What are the requirements regarding auditable events for a pharmacy application provider?
A. The pharmacy application provider must establish and implement a list of auditable events. The auditable events must, at a minimum, include the following: • Attempted unauthorized access to the pharmacy application, or successful unauthorized access to the pharmacy application where the determination of such is feasible. • Attempted or successful unauthorized modification or destruction of any information or records required by DEA, or successful unauthorized modification or destruction of any information or records required by DEA where the determination of such is feasible. • Interference with application operations of the pharmacy application. • Any setting of or change to logical access controls related to the dispensing of controlled substance prescriptions. • Attempted or successful interference with audit trail functions. • For application service providers, attempted or successful annotation, alteration, or destruction of controlled substance prescriptions or logical access
Related Questions
- What has changed regarding enrollment application requirements as a result of National Provider Identifier (NPI) implementation?
- How do I learn about the requirements and responsibilities of being a Waiver provider and download an application?
- What are the requirements regarding auditable events for an electronic prescription application provider?
