CMS-0057-F readiness, delivered in days not quarters

Productized consulting from the team that builds Tessara, the drift-detection engine for mandated FHIR APIs. Fixed scope, fixed price, fixed timeline.

Why now

CMS-0057-F enforcement begins January 1, 2027. Operational prior-authorization decision-timeline requirements have already been in effect since January 1, 2026, and the first performance metrics deadline passed on March 31, 2026. Typical interop vendor procurement runs 9-12 months. The arithmetic is tight; tighter still if your CapabilityStatement is already drifting from the IGs you committed to.

Each engagement below is fixed-scope. You pay a stated price for a stated deliverable on a stated timeline. No retainers required, no committee, no surprise change orders.

Start here

Compliance Gap Assessment

We probe your public FHIR endpoints, score them against CMS-0057-F and CMS-9115-F, and hand back a prioritized remediation list.

$5,000 Delivered in 5 business days
  • Tessara probes your published FHIR endpoints (public /metadata only — no PHI access)
  • Scored against CMS-0057-F and CMS-9115-F together, plus the relevant Da Vinci IGs (PAS, PDex, etc.)
  • Written report: drift findings categorized using the canonical 6-category taxonomy, ranked by remediation effort and audit exposure
  • 1-hour review call to walk through findings and answer questions
Request Compliance Gap Assessment

Audit Response Prep

Build a defensible evidence narrative before CMS scrutiny lands. Document chain plus a finding remediation log auditors can read in one sitting.

$8,500 Delivered in 2 weeks
  • Run a full conformance probe and capture the signed evidence baseline
  • Document chain mapping each finding to the regulatory citation, the affected resource, and the remediation step
  • Finding remediation log: what was wrong, what was fixed, when, by whom
  • Sample auditor cover memo and Q&A prep
Request Audit Response Prep

CMS Reporting Metrics Wiring

Stand up the operational metrics CMS expects. PA performance metrics and ongoing reporting wired so the data is ready when CMS asks for it.

$7,500 Delivered in 1-2 weeks
  • Identify which CMS-0057-F operational metrics apply to your plan type
  • Wire data sources for prior-authorization performance metrics (decision timelines, denial rates, etc.)
  • Reporting cadence and format aligned with CMS's published expectations
  • Hand-off doc so your team owns the reporting pipeline after delivery
Request CMS Reporting Metrics Wiring

Fractional CMS-0057-F SME

Slack and email access plus one monthly call. 5-10 hours per month. The expert seat on your interop project without the full-time hire.

$4,500 per month — month-to-month, no annual commit
  • Slack channel + email — typical response within one business day
  • One scheduled 60-minute call per month
  • 5-10 hours of advisory work per month (capped — overages quoted separately)
  • Month-to-month, cancel any time
Request Fractional CMS-0057-F SME

IG Profile Fitness Check

Verify your CapabilityStatement against a specific IG version. Drift report using Tessara's 6-category taxonomy.

$2,500 Delivered in 3 business days
  • Pick the IG and version (e.g., Da Vinci PAS 2.0.1, US Core 6.1.0)
  • Tessara probes your CapabilityStatement and compares against the published profile
  • Drift findings sorted by category and severity
  • Short written summary — fits on one page
Request IG Profile Fitness Check

Vendor Selection Advisory

Independent evaluation of Innovaccer, 1upHealth, Smile Digital Health, or build-internal. Recommendation memo with the trade-offs spelled out.

$3,500 Delivered in 1 week
  • Compare named vendors against your specific use case (PA, Patient Access, Provider Access, P2P)
  • Build-internal option scored alongside vendors (cost, time, ongoing maintenance)
  • Recommendation memo: which option, why, and the risks of each
  • 1-hour review call
Request Vendor Selection Advisory

Internal Team Training

What CMS-0057-F actually requires versus what vendors claim. Live Q&A from your team.

$2,500 per session — 90-minute webinar
  • 90-minute live webinar for up to 30 attendees from your organization
  • What the rule requires (with citations), what vendors typically over-promise
  • 5 mandated FHIR APIs covered: CMS-0057-F's four plus CMS-9115-F's Provider Directory
  • Live Q&A — bring your hardest questions
Request Internal Team Training

How it works

1

Request

Click the button on any service. The contact form pre-fills the engagement and price so we both start from the same page.

2

30-min scoping

We schedule a short call to confirm scope, endpoints, IGs, and timing. If we are not the right fit we say so and refer you out.

3

Delivery + report

Work happens against the stated timeline. You receive the written deliverable, a review call, and the underlying evidence artifact when applicable.

About the practitioner

Engagements are delivered by David Everett, founder and sole engineer of Tessara. David authored the provisional patent (filed March 30, 2026) covering the structural-contract-model approach Tessara uses to detect conformance drift, and built the underlying Go engine that powers every assessment. Engagements draw on the same evidence chain — Ed25519-signed verdicts, SHA-256 Merkle hashing, RFC 8785 JCS canonicalization — that the product produces for paying customers.

Frequently asked questions

Do you sign a BAA?
BAAs are available on request and are required before any engagement that could touch PHI. The Compliance Gap Assessment and IG Profile Fitness Check do not handle PHI — Tessara probes only the public /metadata endpoint and related CapabilityStatement surface, so a BAA is typically not required for those engagements. Other engagements (Audit Response Prep, Fractional SME) may require one depending on scope.
How is PHI handled?
For probe-based engagements, Tessara reads only public FHIR metadata — no patient resources are requested or stored. For engagements that involve reviewing your internal systems, PHI handling is scoped on the call and governed by the BAA.
What is your refund policy?
If we cannot deliver against the stated scope on the stated timeline, you receive a full refund. If the scope changes mid-engagement (your call), we re-quote before continuing — you are never billed for work you did not approve.
What is your calendar availability?
We typically start fixed-scope engagements within one to two weeks of the scoping call. Fractional SME engagements start at the beginning of the next calendar month. Audit Response Prep slots are limited and prioritized by enforcement-exposure urgency — if you have a CMS letter or a scheduled audit, mention it on the form.
What if scope changes mid-engagement?
We pause, draft a written change order with the revised timeline and price, and resume only after you sign off. The original engagement remains billed against the original scope.

Not sure which engagement fits?

Book a 15-minute scoping call — no pitch, just questions about your endpoints, IGs, and timeline.

Book a 15-min call Or send a message