	About UPMC

The UPMC Story

Financial Information

Annual Report

Financial Assistance

Sarbanes-Oxley

Bondholder Information

IRS Filings

Quality & Innovation

Community Citizenship

Business Innovation

UPMC International

About UPMC

UPMC and Sarbanes-Oxley

The Sarbanes-Oxley (SOX) Act of 2002 represents landmark legislation in the world of corporate compliance, securities and capital markets, and overall organization governance and responsibility.

UPMC's voluntary compliance with the legislation marks the first nonprofit ever to meet these rigorous accounting rules intended for corporate America.

UPMC established formal governance over financial reporting and interaction with the Board of Directors, Audit Committee, and external financial auditors.
CEOs and CFOs certify whether the company’s financial statements are true, complete, and fairly stated.
CEOs and CFOs evaluate the effectiveness of the company’s disclosure controls and procedures and present their conclusions about the effectiveness in the annual filing.
Management annually assess and assert to the effectiveness of the company’s internal controls and procedures for financial reporting.

This last requirement, known as Section 404, has had one of the largest impacts on corporations in America. Companies impacted have initiated projects to document, assess the gaps over, remediate, and test the internal controls over financial reporting (ICOFR). In addition, each company must assert as to its findings resulting from this process and that the ICOFR are adequate within the parameters established by the Public Company Accounting Oversight Board (PCAOB) and the Securities and Exchange Commission (SEC).

As a not-for-profit organization, UPMC is not required to comply with the regulations established by SOX. However, UPMC and its Board of Directors determined that voluntary compliance with SOX is in the best interest of the organization. UPMC initiated a project in June 2004 to comply with the key components of SOX and obtained an opinion from Ernst & Young on the June 30, 2006 financial statement under the PCAOB standards.

Among the activities of this ongoing project are:

ongoing review of key financial reporting governance areas
continued strengthening of the corporate ethics program
refining the entity-wide project plan to comply with SOX
ongoing assesment of entity level controls that impact ICOFR
enhancement of the ICOFR evaluation program required by Section 404, including the following:

annual review and reassessment of the key business operations and locations for inclusion
continuous updating of the entity-wide ICOFR documentation program
continuous updating of ICOFR documentation within the key business operations and locations
updating the gap analysis over the ICOFR documentation components as processes change

Within the not-for-profit industry segment, UPMC is leading the way by adopting the requirements of SOX. Many organizations have begun to realize the value to be gained through an assessment of internal controls over financial reporting. In fact, organizations such as UPMC see it as making good business sense. However, while others have waited, UPMC decided it was time to act.