increases efficiency with supplies and staff.
  • Double-booking: two patients in one slot. Why: only use when provider can truly handle overlap.
  • Open hours (walk-in): first-come, first-served. Why: good for urgent care; hard to predict wait times.

At check-in:

  • Verify two identifiers (for example, name and DOB), update demographics, check coverage, and collect copay.
  • Confirm any referral or authorization on file.
  • Review balances and offer payment options. Why: small balances pile up.

Telephone triage (administrative role):

  • Recognize red flags: chest pain, stroke signs, trouble breathing, severe bleeding. Escalate to nurse or direct to emergency services per policy.
  • For routine questions, route to the right queue and set expectations for response time.

Documentation, Records, and EHR Etiquette

Good records protect patients and the practice.

  • Accuracy: document what was done and why. If you make an error, draw a single line through it, write “error,” initial and date, then add the correction. Why: preserves integrity of records.
  • Addenda: late information should be labeled as an addendum with date and time. Why: transparency matters in audits.
  • EHR etiquette: verify the right chart, avoid copy-paste errors, and log out when leaving. Why: prevents wrong-patient mistakes and privacy breaches.
  • Record requests: use a valid authorization unless for TPO. Release the minimum necessary and log the disclosure per policy.

Office Finance: Day Sheets, Deposits, and Collections

Front-desk financial accuracy drives the practice’s stability.

  • Superbill/charge capture: ensure all services provided are documented and coded before the patient leaves. Why: missed charges are lost revenue.
  • Day sheet (daily journal): totals for charges, payments, and adjustments for the day. Reconcile with the appointment schedule and payment receipts.
  • Deposits: match checks, cash, and electronic payments to the day sheet; prepare bank deposits daily. Why: protects against loss and errors.
  • NSF checks: reverse the payment, notify the patient, and apply any posted fees per policy.
  • Refunds: process promptly when overpayments occur; document reason and approvals.
  • Payment plans: written terms with amounts and due dates. Why: clear agreements reduce defaults.
  • Collections and laws: follow the Fair Debt Collection Practices Act (for example, call between 8 a.m. and 9 p.m. local time, no threats, honor written requests to stop contact). Why: violations lead to penalties.

Safety, Compliance, and Quality

Compliance protects people and the practice.

  • OSHA Bloodborne Pathogens: use PPE, no recapping needles, dispose of sharps in puncture-resistant containers. Exposure steps: wash/flush, report, seek evaluation immediately, complete incident report.
  • SDS (Safety Data Sheets): keep accessible for all chemicals and train staff. Why: supports safe handling and spill response.
  • Fire safety: RACE (Rescue, Alarm, Contain, Evacuate/Extinguish) and PASS (Pull, Aim, Squeeze, Sweep). Conduct drills.
  • Incident reports: document facts only, no blame, not part of the medical record. Why: supports risk management and improvement.
  • CLIA-waived testing: follow manufacturer instructions, record lot numbers, quality control results, and maintenance. Why: ensures reliable results.
  • Fraud and abuse awareness: avoid upcoding and unbundling; bill only what was documented and necessary. Why: OIG penalties are severe.

Quick Math and Mini-Scenarios for the Exam

Cost-sharing calculations:

  • Allowable $150, deductible remaining $100, coinsurance 20%:
    • Patient pays $100 to meet deductible; remaining allowable $50 × 20% = $10. Total patient: $110. Plan pays $40.
  • Copay $30 for office visit, allowable $120, deductible met:
    • Patient pays $30 copay. If the plan applies both copay and coinsurance, check policy; many plans use one or the other for E/M.
  • Preventive visit (no copay by plan), but a problem-oriented E/M also done:
    • Bill preventive code and 99213-25 if documented. Patient cost depends on plan; preventive may be $0, problem visit subject to cost-sharing.

COB birthday rule: Child covered by both parents. Mom’s birthday is March 10, Dad’s is November 2. Mom’s plan is primary. If the parents share the same birthday, use the plan active longest unless the plan says otherwise.

Referral/auth scenario: HMO patient sees a dermatologist without a PCP referral. Claim denies. Solution: resubmit with required referral if obtained pre-service; post-service referrals are usually not allowed.

Modifier scenario: E/M with ECG same day. Use 99213-25 and 93000 if a significant, separate E/M is documented. Without -25, the E/M may be bundled and denied.

Test-Day Strategy and What to Memorize

Use logic, not just memory. Read each stem and ask, “What step prevents the problem?”

  • Memorize:
    • Key CMS-1500 boxes and their purpose.
    • Common modifiers (-25, -59, -26, -TC, -95) and when to use them.
    • POS codes for office (11), home (12), telehealth (10/02).
    • Insurance terms (deductible, coinsurance, copay, allowable, adjustment).
    • Plan types (HMO, PPO, EPO, HDHP) and Medicare parts A–D.
    • Referral vs prior authorization vs ABN vs COB.
    • HIPAA basics: minimum necessary, NPP, authorization content.
    • OSHA basics: sharps, PPE, exposure response, SDS.
    • RACE and PASS.
  • Time management: flag long math problems, answer all you can, then return to flagged items.
  • Elimination: remove options that break a law, skip a required step, or overstep scope.
  • Keywords: “best first step,” “prevents,” “primary payer,” “authorization required” point to process order and payer rules.

Final tip: think like a patient and a payer at the same time. Verify identity and benefits up front, document exactly what happened, and send a clean claim once. If you understand the “why” for each step, the right answer on the exam will usually stand out.

Leave a Comment

PRO
Ad-Free Access
$3.99 / month
  • No Interruptions
  • Faster Page Loads
  • Support Content Creators
Subscribe Now