How Botox Battles Compliance Wrinkles

A BPM overhaul saved the day after legal issues complicated compliance at Botox-maker Allergan.

In September, Allergan, the $4.5 billion pharmaceutical company that makes items ranging from medical devices to pharmaceutical products, resolved federal charges that it marketed its blockbuster product—Botox—for unapproved conditions.

Allergan denied some of the allegations, such as those suggesting that its actions resulted in healthcare providers submitting fraudulent claims to Medicare and Medicaid. The company pleaded guilty to one charge and agreed to pay $600 million in fines, fees and profit forfeitures.

Writing a check, even one for $600 million, is simple compared to meeting the company’s new compliance burdens. But Allergan CIO Sue-Jean Lin says they’re ready for the challenge, because in 2008 Allergan began to revamp its compliance systems, bringing in business process management software from Metastorm.

Before the revamp, Allergan used a mix of homegrown and packaged systems to monitor compliance in different areas of the company. Its new system, which Allergan calls Beacon, went live last spring. IT worked with individual functional groups—sales, marketing and others—to map out the business processes they used and the regulations and laws the company must follow. Building these policies into the workflow also makes compliance easier for employees, Lin says.

The Botox settlement led Allergan to agree to a long list of behavior reforms and new self-monitoring requirements, on top of the hundreds of federal and state rules pharmaceutical firms must follow normally. Its compliance mandate will grow for five years under a so-called corporate integrity agreement.

In addition, the company must now prove its compliance by disclosing more reports, such as documents showing it has trained all relevant employees in how to market products within guidelines. Its senior executives must also certify that the company has met federal requirements, much like CEOs and CFOs must vouch personally for their companies’ Sarbanes-Oxley compliance.

To continue reading this article register now

7 secrets of successful remote IT teams