Core 4.0 Pre-release

C-OPIN 3-3: Formal Acknowledgment of Compliance with the Organization’s Legal Requirements and Code of Conduct

Submited by: Tom Goddard

The Basics

This standard requires a formal, signed acknowledgement from each staff member and all other "relevant persons" (members of oversight bodies and committees) that they:

  • have access to the Code of Conduct;
  • received compliance training, including training on the Code of Conduct;
  • they understand the consequences of failure to comply with the Code of Conduct, the organization's policies, and applicable laws and regulations; and
  • have access to ways of reporting breaches of the Code of Conduct and applicable laws and regulations.

Management Tips

While there is no requirement that this be done periodically, it probably makes sense to have every person covered by this standard sign this statement each year. This will ensure that the version of the acknowledgement signed by each person is current.

Accreditation Tips

Desktop Review
Submit the applicable policy that mandates this acknowledgement, as well as a copy of the acknowledgement form itself.
Validation Review
Document review
This acknowledgement form's presence in each staff member's personnel file will be part of the reviewer's overall review of personnel files.

  • Core 4.0 Pre-release / 12.31.2018

    C-RM 3-1: Information Systems Risk Assessment and Reduction

    URAC assumes that your organization has a comprehensive risk management program, and in this standard, requires that your information systems are a component of that system. Specifically, the IT component must address explicitly data storage, gathering, and transfer.Your organization must conduct risk assessment in these three areas, and that assessment must periodically include "an entity with th...

  • Core 4.0 Pre-release / 12.26.2018

    C-RM 2-3: Business Continuity Plan Testing

    Your organization must test its business continuity plan ("BCP") no less frequently than every two years. Notably, the BCP test can be a tabletop exercise, which URAC defines as:test of a Business Continuity Plan (BCP) that includes documentation of the following aspects of the test:A tabletop exercise simulates an incident in an informal, stress-free environment.The participants who are usually t...

  • Core 4.0 Pre-release / 12.26.2018

    C-RM 2-2: Pharmacy Emergency Management Plan

    Applicable only to organizations seeking accreditation in one of URAC's pharmacy modules, this standard requires that your business continuity plan describe an emergency management system that addresses how the organization will distribute medications in the event of an emergency. The description must address the organization's facilities, its services, and its products in some detail. As was the...