DSCSA Saleable Returns Verification Requirement Archives - rfxcel.com
EnglishFrenchGermanItalianPortugueseRussianSpanish

Spherity and Antares Vision Group further partnership to ensure life sciences customers will comply with upcoming DSCSA regulations

Antares Vision Group, through rfxcel technology, has integrated Spherity’s Credentialing Service into its DSCSA solutions to verify authorized trading partners’ identities and licensing in all regulated interactions.

Reno, Nevada, April 25, 2023 — Spherity, a German leading provider of digital wallet and credentialing solutions, and Antares Vision Group, an Italian multinational and a leading provider of track and trace and quality control systems, are continuing a partnership that helps ensure life sciences customers comply with this year’s U.S. Drug Supply Chain Security Act (DSCSA) regulations.

By November 27, 2023, manufacturers, distributors, dispensers, and other actors in the life sciences supply chain must prove that they are legitimate organizations, or authorized trading partners (ATPs), as defined by the DSCSA.

The two companies first partnered in 2021, when Spherity’s Credentialing Solution, CARO, was integrated into the Group’s Verification Router Service (VRS) solution, enabled by rfxcel technologies, to allow life science customers to confirm their ATPs status. The combined solution also allows customers to exchange DSCSA-compliant electronic Product Identifier (PI) messages, trace products, and create an audit trail of their VRS business interactions.

CARO uses Self-Sovereign Identity (SSI) technology to establish a secure, verifiable digital enterprise identity for every ATP. By integrating the service into its VRS solution, rfxcel customers can ensure secure, authenticated data exchange with other ATPs and verify they have the credentials required by the DSCSA, including state licenses and U.S. Food and Drug Administration Entity Identifiers (FEIs).

“We partnered with Spherity to enable our customers to comply with this year’s DSCSA authorized trading partner (ATP) requirements,” said rfxcel Senior Vice President of Product and Strategy Herb Wong. “With Spherity’s CARO, our VRS solution automatically confirms whether a company is an ATP. Now, every customer can add ATP credentialing to our entire product portfolio and secure their VRS interactions.”

“Spherity will ensure that Antares Vision Group’s customers can securely exchange data with previously unknown entities,” said Georg Jürgens, Spherity’s Manager for Industry Solutions. “The concept of exchanging and verifying credentials using Digital Wallets supports company and product compliance use cases that require communication between regulators, existing supply chain partners, and new trading partners.”

Spherity and Antares Vision Group are members of the Open Credentialing Initiative (OCI), and both contribute to the standardization and industry-wide interoperability of credentialing technology.

For more information about the Spherity-Antares Vision Group partnership, their solutions for DSCSA compliance with ATP requirements, and the Open Credentialing Initiative, contact Spherity’s Manager for Industry Solutions Georg Jürgens at georg.juergens@spherity.com and visit caro.vc, and rfxcel Senior Vice President of Product and Strategy Herb Wong at hwong@rfxcel.com.

ABOUT ANTARES VISION GROUP

Antares Vision Group is an outstanding technology partner in digitalization and innovation for companies and institutions, guaranteeing the safety of products and people, business competitiveness, and environmental protection. The Group provides a unique and comprehensive ecosystem of technologies to guarantee product quality (inspection systems and equipment) and end-to-end product traceability (from raw materials to production, from distribution to the consumer) through integrated data management, applying artificial intelligence and blockchain technology. Antares Vision Group is active in life science (pharmaceutical, biomedical devices and hospitals) and Fast-Moving Consumer Goods (FMCG), including food, beverage, cosmetics, and glass and metal containers. As a world leader in track and trace solutions for pharmaceutical products, the Group provides major global manufacturers (over 50% of the top 20 multinationals) and numerous government authorities with solutions, monitoring their supply chains and validating product authenticity. Listed since April 2019 on the Italian Stock Exchange in the Alternative Investment Market (AIM) segment and from 14 May 2021 in the STAR segment of Euronext; furthermore, from July 2022 included in the Euronext Tech Leaders index, dedicated to leading tech companies with high growth potential. In 2022, Antares Vision Group recorded a turnover of €223.5 million. The Group operates in 60 countries, employs more than 1,100 people, and has a consolidated network of over 40 international partners. To learn more, please visit www.antaresvision.com and www.antaresvisiongroup.com.

ABOUT SPHERITY

Spherity is a German software provider bringing secure and decentralized identity management solutions to enterprises, machines, products, data and even algorithms. Spherity provides the enabling technology to digitalize and automate compliance processes in highly regulated technical sectors. Spherity’s products empower cybersecurity, efficiency and data interoperability among digital value chains. Spherity is certified according to the information security standard ISO 27001.

DSCSA Summary: A Look at the Law as We Count Down to 2023

As the clock continues to tick toward the November 27, 2023, U.S. Drug Supply Chain Security Act (DSCSA) deadline, we thought it was a good time for a recap. Our DSCSA summary will hit the major milestones, changes from the FDA, and compliance requirements.

We’ll also include an updated timeline graphic that first appeared during our three-part DSCSA webinar series last summer, which dealt with authorized trading partners (ATPs), EPCIS, and the Verification Router Service (VRS). We wrote about those topics twice just last week: Check out our FDA DSCSA Guidance Update: EPICS, ATPs, and the Countdown to 2023 and the Q&A with our SVP of Product and Strategy Herb Wong.

Now, on to the DSCSA summary: everything you need to know in 5 minutes.

What is the DSCSA?

The DSCSA is a 10-year plan to transform the U.S. pharmaceutical supply chain. It became law in November 2013, as Title II of the Drug Quality and Security Act (DQSA), and has been rolled out since 2015. Implementation culminates on November 27, 2023, at which time the U.S. pharmaceutical supply chain will be fully serialized.

The U.S. Food and Drug Administration (FDA) says the goal of the DSCSA is “to build an electronic, interoperable system to identify and trace certain prescription drugs as they are distributed in the United States.”

Furthermore, the DSCSA “will enhance [the] FDA’s ability to help protect consumers from exposure to drugs that may be counterfeit, stolen, contaminated, or otherwise harmful” and “improve detection and removal of potentially dangerous drugs from the drug supply chain to protect U.S. consumers.”

Who has to comply?

Manufacturers, wholesalers, dispensers, repackagers, and third-party logistics providers (3PLs) must comply with DSCSA if they want to do business in the United States.

Key requirements

The FDA puts DSCSA requirements into four categories. This is what Herb Wong calls “the four cornerstones” of the law.

1. Product identification (serialization). A unique product identifier (PI), such as a bar code, must be placed on certain prescription drug packages.

2. Product tracing. Stakeholders must provide information about a drug and who handled it each time it’s sold. This includes the following:

        • Transaction information (TI) includes the product name; its strength and dosage form; its National Drug Code (NDC); container size and number of containers; lot number; transaction date; shipment date; and the name and address of the businesses from which and to which ownership is being transferred. Note: We’ll be writing more about NDCs soon.
        • The transaction statement (TS) is a paper or electronic attestation by the business transferring ownership of the product that it has complied with the DSCSA.
        • Transaction history (TH) is an electronic statement with the TI for every transaction going back to the manufacturer. Note: TH will not be required after the November 2023 deadline.

For the record, the FDA defines “transaction” as the “transfer of product between persons in which a change of ownership occurs.”

3. Verification (VRS). Stakeholders must establish systems and processes to verify PIs for certain prescription drugs packages. The Verification Router Service (VRS) enables a rapid, secure exchange of data to do this

4. Authorized trading partners (ATPs). The DSCSA also says that if you’re not an ATP, your access to the U.S. pharma supply chain will be severely restricted or denied altogether. All manufacturers, wholesale distributors, repackagers, 3PLs, and dispensers and their trading partners must be ATPs

If you want to know more, read our in-depth explanations of the VRS and ATPs. Or just contact us today to talk to one of our DSCSA experts!

Other requirements

Detection and response + notification. Stakeholders must quarantine and promptly investigate suspect or illegitimate drugs. They must also notify the FDA and other interested parties when they find such drugs.

Licensing. Wholesalers must report their licensing status and contact information to the FDA. Third-party logistics providers must obtain a state or federal license.

DSCSA Summary: Timeline

The FDA has delayed the rollout of the DSCSA two times (September 2019 and October 2020). However, an FDA official said in August 2021 that there would be no more delays. November 27, 2023, is a done deal.

DSCSA Timeline 2013-2023

 

Final thoughts

If you have any questions about this DSCSA summary, contact us today. There might be one or two things that surprised you — like the sunsetting of the transaction history (TH) requirement — and we want to make sure you’re sure about what’s happening.

Our extensive writing about the law is a valuable resource, but nothing beats spending 15 minutes with one of our supply chain experts. So schedule a short demo of our DSCSA compliance solution. Our No. 1 priority is to help you understand the regulations and be prepared for the full serialization of the U.S. pharma supply chain next November.

And if you happen to be going to this year’s HDA Traceability Seminar in Washington, D.C., drop us a line here to arrange a meeting and be sure to catch Herb Wong in the “EPCIS Onboarding Across the Supply Chain” panel discussion and his roundtable about industry readiness for November 2023.

 

 

 

 

 

 

DSCSA Compliance Update with Herb Wong: What’s Happening Right Now?

Herb Wong’s a busy guy. We said that the last time we did a DSCSA compliance update with him, and it’s still true today Just last week, for instance, he participated in two Healthcare Distribution Alliance (HDA) webinars, “DSCSA 2023: How a Service Provider Can Help You Prepare” and “All About the VRS.” These were part of the HDA’s 2022 Traceability Webinar Series, which Antares Vision Group is sponsoring.

That’s why it was such a treat to get some one-on-one time with Herb for a real-time DSCSA compliance update — what’s happening right now with industry readiness.

We asked Herb to talk about what he calls “the four cornerstones” of DSCSA compliance: product identification (EPCIS and serialization), product tracing, authorized trading partners (ATPs), and verification (the Verification Router Service, or VRS). Here’s what he had to say.

DSCSA compliance update #1: product identification (EPCIS and serialization)

All solution providers’ systems are ready to send and receive serialization data in the EPCIS format, but we still need to help the industry get data flowing. To use an analogy, even though the pipes have been laid and connected, we’re just not getting enough water through to test for “leaks” in the system — errors in send/receive processing. Just as important, we need time to “flush the pipes” to ensure that we have “clean water.” By that I mean ensuring that the data is correct.

We’re trying to do everything we can. We’ve actually developed a standard process for onboarding customers and getting data exchanged with other solution partners. We’re going to be piloting this so we can refine the onboarding process. [Herb’s talking about the EPCIS Onboarding Guide Workgroup and its draft “Guide for Accelerated EPCIS Onboarding.”]

What’s the key takeaway, Herb?

The key takeaway is, “Let’s connect, let’s get the serialized data out.” Time is running out. That’s the biggest message. People who think they have time to wait until next year, you really don’t. Because what’s going to happen is similar to what happened when the lot-based laws went live: The people who waited couldn’t find help. All the solution providers were busy; everyone was busy. And everyone who waited was trying to get through the same door to meet the deadline.

So, if you’re a manufacturer, you have to start sending data early. If you’re serializing and not sending data downstream, start now. Don’t wait till the November 2023 deadline. You have to “turn on the switch.” Send your data downstream now.

At this point, we decided to ask Herb about aggregation.

DSCSA doesn’t say anything about aggregation. But wholesalers are asking for aggregation to support their business processes. When you send electronic data, wholesalers need to know what serial numbers are in the cases they just received.

Aggregation is a business requirement for operational efficiency. For example, if you get 10 cases with a hundred items in each case, you don’t want to open the cases and scan every item to see what you received and will ultimately ship. Aggregation makes things faster and more efficient. It’s similar to how VRS had both a legal and a business requirement: The legal requirement mandated a response within 24 hours for saleable returns verification. But given the potential volume of saleable returns, 24 hours was too slow for wholesalers; it would cause the receiving docs to fill up with products pending verification. For this reason, wholesalers mandated a business requirement of sub-second response times.

DSCSA compliance update #2: product tracing

A centralized solution or standard has not been defined for product tracing. A lot of different approaches have been discussed, but there’ve been no specs, no firm requirements, that solution providers can implement at this time.

Right now, we’re supporting the industry’s manual process for product tracing. The HDA, NABP, and PDG have done a really good job of outlining what’s required for tracing. [That’s the Healthcare Distribution Alliance, the National Association of Boards of Pharmacy, and the Partnership for DSCSA Governance.]

They’ve walked through a series of scenarios that can be executed manually and have helped the industry to better understand the complexity and nuances of tracing a product through the system. In parallel to this effort, the PDG is working on a data format to communicate traceability requests and responses. PDG is putting that information into a JSON format to communicate the need. [JSON is the JavaScript Object Notation data interchange format. Its advantages are that it uses human-readable text and is a more compact means of communicating data.]

What’s the key takeaway, Herb?

Pay attention to the traceability scenarios that are coming out of the HDA, NABP, and PDG. They’re doing a really good job of trying to show how tracing workflows will happen. They’ll be publishing more results and helping the industry understand. Watch for these, because it will enlighten you about what’s coming in 2023.

DSCSA compliance update #3 and #4: ATPs and VRS

From a solution provider standpoint, the ATP and VRS initiatives have become one and the same. Right now, ATPs have only been applied against the VRS, so the timing for us to get that done has become one implementation effort.

When you make a VRS request, you have to prove you’re an ATP. ATP is there to confirm two things: you are who you say you are and you are authorized to transact business. Proof that you are an ATP is especially important in the VRS network since trading partners may not have direct relationships with other VRS participants.

For VRS, there’s a new version 1.3 that will be deployed before the DSCSA 2023 deadline. The current version we have is based on the 1.2 standards interface. The 1.3 version “opens up” VRS beyond what it was intended to do, which is the verification of saleable returns.

What people should know is that VRS 1.3 is not backwards-compatible. This means VRS providers have to upgrade at once. To ensure that the upgrade occurs on time, solution providers have agreed to “decouple” the 1.3 interface from the 1.3 functionality.

What this means is that everyone on the VRS network will remain connected since we will all support the new 1.3 connections. However, solution providers (or customers) who are not ready to upgrade to the new 1.3 functionality can continue to use VRS as needed. That’s going to be important because it allows us to change the interface so we can at least keep talking to each other. We can be interoperable. But not everyone has to support the features of 1.3 at the same time.

As for timing of the update, we’re talking about doing the testing of the interoperability of 1.3 in Q1 [of 2023]. So we’ll have to push this into a production environment after Q1, but we haven’t agreed on a production date.

What’s the key takeaway, Herb?

There is going to be an upgrade required soon and the industry and solution providers are working to make sure it’s easy to implement. We realize that is not as simple as a software upgrade but we need to carefully consider the revalidation requirements of our customers.

Final thoughts

And there you have it: A DSCSA compliance update about what’s happening right now with industry readiness for product identification (EPCIS and serialization), product tracing, and ATPs and VRS. Thanks, Herb!

Contact us if you have questions about what Herb talked about or the DSCSA in general. We can explain the requirements and how our solutions will help ensure you’re ready for November 2023 and the full serialization of the U.S. pharmaceutical supply chain.

If you like, we can probably arrange a meeting with Herb. But remember, he’s busy. In the coming weeks, he’ll travel to the Antares Vision Group global HQ in Italy, visit the Group’s brand-new North America HQ in New Jersey, and join a panel discussion at the HDA Traceability Seminar in Washington, D.C. (Antares Vision Group is also a sponsor of that annual event.) So reach out today and let’s see what we can work out.

Also take a look at our DSCSA Compliance Library. It’s a clearinghouse of information with links to our blog posts, white papers, webinars — everything — about the law, including the “four cornerstones” Herb talked about in today’s DSCSA compliance update.

FDA DSCSA Guidance Update: EPCIS, ATPs, and the Countdown to 2023

If androids dream of electric sheep, do pharma stakeholders dream of GS1’s Electronic Product Code Information Services (EPCIS) standard? Considering recent FDA DSCSA guidance and the industry reaction, the answer could very well be “yes.”

On July 5, the FDA published two draft guidance documents about the Drug Supply Chain Security Act (DSCSA). One deals with using electronic standards for tracing pharmaceutical products in the U.S. supply chain and one addresses authorized trading partners (ATPs):

Let’s take a closer look at the FDA DSCSA guidance and where the pharma industry stands as we count down to November 27, 2023. That’s when manufacturers, wholesalers, distributors, and dispensers will be required to exchange serialized product information and verify their ATP status.

Quick history of FDA DSCSA guidance

The FDA has released DSCSA guidance and policy documents since 2014, most of which are all available on the Agency’s “Drug Supply Chain Security Act Law and Policies” page. This year, in addition to the July draft guidance, the Agency published the following:

What did the July FDA DSCSA guidance say?

The FDA said the July documents updated guidance from November 2014 and August 2017 that was never finalized.

Electronic traceability standards/EPCIS

The new FDA DSCSA guidance for electronic traceability standards confirms that paper-based product tracing “will no longer be permitted and verification of product at the package level will be required, unless a waiver, exception, or exemption applies.” Furthermore, it recommends that stakeholders use EPCIS to exchange information.

It’s worth quoting the guidance at length, as the Agency clearly states its position on EPCIS, including that it will “help secure” DSCSA compliance:

FDA recommends that trading partners use the Electronic Product Code Information Services (EPCIS) standard to provide and maintain the data associated with transaction information and transaction statements. EPCIS is a global GS1 standard that allows trading partners to capture and share information about products as they are transacted through the supply chain. Use of EPCIS can support and enable electronic and interoperable interfaces used by trading partners to help ensure compliance with the DSCSA requirements and is compatible with a range of different technological approaches. FDA believes that EPCIS is an appropriate globally recognized standard, and FDA understands there is considerable agreement among stakeholders that EPCIS is a suitable standard to adopt for the enhanced drug distribution security requirements.

The comment period for this guidance ends September 6.

Identifying trading partners

The FDA said it issued this guidance “to assist industry and state and local governments in understanding how to categorize the entities in the drug supply chain in accordance with the” DSCSA. It also does the following:

      • Explains how to determine when certain statutory requirements will apply to entities that are considered trading partners.
      • Discusses the activities of private-label distributors, salvagers, and returns processors and reverse logistics providers.
      • Discusses the distribution of drugs for emergency medical reasons, office use, non-human research purposes, and research purposes in humans under an investigational new drug application.

The comment period for this guidance also ends September 6.  As for licensure for trading partners, the FDA put a reminder on its DSCSA page that wholesalers and third-party logistics providers (3PLs) are required “to report licensure and other information to FDA annually under sections 503(e)(2) and 584 Federal Food, Drug, and Cosmetic Act.” The intro on this page references the July 5 draft guidance.

Industry reaction to the FDA DSCSA guidance

The Regulatory Affairs Professionals Society (RAPS) earlier this month published an excellent article about industry reaction. Here are some of the key takeaways:

      • Trading partners need to begin testing and piloting data exchanges now to identify and remedy any glitches.
      • Manufacturers in particular need to focus on data accuracy to ensure legitimate products aren’t rejected.
      • The FDA must clarify if web portals will be allowed for data exchanges. Web portals are a good solution for smaller companies (e.g., dispensers) that might not have the means to build compliant tracing systems from scratch.
      • The FDA should finalize its proposed rule on licensing standards for 3PLs.

Final thoughts

The July FDA DSCSA guidance was another important marker along the 10-year rollout of the law. We’ll be writing more about this next week, when we sit down with Herb Wong, rfxcel’s senior vice president of product and strategy.

If you don’t know Herb, he’s a DSCSA guru who’s been deeply involved in outreach, education, and initiatives to help the industry prepare for November 2023. For example, he was integral to the formation of the EPCIS Center of Excellence and led our FDA-approved pilot to extend testing of the Verification Router Service (VRS). He was also recently name-checked by the Open Credentialing Initiative (OCI), which focuses on meeting ATP requirements, for his “collaborative spirit and dedication to improving the U.S. pharmaceutical supply chain.”

So check back next week for our conversation with Herb. In the meantime, if you have questions or feel you’re not on track to comply by November 2023, contact us today to build a solution tailored to your exact needs. Also visit our DSCSA Compliance Library to access our extensive collection of articles, webinars, white papers, and news.

DSCSA EPCIS Update: 3 Questions for rfxcel SVP of Product and Strategy Herb Wong

Herb Wong’s a busy guy. As senior vice president of product and strategy at rfxcel, he’s always on the go, advising and conferring with customers, talking and brainstorming with industry leaders, dashing off to speak at conferences, and thinking of new ways to improve … everything. So we were happy that he found time to talk with us about what’s happening with DSCSA EPCIS.

Our chat comes as Herb is fresh off an appearance at the Healthcare Distribution Alliance (HDA) Distribution Management Conference in Austin, Texas, where he participated in the “EPCIS Standards and Implementation Process” panel discussion. HDA also recently published a DSCSA EPCIS Implementation Benchmarking Survey about the progress of adoption and trading partner plans for sending data.

Here’s the scoop:

Herb, what has the EPCIS Center of Excellence learned about industry readiness for the DSCSA EPCIS requirements?

Well, the EPCIS COE, which we introduced at the HDA Quarterly Update in September last year, has discovered a number of things through our studies and meetings. Here are takeaways in the key areas of education, consistency, and standards.

As we get closer to the November 2023 deadline, new participants are less knowledgeable about EPCIS and DSCSA. Their integrations take more time and they have more questions and need more education. This was a recurring theme we started hearing during our EPCIS COE interviews. Because of this, the HDA and GS1 are looking to see how they can offer/repackage training to get the industry up to speed.

In terms of consistency, we are looking into developing a common, consistent process for all solution providers to begin an EPCIS exchange. This can improve the efficiency across all supply chain partners.

And for standards, we have been discussing a process or tool to have all participants verify that their EPCIS data is formatted correctly before they begin exchanging it with others. GS1 developed an offering for this and everyone agrees that it’s a good idea; but determining who pays for this testing has been challenging.

How has the industry reacted to the EPCIS COE’s efforts?

Overall, everyone has been receptive. But this is a huge undertaking. It reminds me of the question, “How do you eat an elephant?” Answer: “One spoonful at a time.” Accelerating EPCIS data exchange is like that. It’s so big that people don’t know exactly where to start.

The answer is to just start somewhere and then learn and improve. The hardest part is getting started. Once we decide on a few areas where we can make an impact, momentum will keep us moving forward. We are in the process of agreeing on what we can do, so stay tuned!

What are your thoughts about industry readiness?

A number of supply chain partners asked me this question at the HDA Distribution Management Conference in Austin earlier this month. The industry is becoming more focused on the deadline. Everyone is realizing that the time for open-ended discussion is coming to a close and decisions must be made. We have 19 months to be ready for DSCSA 2023 and a lot of different efforts must be aligned.

Final thoughts

Herb Wong, everyone!

We hope Herb’s answers were helpful and shed light on the industry’s efforts to be ready for the DSCSA EPCIS requirements. As he said, it’s an elephant-sized undertaking with a lot of moving parts that need coordination and consensus. The EPCIS COE is “the spoon” that’s helping the pharmaceutical industry digest the requirements, address the challenges, and get everyone compliant by November 27, 2023.

If you still have questions, your first step should be to contact us. One of our supply chain experts can explain the requirements and how our solutions will get your house in order. If you like, we can probably arrange a meeting with Herb. So reach out today and let’s talk.

We also encourage you to browse our DSCSA Compliance Library. It’s a clearinghouse of information with links to our blog posts, white papers, webinars — everything — about the law, including EPCIS requirements.

Last, we want to let you know that in June Herb will head to San Diego to speak at the GS1 Connect 2022 conference. On Thursday, June 9, he’ll present “Supply Chain Traceability: Can Your Business Survive Without It?” Herb will discuss why traceability is foundational to business success and how companies in any industry can leverage traceability in a digital supply chain to ensure they comply with regulations and much more. Check back for updates as we get closer to June!

DSCSA Compliance Library: Our DSCSA Resources in One Place

Welcome to the rfxcel DSCSA Compliance Library. It’s a collection of our DSCSA resources (as of September 2022). As we move toward the November 2023 deadline, we thought it would be a good idea to make this information available in one convenient location.

We will, of course, continue writing about the DSCSA and providing the best supply chain solutions to ensure manufacturers, wholesalers, dispensers, repackagers, third-party logistics providers — all pharmaceutical stakeholders — meet the requirements and remain compliant forever.

So bookmark this page and our blog. You can also subscribe to our newsletter to make sure you don’t miss anything about the DSCSA and other important developments in the pharma industry. Just fill out the short form at the bottom of any page on our website.

And of course, contact us today with your questions about the DSCSA or anything else about the pharma supply chain. Our experts are here to help.

A note about the rfxcel DSCSA Compliance Library

Please note that that we haven’t included everything we’ve written or presented about the DSCSA. Deadlines and requirements have changed since the law was enacted in November 2013, so some of our earlier pieces are, logically, outdated. Rest assured that the contents of the rfxcel DSCSA Compliance Library are up to date.

If you want to see how we’ve followed the evolution of the DSCSA in our blog or track down other news we shared over the years, look around our “Resources” page. You’ll probably find some other things that interest you too.

­­Our top DSCSA webinars
The DSCSA in our blog
DSCSA compliance white papers + global compliance resources
Our top DSCSA news items
The DSCSA timeline

DSCSA 2023 Serialization Timeline

What is the Drug Supply Chain Security Act (DSCSA)?

Today’s question: What is the Drug Supply Chain Security Act (DSCSA)?

The Drug Supply Chain Security Act (DSCSA) represents the most significant change to pharmaceutical distribution and manufacturing processes in decades.
When the act was originally passed, DSCSA implementation was supposed to occur at a much faster pace. However, the FDA had to push back the deadline on two separate occasions, as manufacturers and distributors simply weren’t ready to adapt to the changes.

We’ve written extensively about the legislation, which was passed on November 27, 2013. But with the deadline for full compliance quickly approaching, we thought a quick overview was in order. So let’s answer the question, What is the Drug Supply Chain Security Act?

Understanding the Drug Supply Chain Security Act?

If you’re a pharmaceutical company — a manufacturer, wholesaler, dispenser, repackager, or third-party logistics provider — you must comply with the Drug Supply Chain Security Act (DSCSA) if you want to do business in the United States.

The U.S. Food and Drug Administration (FDA) says the goal of the DSCSA is “to build an electronic, interoperable system to identify and trace certain prescription drugs as they are distributed in the United States.” The Act “will enhance [the] FDA’s ability to help protect consumers from exposure to drugs that may be counterfeit, stolen, contaminated, or otherwise harmful” and “improve detection and removal of potentially dangerous drugs from the drug supply chain to protect U.S. consumers.”

The law has been rolled out in phases since it was passed nearly 10 years ago. Implementation culminates on November 27, 2023, at which time the U.S. pharmaceutical supply chain will be fully serialized.

DSCSA Compliance

In the buildup to the rollout of DSCSA’s final layer of regulations, the FDA has partnered with numerous industry leaders to discuss various aspects of the Drug Supply Chain Security Act.

These discussions cover DSCSA compliance topics, technical requirements, and mechanisms for requesting information from pharmaceutical manufacturers. Stakeholder experiences during the implementation process are also considered.

Additionally, the FDA published another round of DSCSA guidance documents in March of 2023. These documents provide concrete definitions for terms like “illegitimate product” and “suspect product,” along with other key information.

Pharmacies, healthcare organizations, and other members of the pharmacological supply chain can use these definitions to analyze the authenticity of drug products and protect consumers.

You can find more information about DSCSA 2023 implementation and overall readiness by visiting the FDA’s website.

Key Requirements of the Drug Supply Chain Security Act

Formerly known as the Drug Quality and Security Act (DQSA), the DSCSA sets forth sweeping labeling and tracing requirements for the pharmaceutical industry.

By providing comprehensive FDA guidance, the act facilitates the accurate tracing of products from the point of production to distribution to health systems and beyond. However, product tracing is only a single component of the DSCSA.

When structuring the act, the FDA grouped DSCSA requirements into the following categories:

1. Product identification/serialization

A unique product identifier (PI), such as a bar code, must be placed on certain prescription drug packages.

2. Product tracing

Stakeholders must provide information about a drug and who handled it each time it’s sold. This includes transaction information (TI), a transaction statement (TS), and a transaction history (TH), collectively known as “T3” information. Read our “Dispensers and DSCSA 2023” white paper for more about T3 information.

While all aspects of the DSCSA are important, its product tracing provisions will likely have the most significant impact on the pharmaceutical supply chain. Pharmacists, dispensers, distributors, and all other members of the supply network can leverage traceability data to ensure product authenticity and protect consumers from the dangers of counterfeits.

3. Product verification

Stakeholders must establish systems and processes to verify PIs for certain prescription drugs packages. The Verification Router Service (VRS) enables a rapid, secure exchange of data to do this. See more about VRS below.

4. Detection and response + notification

Stakeholders must quarantine and promptly investigate suspect or illegitimate drugs. They must also notify the FDA and other interested parties when they find such drugs.

5. Licensing

Wholesalers must report their licensing status and contact information to the FDA. Third-party logistics providers must obtain a state or federal license.

Looking Forward: DSCA 2023

The FDA has delayed the rollout of the DSCSA two times, giving the industry extra time to prepare. However, an FDA official recently said there will be no more delays. November 27, 2023, is a done deal.

In terms of what’s next, take a look at our “DSCSA 2023: The Future of Pharmaceutical Traceability in the United States” blog post. This gets into the granular details of the transformation that’s going to happen in 2023, but here are the basics of what to expect:

Serialization

Serialization relies on product identifiers (the “PIs” we mentioned above), which include serial numbers and expiration dates. For 2023, all transaction information (the “TI” we mentioned above) must include the PI. TI includes the following:

  • The product name
  • The product’s strength and dosage form
  • The product’s National Drug Code
  • The container size and number of containers
  • The lot number
  • The transaction date
  • The shipment date
  • The name and address of the businesses from which and to which ownership is being transferred

Authorized trading partners

Put simply, the DSCSA says that if you’re not an authorized trading partner (ATP), your access to the U.S. pharma supply chain will be severely restricted or denied altogether. All manufacturers, wholesale distributors, repackagers, third-party logistics providers, and dispensers and their trading partners must be ATPs. Learn more about ATPs in our DSCSA Authorized Trading Partners guide.

Verifying drugs

The DSCSA’s saleable returns verification requirement stipulates that wholesalers must verify all returned drugs before they can be reintroduced to the supply chain. This is done by verifying a drug’s PI. A wholesaler must initiate a verification request to the drug’s manufacturer, then the manufacturer must provide a verification response within 24 hours. The Verification Router Service — the VRS — is what enables the rapid, secure exchange of data between these parties. Like everything else in the DSCSA, we’ve written extensively about the VRS. Our “DSCSA Saleable Returns Verification Requirement: Just the Facts” article is a good place to start.

Final thoughts

What is the Drug Supply Chain Security Act? The DSCSA makes pharma stakeholders responsible for securing the U.S. supply chain. It doesn’t matter if you’re a manufacturer, wholesaler, repackager, third-party logistics provider, or a dispenser — the law affects how you conduct business. Your compliance depends on making sure you can meet your responsibilities.

That’s where rfxcel comes in.

A fully serialized pharma supply chain is just two years away. It’s important to use this time to get your systems in place. We have almost 20 years of experience providing the pharmaceutical industry with leading regulatory and compliance software. So if you aren’t sure if you’re going to be ready for DSCSA 2023 and want to see a short demo of our solutions — or just want to know more about your responsibilities — contact us today. Our DSCSA experts will work directly with you to design a solution that meets your specific needs, no matter your role in the supply chain.

In the meantime, you can hear directly from our experts in our “Plan for DSCSA Readiness” webinar and our DSCSA 2023 webinar series. These are great resources to help you better understand the law.

Drug Supply Chain Security Act Pharmacy Responsibilities

Drug Supply Chain Security Act pharmacy responsibilities are complex. They can be confusing. But the clock is ticking to be ready for the November 27, 2023, deadline. Let’s do a quick recap for pharmacies.

What is the U.S. Drug Supply Chain Security Act?

The U.S. Drug Supply Chain Security Act, enacted on November 27, 2013, establishes a system to track and trace prescription drugs in a fully serialized supply chain. It calls for end-to-end traceability and electronic interoperability to prevent counterfeit, stolen, contaminated, or otherwise harmful drugs from entering the U.S. supply chain.

So far, the DSCSA has mostly focused on lot-level traceability — exchanging information about every package of medication so stakeholders can see exactly where it has been. Enactment culminates in November 2023, with complete unit-level serialization of the U.S. drug supply chain. This means stakeholders will have to electronically track products at the individual package level.

Drug Supply Chain Security Act pharmacy responsibilities: definitions

Pharmacies are referred to as “dispensers” in the DSCSA. The legislation defines a dispenser as “a retail pharmacy, hospital pharmacy, a group of chain pharmacies under common ownership and control that do not act as a wholesale distributor, or any other person authorized by law to dispense or administer prescription drugs, and the affiliated warehouses or distribution centers of such entities under common ownership and control that do not act as a wholesale distributor.”

If you dispense only products to be used in animals, you are not a dispenser under the DSCSA.

How to comply with the DSCSA

As we said above, the Drug Supply Chain Security Act pharmacy responsibilities are complex. Let’s break them down into easy-to-understand pieces.

You must exchange information about every drug you buy and who handled it each time it changes ownership in the United States.

The DSCSA calls this “product tracing information,” and it has three components, collectively referred to as “T3 information”:

  1. Transaction Information (TI) about a product (e.g., proprietary or established name or names and the strength and dosage form)
  2. Transaction Statement (TS), which is an electronic statement confirming the entity transferring ownership.
  3. Transaction history (TH), an electronic statement with the TI for every transaction going back to the manufacturer. TH is required until the November 27, 2023, deadline.
You must receive, store, and provide product tracing documentation

You can accept prescription drugs only if they have proper tracing information, and you must store the information for six years. You must also generate and provide all information when you sell a prescription drug to a trading partner.

You can only do business with authorized trading partners (ATPs)

And speaking of trading partners, if you can’t confirm your they’re licensed or registered, you can’t do business with them. If they’re not authorized, their access to the U.S. pharma supply chain will be severely restricted or denied altogether. Read our in-depth ATP blog series for all the details.

You must investigate and properly handle suspect and illegitimate drugs

Suspect and illegitimate drugs include drugs that may be counterfeit, diverted, stolen, intentionally adulterated, or unfit for distribution — the problem the DSCSA was designed to eliminate. Pharmacies must quarantine and investigate these drugs to determine if they are fake. If you make this determination, the next step is to work with the manufacturer and take specific action to ensure the bad drug does not reach patients/consumers. You must also notify the FDA and your trading partners about the drug.

You must authenticate and verify drugs

This is what’s coming in 2023. You’ll have to be able to authenticate and verify all the medicines you buy before you can sell them. The fundamental requirement is that TI (transaction information) must include a product identifier (PI), which includes serial numbers and expiration dates. The Electronic Product Code Information Services (EPCIS) is likely to be the standard the industry will use to enable this exchange.

Final Thoughts

We’re writing this on November 24, 2021. Yes, it’s the day before Thanksgiving. (Happy Thanksgiving!) It’s also almost exactly two years from the DSCSA implementation deadline. That may seem like a long time, but …

It is definitely not a long time. There’s a lot to do to ensure you’ll comply with your Drug Supply Chain Security Act pharmacy responsibilities. If you aren’t sure you’ll be ready, contact us to schedule a short demo of our DSCSA solutions. Our team of supply chain experts will design a solution to ensure you meet all DSCSA requirements and remain compliant forever.

And if you’re looking for something to read over the Thanksgiving holiday, download our “Dispensers and DSCSA 2023” white paper. It drills down into what we talked about today and is a great reference tool to have on hand as you prepare for the full serialization of the U.S. pharma supply chain.

Happy Thanksgiving!

What Are the Two Parts of the Drug Quality and Security Act?

The Drug Quality and Security Act (DQSA) was enacted on November 27, 2013, to address gaps and oversights in the way compound medications — medications that are customized by combining, mixing, or altering two or more drugs to meet the needs of a specific patient — are prepared and distributed. It was a response to the inadvertent distribution of contaminated steroidal injections that killed 64 people and caused infections in 793 patients.

The DQSA comprises two pieces of legislation: The Compounding Quality Act and the Drug Supply Chain Security Act (DSCSA). Here’s a quick overview of each.

DQSA Part 1: The Compounding Quality Act

The goal of the Compounding Quality Act is to make compounded medicines safer for patients.  It established a registration system for pharmaceutical industry stakeholders that create sterile drugs (e.g., manufacturers and pharmacies). It also reinstated Section 503A of the Food, Drug, and Cosmetic Act (FD&C Act), parts of which the Supreme Court in 2002 ruled unconstitutional.

Companies can register as an official outsourcing facility if they meet a specific set of criteria. Outsourcing facilities are usually larger companies that supply compounds to healthcare facilities such as pharmacies, hospitals, and clinics. The key requirements for outsourcing facilities under the Compounding Quality Act include the following:

  • They must report adverse events to the FDA twice a year.
  • They must submit reports about all compounded medications to the FDA twice a year
  • They must meet product labeling requirements.
  • They must agree to FDA inspections (according to a “risk-based schedule” and pay fees for any re-inspections.
  • They must pay a registration fee to the FDA.

Outsourcing facilities are also subject to increased quality standards and can be penalized for certain actions, including intentionally falsifying prescriptions for compounded medicines, failing to report adverse events or compounded medications to the FDA, making false claims about compounded medicines (i.e., false advertising), and selling medications with “not for resale” warnings.

All this said, it’s important to note that the FDA does not approve compounded drugs. The Agency does not verify their safety or effectiveness. Furthermore, compounded drugs do not have an FDA finding of manufacturing quality before they are marketed.

DQSA Part 2: The Drug Supply Chain Security Act

The DSCSA is a wide-ranging piece of legislation designed to prevent counterfeit, stolen, contaminated, or otherwise harmful drugs from entering the U.S. pharmaceutical supply chain. It affects virtually every industry stakeholder, from manufacturers, distributors, and wholesalers to repackagers, logistics providers, and dispensers (i.e., pharmacies). It is

Enacted in November 2013 and culminating with the November 2023 deadline, the ultimate goal of the DSCSA is a fully serialized pharmaceutical supply chain with full electronic operability. There are four core requirements:

  1. Product serialization
  2. Product tracing
  3. Verification (of product identifiers)
  4. Authorized trading partners

If you follow our blog, you know we’ve been writing about the DSCSA for years. For a longer summary, check out “Countdown to DSCSA 2023 Serialization: The Deadline Is Two Years Away.” For an in-depth look at what’s in store for 2023, read “DSCSA 2023: The Future of Pharmaceutical Traceability in the USA.”

Final thoughts

rfxcel has been the leading provider of regulatory and compliance software for the pharmaceutical industry for almost 20 years. We’ve also been a thought leader on the DQSA and DSCSA compliance. Our goal is to keep all stakeholders informed and work with them to ensure they’re ready to meet all the requirements in 2023.

Below are a few of our most recent resources to help bring you up to speed. Take a look, and if you have any questions or want to see a short demo of our DQSA and DSCSA solutions, contact us today. Our supply chain experts know the legislation inside and out and will work with you to design a solution that’s right for you.

Countdown to DSCSA 2023 Serialization: The Deadline Is Just Two Years Away

November 27, 2023 — the date the pharmaceutical industry has had its sights on since the U.S. Drug Supply Chain Security Act (DSCSA) was enacted eight years ago. With only two years until the deadline, we thought it was a good time to recap what’s in store for DSCSA 2023 serialization.

The DSCSA Timeline

As our timeline shows, November 27, 2023, will be the 10th anniversary of the DSCSA. Per Section 582(g)(1) of the DSCSA (Title II of the Drug Quality and Security Act), “On the date that is 10 years after the date of enactment of the Drug Supply Chain Security Act … interoperable, electronic tracing of product at the package level requirements shall go into effect.” In other words, DSCSA 2023 serialization.

DSCSA 2023 Serialization Timeline

DSCSA 2023 serialization: recent developments

No more delays. On August 9, 2021, the FDA signaled that the DSCSA 2023 deadline for interoperability would not change. Leigh Verbois, the director of the FDA’s Office of Drug Security, Integrity, and Response, made the comments during a webinar hosted by the Healthcare Distribution Alliance (HDA).

Draft and final guidance on product identifiers (PIs) and more. On June 3, 2021, the FDA published “new guidance to further enhance the security of prescription drugs in the U.S. supply chain.” Guidance was released for PIs, suspect and illegitimate products, and enhanced drug distribution security.

Full serialization

For DSCSA 2023 serialization, transaction information (TI) must include the PI, which includes serial numbers and expiration dates. The Electronic Product Code Information Services (EPCIS) appears to be the standard the industry will use to enable this exchange. Right now, TI and transaction statements (TS) are being electronically exchanged at the lot level, which is usually done with an advance ship notice (ASN). The transition from ASN to EPCIS is a cornerstone of DSCSA 2023 serialization.

Authorized trading partners

Under the DSCSA, authorized trading partners (ATPs) may engage in transactions only with other ATPs. In other words, all manufacturers, wholesale distributors, repackagers, 3PLs, and dispensers and their trading partners must be ATPs. If they’re not authorized, their access to the U.S. pharma supply chain will be severely restricted or denied altogether. Read our in-depth ATP blog series here.

Verification Router Service (VRS)

Under the DSCSA saleable returns verification requirement, wholesalers must verify saleable returns before they can be reintroduced to the supply chain. This is done by verifying the drug’s PI. A wholesaler must initiate a verification request (to a manufacturer) to verify the returned products, and the manufacturer must provide a verification response within 24 hours. The VRS enables the rapid, secure exchange of data between these parties. Get more details here.

Final thoughts

We have been talking about and reporting on the DSCSA Day 1. We’ve been active in industry initiatives, particularly the VRS and the Open Credentialing Initiative (OCI) to meet ATP requirements. We’re ensuring the Ohio Department of Veterans Affairs is DSCSA-compliant. And we’ll soon be announcing another exciting initiative in the move toward full serialization of the U.S. pharma supply chain. Keep an eye out for that.

This year, we hosted a “Plan for DSCSA Readiness” webinar in March and a DSCSA 2023 webinar series in June that covered ATPs, EPCIS, and the VRS. We also published a “Dispensers and DSCSA 2023” white paper in May.

We’ve also been helping pharma companies and public-sector organizations comply with the DSCSA and other pharma regulations around the world. From our Serialization Processing and Compliance Management solutions to the full-scale power of our Traceability System, we ensure compliance no matter your role in the supply chain.

Take another look at our DSCSA timeline. A lot has happened since 2013 — and the pace will only intensify over the next two years. Contact us today if you need to know more. Our supply chain and DSCSA experts are here to help and make sure you’re ready for 2023