Credentialing Timeline Planning: Why 90 Days Isn't Just an Estimate

The 90-Day Rule and Why It Fails

Every experienced health plan credentialing manager knows the 90-day rule: count back 90 days from your CMS filing deadline and that is when credentialing intake must close. In practice, most teams count back 90 days and then start contracting, which means credentialing intake opens 60–75 days before the deadline, which means the committee cannot approve the last cohort of providers until after the deadline has passed.

This gap between when teams think credentialing takes 90 days and when it actually completes is one of the most consistent sources of late or incomplete MA network adequacy submissions. Understanding what actually drives the 90-day timeline — and how it extends in real conditions — is the foundation of credentialing timeline planning that works.

What the 90-Day Timeline Actually Covers

The 90-day credentialing timeline is a sum of sequential steps, each of which has a minimum duration and real-world variability:

• Application receipt and intake (Days 1–5): The provider submits their credentialing application. This is contingent on the contract being signed first — the credentialing application is typically not sent until a contract is executed. If contracting takes until Day 30 of a 90-day window, credentialing intake does not begin until Day 30.
• Primary source verification (Days 5–30): The credentialing department verifies the provider's licensure with the state board, DEA registration, malpractice history, board certification, hospital privileges, and other qualifications by contacting primary sources. State boards vary in their responsiveness — some provide online verification instantly, others require written requests with 2–3 week turnaround times.
• Malpractice and exclusion checks (Days 10–25): NPDB queries, OIG exclusion checks, and SAM exclusion checks are run and documented. These are generally fast, but NPDB queries require the provider's signed authorization, which creates a dependency on provider responsiveness.
• Application completion follow-up (Days 1–45): Providers frequently submit incomplete applications — missing DEA certificates, expired malpractice certificates, unsigned CAQH authorizations. Each missing item triggers a follow-up request and a waiting period. For providers who are slow to respond, this follow-up cycle can extend 2–3 weeks.
• Credentials committee review (Days 75–90): Most credentialing committees meet monthly. If the provider file is not complete and ready for committee by the meeting date, it waits for the next committee cycle — adding 30 days to the timeline.
• Committee approval and system entry (Days 88–95): Once the committee approves, credentialing staff must enter the provider into the plan's systems, trigger the directory update, and generate the welcome letter. This step is often rushed and creates data entry errors.

The Hidden Extensions

The 90-day estimate assumes a best-case scenario: the provider submits a complete application immediately after contract signing, all primary sources respond within normal timeframes, and the file is ready for the next committee meeting. In practice, several factors routinely extend this timeline:

• Providers with CAQH profiles that are outdated or have expired authorizations require re-attestation before the credentialing application can be processed
• Providers licensed in multiple states may have pending disciplinary actions that require additional investigation before committee review
• New graduates or providers new to Medicare who lack hospital privileges may require additional documentation of clinical competency
• High-volume credentialing periods — common in the fall when plans are preparing MA submissions — create backlogs in credentialing department workflows

When these extensions occur, 90 days becomes 105 or 120 days, and providers that were supposed to be credentialed for the submission are not ready.

Building the Right Timeline: Working Backwards

Effective credentialing timeline planning starts with the CMS filing deadline and works backwards through each dependent step:

• Credentials committee approval must occur at least 5 business days before filing deadline (to allow system entry and verification)
• Provider file must be complete and submitted to committee at least 14 days before the committee meeting (for committee preparation)
• Primary source verification must be complete at least 14 days before the target committee meeting
• Application must be received and intake completed at least 60 days before the target committee meeting
• Contract must be signed at least 65 days before the target committee meeting (to allow intake to begin promptly)

Mapping this backwards from a typical October CMS filing deadline: contracts should be signed by late June, credentialing applications should be in by early July, and files should be ready for committee by mid-August for a September committee review. Any contract signed after late June carries a meaningful risk of not completing credentialing in time.

Credentialing Intake as a Contracting Gate

The most effective change most network development teams can make is treating credentialing intake as a gate on contracting close, not a downstream step. When a contract is signed, the credentialing application should be sent the same week — not when the credentialing department gets around to it. This requires coordination between the contracting and credentialing functions that many organizations do not have, but that coordination is worth building because it consistently recovers 10–15 days of timeline slack.

Tracking and Visibility

Credentialing timeline planning is only possible if the team has real-time visibility into where every provider is in the credentialing process. Spreadsheet-based tracking systems fail at this because they require manual updating, do not automatically flag files that are aging or approaching committee deadlines, and do not provide management-level summary views of the overall credentialing pipeline status. Purpose-built credentialing tracking tools that flag aging files, track primary source verification status, and project committee readiness dates give credentialing managers the visibility they need to intervene before delays cascade into missed deadlines.