Business Risk, Internal Control, and Audit Implications of EDI

By Weiner, Stanley | The CPA Journal, November 1995 | Go to article overview

Business Risk, Internal Control, and Audit Implications of EDI


Weiner, Stanley, The CPA Journal


[Editor's Note: An extensive discussion of certain aspects of electronic data interchange (EDI) is included in this month's feature article 'The IRS Regulatory Implications of Electronic Record Keeping" by Joseph Danos and Ram S. Sriram. It is accompanied by a sidebar by Mr. Weiner, which explains some of the basics of EDI. It is suggested readers familiarize themselves with the EDI concepts in the feature and the sidebar before proceeding with this article.]

Legal Aspects

In the past, EDI was limited to simply sending and receiving various messages. However, within the past few years, trading partners have allowed each other access to internal records such as sales and inventory information. This allows the selling partner to monitor stock usage and provide just-in-time inventory techniques. The customer, in effect, is permitting the selling partner to ship goods based upon a predefined agreement. It is important that, to protect both parties, any agreement be codified legally in what is known as a "trading partner agreement." A trading partner agreement normally includes the following major elements:

*EDI standards:

* Transaction standards. This defines business transactions that will be conducted between trading partners. This also includes any restrictions, such as a limitation on the dollar amount of a particular type of transaction.

* Message standards. This stipulates the form and content of messages. These will normally be ANSI ASC-X12 within the U.S.

* Security Standars. Sensitive data is often transmitted. Consideration will have to be given as to how such information will be protected. Other issues, such as authentication and data integrity, will also have to be resolved.

* Data storage standards. Trading partners will also have to agree upon the storage of sensitive data and the method and time frame of data retention.

* Accountability--outlines the obligations of the trading partners.

* Standard of care-degree of diligence to be used by each trading partner.

* Force majeure--unexpected or unanticipated events.

* Message validation and error-check procedures.

* Security control-use of encryption, if required.

* Trade terms and conditions.

* Confidentiality--protection of proprietary information.

* Arbitration and dispute resolution.

* Governing law of the agreement. EDI presents varied challenging legal issues. Attorneys will have to have experience in data processing and will have to interact with both accountants and technical data processing personnel.

Accounting Issues Related to the Use of the internet of

Many companies may evaluate the use of the Internet for the communication of transactions. At the present time, this should be avoided. The Internet is an unregulated environment and presents many dangers. The majority of computer crimes occur on the Internet. Furthermore, use of the Internet in many instances will eliminate the buffer that a value-added network provides. This means that unauthorized parties would have the opportunity to provide adequate audit trails and controls for the accountant to utilize. The Internet utilizes many networks. In certain instances, the efficiency and reliability of such networks are questionable.

Business Risk

Although EDI offers significant opportunities, it also has a number of business risks. Both financial managers and accountants should be aware of these risks to take appropriate action to minimize them during system planning and implementation. Some of the risks to be dealt with are the following:

Loss of Business Continuity. Corruption of EDI applications, whether done innocently or deliberately, could affect every EDI transaction undertaken by a company. This would have a negative impact on both customer and vendor relations. In an extreme situation, it could ultimately affect the ability of a company to stay in business. …

The rest of this article is only available to active members of Questia

Sign up now for a free, 1-day trial and receive full access to:

  • Questia's entire collection
  • Automatic bibliography creation
  • More helpful research tools like notes, citations, and highlights
  • A full archive of books and articles related to this one
  • Ad-free environment

Already a member? Log in now.

Notes for this article

Add a new note
If you are trying to select text to create highlights or citations, remember that you must now click or tap on the first word, and then click or tap on the last word.
One moment ...
Default project is now your active project.
Project items

Items saved from this article

This article has been saved
Highlights (0)
Some of your highlights are legacy items.

Highlights saved before July 30, 2012 will not be displayed on their respective source pages.

You can easily re-create the highlights by opening the book page or article, selecting the text, and clicking “Highlight.”

Citations (0)
Some of your citations are legacy items.

Any citation created before July 30, 2012 will labeled as a “Cited page.” New citations will be saved as cited passages, pages or articles.

We also added the ability to view new citations from your projects or the book or article where you created them.

Notes (0)
Bookmarks (0)

You have no saved items from this article

Project items include:
  • Saved book/article
  • Highlights
  • Quotes/citations
  • Notes
  • Bookmarks
Notes
Cite this article

Cited article

Style
Citations are available only to our active members.
Sign up now to cite pages or passages in MLA, APA and Chicago citation styles.

(Einhorn, 1992, p. 25)

(Einhorn 25)

1

1. Lois J. Einhorn, Abraham Lincoln, the Orator: Penetrating the Lincoln Legend (Westport, CT: Greenwood Press, 1992), 25, http://www.questia.com/read/27419298.

Cited article

Business Risk, Internal Control, and Audit Implications of EDI
Settings

Settings

Typeface
Text size Smaller Larger Reset View mode
Search within

Search within this article

Look up

Look up a word

  • Dictionary
  • Thesaurus
Please submit a word or phrase above.
Print this page

Print this page

Why can't I print more than one page at a time?

Help
Full screen

matching results for page

    Questia reader help

    How to highlight and cite specific passages

    1. Click or tap the first word you want to select.
    2. Click or tap the last word you want to select, and you’ll see everything in between get selected.
    3. You’ll then get a menu of options like creating a highlight or a citation from that passage of text.

    OK, got it!

    Cited passage

    Style
    Citations are available only to our active members.
    Sign up now to cite pages or passages in MLA, APA and Chicago citation styles.

    "Portraying himself as an honest, ordinary person helped Lincoln identify with his audiences." (Einhorn, 1992, p. 25).

    "Portraying himself as an honest, ordinary person helped Lincoln identify with his audiences." (Einhorn 25)

    "Portraying himself as an honest, ordinary person helped Lincoln identify with his audiences."1

    1. Lois J. Einhorn, Abraham Lincoln, the Orator: Penetrating the Lincoln Legend (Westport, CT: Greenwood Press, 1992), 25, http://www.questia.com/read/27419298.

    Cited passage

    Thanks for trying Questia!

    Please continue trying out our research tools, but please note, full functionality is available only to our active members.

    Your work will be lost once you leave this Web page.

    For full access in an ad-free environment, sign up now for a FREE, 1-day trial.

    Already a member? Log in now.