Post on 02-Jul-2015
description
©2014 BrightLine CPAs & Associates, Inc. All Rights Reserved
©2014 BrightLine CPAs & Associates, Inc. All Rights Reserved
©2014 BrightLine CPAs & Associates, Inc. All Rights Reserved
CONTENTS • Overview • EPCS Process • Who Must Comply? • Audit Phases
2
©2014 BrightLine CPAs & Associates, Inc. All Rights Reserved
OVERVIEW
3
©2014 BrightLine CPAs & Associates, Inc. All Rights Reserved
March 31, 2010 DEA revision to give physicians the choice of writing prescriptions for controlled substances
the traditional method or through the electronic system.
OVERVIEW
4
©2014 BrightLine CPAs & Associates, Inc. All Rights Reserved
OVERVIEW This will provide:
A reduction of paperwork and will mitigate the risk of forgery
5
©2014 BrightLine CPAs & Associates, Inc. All Rights Reserved
PROCESS
6
©2014 BrightLine CPAs & Associates, Inc. All Rights Reserved
PROCESS Logical access controls
7
©2014 BrightLine CPAs & Associates, Inc. All Rights Reserved
PROCESS Digital signature functionality
Logical access controls
8
©2014 BrightLine CPAs & Associates, Inc. All Rights Reserved
PROCESS
Time requirements within defined threshold of the NIST time source
Digital signature functionality
Logical access controls
9
©2014 BrightLine CPAs & Associates, Inc. All Rights Reserved
PROCESS
Audit trail of controlled substance prescriptions
Time requirements within defined threshold of the NIST time source
Digital signature functionality
Logical access controls
10
©2014 BrightLine CPAs & Associates, Inc. All Rights Reserved
PROCESS
Archiving of audit logs
Audit trail of controlled substance prescriptions
Time requirements within defined threshold of the NIST time source
Digital signature functionality
Logical access controls
11
©2014 BrightLine CPAs & Associates, Inc. All Rights Reserved
PROCESS
Physical security and processing integrity controls
Archiving of audit logs
Audit trail of controlled substance prescriptions
Time requirements within defined threshold of the NIST time source
Digital signature functionality
Logical access controls
12
©2014 BrightLine CPAs & Associates, Inc. All Rights Reserved
WHO MUST COMPLY?
13
©2014 BrightLine CPAs & Associates, Inc. All Rights Reserved
Not a mandate to implement EPCS (Except New York)
COMPLIANCE
14
©2014 BrightLine CPAs & Associates, Inc. All Rights Reserved
Practitioners / pharmacies that perform EPCS
(Compliance with the DEA rule)
COMPLIANCE
15
©2014 BrightLine CPAs & Associates, Inc. All Rights Reserved
Surescripts mandates: • Every physician and pharmacy
application vendors
• Apply for the eligibility to conduct EPCS
COMPLIANCE
16
©2014 BrightLine CPAs & Associates, Inc. All Rights Reserved
Application service providers: • Must have a certification • Third-party audit • Ensure that every electronic prescription and
pharmacy application can be used to sign, transmit, or process controlled substances.
ADDITIONAL DOCUMENTATION REQUIREMENTS
17
©2014 BrightLine CPAs & Associates, Inc. All Rights Reserved
• Practitioners must be in compliance (Section 1311.120)
• Pharmacy applications must be in compliance (Section 1311.205)
COMPLIANCE
18
©2014 BrightLine CPAs & Associates, Inc. All Rights Reserved
AUDIT PHASES
19
©2014 BrightLine CPAs & Associates, Inc. All Rights Reserved
• Evaluation of controls to meet the DEA requirement
• Identification of the DEA requirements that are achieved
• Identification of the DEA requirements that are not in place to ensure compliance
PRELIMINARY ASSESSMENT
20
©2014 BrightLine CPAs & Associates, Inc. All Rights Reserved
• Determine the EPCS application’s compliance with the DEA requirements
• Deliverable includes: – An independent report regarding compliance – Summary of the applicable compliance
benchmarks – Summary of process improvement areas
FINAL ASSESSMENT
21
©2014 BrightLine CPAs & Associates, Inc. All Rights Reserved
SUMMARY
22
©2014 BrightLine CPAs & Associates, Inc. All Rights Reserved
Demonstrate design and operational effectiveness
BENEFITS OF THE AUDIT
23
©2014 BrightLine CPAs & Associates, Inc. All Rights Reserved
Demonstrate design and operational effectiveness
Meet regulatory or contractual mandates
BENEFITS OF THE AUDIT
24
©2014 BrightLine CPAs & Associates, Inc. All Rights Reserved
Demonstrate design and operational effectiveness
Meet regulatory or contractual mandates
Bolster trust and confidence
BENEFITS OF THE AUDIT
25
©2014 BrightLine CPAs & Associates, Inc. All Rights Reserved
Demonstrate design and operational effectiveness
Meet regulatory or contractual mandates
Bolster trust and confidence
Independent and validated third party opinion
BENEFITS OF THE AUDIT
26
©2014 BrightLine CPAs & Associates, Inc. All Rights Reserved
Demonstrate design and operational effectiveness
Meet regulatory or contractual mandates
Bolster trust and confidence
Independent and validated third party opinion
Demonstrates management’s responsibility and accountability
BENEFITS OF THE AUDIT
27
©2014 BrightLine CPAs & Associates, Inc. All Rights Reserved
Demonstrate design and operational effectiveness
Meet regulatory or contractual mandates
Bolster trust and confidence
Independent and validated third party opinion
Demonstrates management’s responsibility and accountability
Promote a stronger control environment
BENEFITS OF THE AUDIT
28
©2014 BrightLine CPAs & Associates, Inc. All Rights Reserved
LEARN MORE >>
Want to know more about EPCS?
29