Updated February 2026 · 6-minute read
LEIE & SAM
Visitor Checks for Public Sector & Healthcare Teams
A practical playbook for compliance managers and public sector teams who must screen visitors, vendors, and workforce against LEIE and SAM — while keeping audit-ready, FOIA-friendly records.
At a Glance
Why it matters
- Protect federal program eligibility
- Prevent debarred vendors from gaining access
- Keep visitor screening audit-ready
Use this guide to
- Know when to run LEIE & SAM
- Capture evidence and reviewer decisions
- Export redacted logs for audits and FOIA
What Are LEIE and SAM?
LEIE
HHS Office of Inspector General
The List of Excluded Individuals/Entities identifies parties barred from participating in federal healthcare programs. Used by hospitals, insurers, and any organization receiving Medicare/Medicaid funding.
SAM
System for Award Management
The SAM.gov exclusion list covers suspended or debarred parties for federal contracts and awards. Any entity doing business with the federal government must be verified clean before award.
Disclaimer: This guide is for informational purposes only. It does not constitute legal advice. Consult qualified counsel for your specific obligations.
When Should You Run LEIE & SAM Checks?
Onboarding a new vendor, contractor, or long-term visitor before access is granted.
Before access to sensitive programs, controlled areas, or systems is approved.
Periodic re-checks for recurring contractors or extended engagements.
Whenever key identity details change — legal name, corporate ownership, or updated EIN/DUNS.
What to Capture in Every Check
Good documentation is the difference between a clean audit and a corrective action plan. Every check needs these five elements.
Identity
Full name, DOB (if available), org/site
Evidence
Screenshot or result ID + timestamp
Reviewer
Who ran the check and their decision
Outcome
No match / Potential match / Confirmed match
Notes
Escalation path and follow-up date
Audit Link
Record the check inside your audit log with traceable IDs for secure, scoped export.
Operational Playbook
Capture identity inputs
Full name + supporting DOB or identifier. Avoid initials only.
Run LEIE and SAM checks
Retain source links, result IDs, or screenshot evidence.
Resolve potential matches
Reviewer adjudicates; unclear cases are escalated.
Log decision and evidence
Immutable record: decision, evidence, reviewer, timestamp.
Export for audits / FOIA
Scoped, redacted logs for program auditors or records requests.
Audit, FOIA, and Documentation Standards
Public sector teams and healthcare partners need exports that stand up to audits and FOIA requests. Keep results tied to a clear request ID, reviewer, timestamp, and a redacted payload. Exports should be scoped by organization to prevent cross-tenant leakage, and avoid storing unnecessary PII while still proving that checks were performed.
How SecurePoint USA Supports This
SecurePoint USA embeds LEIE and SAM checks inside visitor, vendor, and workforce screening workflows. Unlimited screenings mean teams don't skip checks for cost reasons. Immutable audit logs and exportable evidence packs give you the artifacts you need for reviews — without over-sharing PII.
For deeper screening context, see our sanctions and visitor screening and the Compliance Hub.