Default banner

FDA/DEA Regulatory Compliance: EPCS

Complying with Electronic Prescriptions for Controlled Substances (EPCS) Requirements

FDA/DEA Regulatory Compliance: EPCS

map
Regulation | Active Now

EPCS revises DEA’s regulations to provide practitioners with the option of writing prescriptions for controlled substances electronically as well as receiving, dispensing and archiving electronic prescriptions. The electronic prescription application must incorporate a secure process for practitioner authentication.

Thales can help prepare organizations to meet these regulations through:

  • Two-factor authentication
  • Hardware- and software-based EPCS-compliant tokens
  • Regulation
  • Compliance

The DEA's EPCS Regulation

"Electronic Prescriptions for Controlled Substances" revises DEA's regulations to provide practitioners with the option of writing prescriptions for controlled substances electronically. The regulations will also permit pharmacies to receive, dispense, and archive electronic prescriptions.

EPCS requires medical practitioners to use two-factor authentication to sign prescriptions for medical narcotics issued in digital form.

To comply with EPCS and enable the issuing of e-prescriptions for controlled substances, hospitals and healthcare institutions must instate EPCS-compliant processes certified by an independent third party, including the use of two-factor authentication (2FA) when signing e-prescriptions for controlled substances.

Thales’ SafeNet two-factor authentication solutions let hospitals and Critical Access Hospitals (CAHs) embrace EPCS quickly, without changing their current infrastructure.

Offering both hardware and software-based EPCS-compliant tokens, Thales provides frictionless authentication for practitioners and frictionless management for IT staff through fully automated workflows.

その他の主要なデータ保護とセキュリティ規制

GDPR

規制
アクティブ ナウ

これまでで最も包括的なデータプライバシー基準とされるGDPRは、組織がどこの国にあろうとも、EU市民の個人データを保持する全ての組織に対応を求められます。

PCI DSS

必須
アクティブ ナウ

クレジットカード及びデビットカードの決済処理事業者は、アカウントデータの処理、保存および送信に関する厳格なPCIDSSコンプライアンス要件に準拠する必要があります。

データ漏えい通知法

規制
アクティブ ナウ

個人情報漏えいが発生した場合に、データ侵害報告義務の要件は、世界中の国々によって制定されています。それは管轄国で違いはありますが、ほぼ全てに「セーフハーバー」条項が含まれています。