How to Survive an HRSA Site Visit for Your FQHC: Preparation Checklist for 2026

For Federally Qualified Health Centers (FQHCs), few regulatory events carry more significance than an Operational Site Visit (OSV) conducted by the Health Resources and Services Administration. HRSA site visits are comprehensive evaluations designed to assess whether health centers remain compliant with Section 330 Health Center Program requirements and continue operating in accordance with federal standards.

An HRSA site visit is far more than a routine inspection. It is an in-depth review of governance, financial oversight, clinical quality, risk management, patient access, credentialing, billing, compliance programs, and operational infrastructure. These visits directly affect:

• Federal grant funding

• FTCA deeming eligibility

• Organizational reputation

• Compliance standing

• Future expansion opportunities

For many health centers, HRSA operational site visits are stressful because deficiencies can lead to:

• Conditions of award

• Corrective action plans

• Increased oversight

• Funding risks

• Potential program noncompliance findings

The best way to survive an HRSA site visit is through proactive preparation, strong documentation practices, continuous compliance monitoring, and organizational readiness long before surveyors arrive.

This comprehensive 2026 preparation checklist outlines how FQHCs can successfully prepare for an HRSA site visit while minimizing risk and strengthening operational compliance.

Understanding the HRSA Operational Site Visit Process

HRSA conducts Operational Site Visits to verify compliance with Health Center Program requirements outlined in the:

• Public Health Service Act Section 330

• HRSA Health Center Program Compliance Manual

• FTCA requirements

• Federal grant obligations

The primary purpose of the visit is to evaluate whether the organization:

• Provides required services

• Maintains appropriate governance

• Serves target populations

• Operates compliant financial systems

• Delivers quality patient care

• Maintains program integrity

Site visits are typically conducted every three years, though HRSA may conduct additional reviews when concerns arise.

What HRSA Reviewers Evaluate

During the OSV, reviewers examine multiple operational domains, including:

Governance

• Board composition

• Patient-majority compliance

• Board authority

• Conflict-of-interest policies

• Board meeting documentation

Clinical Operations

• Quality improvement systems

• Risk management

• Credentialing and privileging

• Patient records

• Continuity of care

Financial Management

• Billing systems

• Revenue cycle controls

• Sliding fee discount program

• Internal financial oversight

Administrative Compliance

• Policies and procedures

• Human resources systems

• Compliance infrastructure

• Program monitoring

Preparation must address every operational area comprehensively.

Start Preparing Early

One of the biggest mistakes FQHCs make is waiting until the OSV announcement to begin preparation.

The strongest organizations maintain “survey-ready” operations year-round.

Recommended Preparation Timeline

6–12 Months Before the Visit

• Conduct mock audits

• Review HRSA compliance manual requirements

• Organize documentation

• Identify operational gaps

• Update policies and procedures

3–6 Months Before the Visit

• Conduct leadership reviews

• Validate board compliance

• Perform chart audits

• Verify credentialing files

• Review sliding fee documentation

1–3 Months Before the Visit

• Finalize binders and electronic files

• Conduct staff training

• Perform mock interviews

• Review quality data

Early preparation reduces panic-driven compliance failures.

Governance Preparation Checklist

Governance deficiencies remain among the most common HRSA findings.

Verify Patient Majority Compliance

At least 51% of board members must be patients of the health center.

Confirm:

• Patient status documentation

• Demographic representation

• Voting eligibility

• Attendance records

Organizations should continuously monitor board composition to avoid accidental noncompliance.

Review Board Meeting Minutes

HRSA reviewers closely examine board minutes.

Ensure minutes document:

• Quorum verification

• Budget approvals

• CEO evaluations

• Quality reviews

• Sliding fee program oversight

• Strategic discussions

Missing documentation can create serious compliance concerns.

Validate Board Authority

The governing board must retain authority over:

• Budget approval

• CEO hiring and evaluation

• Strategic planning

• Policy approval

Parent organizations cannot improperly restrict board authority.

Sliding Fee Discount Program Compliance

The Sliding Fee Discount Program (SFDP) is a major focus area during HRSA reviews.

Key Requirements

Health centers must:

• Maintain a current sliding fee policy

• Use updated Federal Poverty Guidelines

• Reassess eligibility regularly

• Apply discounts consistently

• Ensure accessibility regardless of ability to pay

Common SFDP Deficiencies

HRSA frequently cites:

• Missing income verification

• Inconsistent discount application

• Expired poverty guidelines

• Poor documentation

• Failure to offer discounts appropriately

Conduct Internal SFDP Audits

Review:

• Patient eligibility files

• Discount calculations

• Documentation completeness

• Front-desk workflows

Staff should clearly understand SFDP procedures.

Clinical Services Preparation

Clinical operations represent one of the most heavily scrutinized OSV components.

Conduct Chart Audits

Review patient records for:

• Documentation completeness

• Signed provider notes

• Medication reconciliation

• Follow-up tracking

• Care coordination

• Referral documentation

Incomplete records create substantial compliance risk.

Evaluate Continuity of Care Systems

HRSA expects effective systems for:

• Referrals

• Follow-up care

• Specialty coordination

• After-hours access

• Hospital transitions

Organizations should demonstrate robust care coordination processes.

Review Clinical Quality Measures

Prepare data for:

• UDS reporting metrics

• Preventive care measures

• Chronic disease management

• Patient outcome monitoring

Leadership should understand performance trends and improvement strategies.

Credentialing and Privileging Readiness

Credentialing deficiencies are common during HRSA site visits.

Ensure Files Are Complete

Provider files should include:

• Licenses

• DEA registrations

• Board certifications

• NPDB queries

• Background checks

• Immunization records

• Privileging approvals

Missing documentation may trigger findings.

Verify Recredentialing Timelines

Organizations must:

• Recredential providers every two years

• Maintain committee oversight

• Document approval processes

Expired credentialing is a major compliance issue.

FTCA and Risk Management Preparation

FQHCs receiving Federal Tort Claims Act (FTCA) deeming protection must demonstrate strong risk management systems.

Review Incident Reporting Systems

Ensure:

• Incident reports are completed consistently

• Events are investigated promptly

• Corrective actions are documented

• Trends are monitored

Validate Risk Management Activities

Prepare evidence of:

• Risk assessments

• Safety initiatives

• Infection prevention monitoring

• Patient safety reviews

Risk management should be integrated into QI activities.

Quality Improvement and QAPI Compliance

HRSA expects ongoing Quality Assurance and Performance Improvement (QAPI) activities.

Demonstrate Active QI Programs

Your QAPI program should include:

• Performance metrics

• Data analysis

• Improvement initiatives

• Leadership involvement

• Board oversight

Track Improvement Projects

Prepare documentation showing:

• Identified problems

• Root cause analyses

• Corrective actions

• Measurable outcomes

Passive quality programs often result in deficiencies.

Human Resources Compliance

HRSA reviewers frequently evaluate workforce management systems.

Review Personnel Files

Personnel files should contain:

• Job descriptions

• Licenses and certifications

• Competency evaluations

• Training records

• Background checks

Verify Mandatory Training

Document staff education related to:

• HIPAA

• OSHA

• Infection prevention

• Compliance

• Emergency preparedness

• Cultural competency

Incomplete training documentation is a common operational weakness.

Emergency Preparedness Readiness

Emergency preparedness remains a major healthcare regulatory focus.

Review Emergency Plans

Your emergency preparedness program should address:

• Natural disasters

• Power outages

• Infectious disease outbreaks

• Cybersecurity incidents

• Communication systems

Conduct Drills and Exercises

Maintain documentation for:

• Fire drills

• Tabletop exercises

• Emergency training

• Corrective action plans

Surveyors expect active preparedness efforts.

Billing and Financial Compliance

Financial oversight is a critical HRSA review area.

Review Revenue Cycle Controls

Assess:

• Claims submission accuracy

• Billing compliance

• Coding practices

• Denial management

• Refund processes

Prepare Financial Documentation

Reviewers may request:

• Financial statements

• Audit reports

• Budget approvals

• Grant expenditure tracking

• Internal controls documentation

Strong financial governance demonstrates organizational stability.

Prepare Staff for Interviews

HRSA reviewers interview staff across departments.

Employees should understand:

• Organizational mission

• Compliance responsibilities

• Reporting structures

• Patient care workflows

Conduct Mock Interviews

Prepare staff to discuss:

• Sliding fee processes

• Incident reporting

• Infection prevention

• Care coordination

• Quality initiatives

Staff uncertainty can create reviewer concern.

Organize Documentation Efficiently

Disorganized documentation is one of the most avoidable OSV problems.

Create Centralized Review Files

Prepare organized folders for:

• Governance records

• Policies and procedures

• Credentialing files

• QI reports

• Financial documents

• HR records

Electronic organization significantly improves review efficiency.

Review Policies and Procedures

Policies should reflect actual operations.

Update Policies Annually

Review:

• Compliance policies

• Clinical protocols

• HR procedures

• Billing practices

• Emergency preparedness plans

Outdated policies create compliance inconsistencies.

Infection Prevention and Control

Infection prevention remains heavily scrutinized following recent public health emergencies.

Review Infection Control Programs

Prepare:

• Infection surveillance logs

• Staff training records

• PPE protocols

• Exposure response procedures

• Cleaning protocols

Conduct Environmental Rounds

Inspect:

• Medication storage

• Biohazard disposal

• Sterilization processes

• Hand hygiene compliance

Environmental deficiencies can significantly impact survey outcomes.

Data Reporting and UDS Accuracy

Uniform Data System (UDS) reporting accuracy is critical.

Validate UDS Data Integrity

Review:

• Clinical data extraction

• Reporting methodologies

• Encounter documentation

• Measure accuracy

Inaccurate UDS reporting may trigger deeper investigations.

Technology and Cybersecurity Preparedness

Healthcare cybersecurity risks continue to grow substantially.

Review IT Security Programs

Prepare documentation regarding:

• HIPAA safeguards

• Access controls

• Backup systems

• Cybersecurity training

• Incident response plans

Validate EHR Security

Ensure:

• User access reviews are conducted

• Password protocols are enforced

• Audit logs are monitored

Weak cybersecurity controls create operational vulnerabilities.

Common HRSA Site Visit Deficiencies

Some deficiencies appear repeatedly during Operational Site Visits.

Frequent Findings Include:

Governance Problems

• Inadequate patient-majority representation

• Missing board approvals

• Poor attendance tracking

Credentialing Issues

• Expired licenses

• Missing NPDB queries

• Incomplete privileging

Sliding Fee Violations

• Missing income verification

• Inconsistent discount application

Clinical Documentation Weaknesses

• Unsigned notes

• Incomplete assessments

• Poor care coordination documentation

Quality Program Deficiencies

• Weak QAPI documentation

• Limited board oversight

Understanding common findings helps organizations proactively reduce risk.

Day-of-Survey Best Practices

Designate a Survey Coordinator

Assign one leader to:

• Manage reviewer requests

• Coordinate interviews

• Track documents

• Facilitate communication

Centralized coordination improves efficiency.

Maintain Professionalism

Staff should remain:

• Organized

• Responsive

• Honest

• Professional

Never provide misleading information to reviewers.

Respond Quickly to Requests

Timely document production demonstrates operational organization and competence.

After the Site Visit

Preparation does not end once surveyors leave.

Review Preliminary Feedback

Leadership should:

• Analyze reviewer observations

• Identify corrective actions

• Prioritize high-risk findings

Address Deficiencies Immediately

Even before official reports arrive, organizations should begin remediation activities.

Prompt corrective action demonstrates compliance commitment.

Building a Culture of Continuous Compliance

The most successful FQHCs do not prepare only for surveys. They build ongoing compliance cultures.

Key Strategies Include:

• Continuous internal auditing

• Leadership accountability

• Regular policy reviews

• Staff education

• Active board oversight

• Strong QAPI infrastructure

Continuous readiness reduces operational stress and improves patient outcomes.

Final Thoughts

Surviving an HRSA site visit requires far more than assembling binders shortly before reviewers arrive. Successful organizations build compliance into daily operations through strong governance, effective documentation systems, quality oversight, risk management, and organizational accountability.

An HRSA Operational Site Visit should not be viewed solely as a regulatory burden. It is also an opportunity to strengthen operational systems, improve patient care quality, identify vulnerabilities, and reinforce organizational excellence.

Health centers that maintain year-round readiness position themselves for:

• Stronger compliance outcomes

• Reduced regulatory risk

• Improved patient safety

• Better financial stability

• Enhanced organizational credibility

For organizations seeking assistance with HRSA site visit preparation, FQHC compliance programs, FTCA readiness, operational audits, credentialing reviews, policy development, or healthcare management consulting, HealthBridge Consulting provides consulting and management solutions tailored to Federally Qualified Health Centers and healthcare organizations.

References

• HRSA Health Center Program Compliance Manual

• HRSA Operational Site Visit Protocols

• Public Health Service Act Section 330

• HRSA Federal Tort Claims Act Health Center Policy Manual

• Centers for Medicare & Medicaid Services Quality Improvement Resources

• Centers for Disease Control and Prevention Infection Prevention Guidance for Outpatient Settings

• Office for Civil Rights HIPAA Guidance

• National Association of Community Health Centers