About HDM BenefitsAudit BenefitsWatch Self-Insured Clients Careers
home contact search
Self-Insurance
Costs & Risks
Sarbanes-Oxley
Medical Loss Ratio
Industry News


The Sarbanes-Oxley Act of 2002 (SOX) is the public company accounting reform and investor protection act signed by President George W. Bush on Tuesday, July 30, 2002 after legislation came into force and introduced the major changes to the regulation of financial practice and corporate governance.

Named after Senator Paul Sarbanes and Representative Michael Oxley, who were its main architects, it also set a number of deadlines for compliance, it was passed into law in response to the high-profile business failures, to reinforce investment confidence, and to protect investors by improving the accuracy and reliability of corporate disclosure.

The Sarbanes-Oxley Act, which is mandatory and all organizations, is arranged into eleven titles and has a material effect on corporate health benefit programs. As far as compliance and employee health benefits are concerned, the most important sections within these are often considered to be 302 and 404.Section 302 is certifying company quarterly and annual filings. Section 404 is the requirement for companies to certify they have established, maintained and annually assess the effectives of internal controls. The structure of employee health plans often obscures the view of benefit costs and internal controls that the Sarbanes-Oxley Act demands. HDM's BenefitsAudit effectively assesses your administrator's internal controls and your risk associated with self-insuring employee health benefits. Further details on these two sections follow.

Summary of Section 302
This section is of course listed under Title III of the act, and pertains to corporate responsibility for financial reports. Periodic statutory financial reports are to include certifications that: the signing officers have reviewed the report; he report does not contain any material untrue statements or material omission or be considered misleading; the financial statements and related information fairly present the financial condition and the results in all material respects; he signing officers are responsible for internal controls and have evaluated these internal controls within the previous ninety days and have reported on their findings; a list of all deficiencies in the internal controls and information on any fraud that involves employees who are involved with internal activities; and any significant changes in internal controls or related factors that could have a negative impact on the internal controls. Organizations may not attempt to avoid these requirements by reincorporating their activities or transferring their activities outside of the United States.

Summary of Section 404
This section is listed under Title IV of the act (Enhanced Financial Disclosures), and pertains to management assessment of internal controls. Issuers are required to publish information in their annual reports concerning the scope and adequacy of the internal control structure and procedures for financial reporting. This statement shall also assess the effectiveness of such internal controls and procedures. The registered accounting firm shall, in the same report, attest to and report on the assessment on the effectiveness of the internal control structure and procedures for financial reporting. It requires each annual report of an issuer to contain an "internal control report", which shall state the responsibility of management for establishing and maintaining an adequate internal control structure and procedures for financial reporting; and contain an assessment, as of the end of the issuer's fiscal year, of the effectiveness of the internal control structure and procedures of the issuer for financial reporting. Each issuer's auditor shall attest to, and report on, the assessment made by the management of the issuer. An attestation made under this section shall be in accordance with standards for attestation engagements issued or adopted by the Board. An attestation engagement shall not be the subject of a separate engagement.

Compliance with the legislation need not be a daunting task. Like every other regulatory requirement, it should be addressed methodically, via proper analysis and study. HDM assures Sarbanes-Oxley Compliance and our BenefitsAudit effectively assesses your Administrator's internal controls and your risk associated with self-insuring employee health benefits.

 
Terms of Use Privacy Statement Site Map Healthcare Data Management, Inc.
Healthcare Data Management home contact search