« Back to Glossary

What Is PECOS Certification?

Published: July 8, 2026

PECOS certification is the attestation step in the Medicare enrollment process. A provider, supplier, or an organization’s authorized official signs a certification statement confirming that the enrollment information is accurate and that the provider will meet and maintain Medicare’s requirements. 

It takes place inside PECOS, the Provider Enrollment, Chain, and Ownership System that the Centers for Medicare & Medicaid Services uses to manage Medicare enrollment.

Despite the name, it has nothing to do with board certification or a professional credential.

Confusing the two is a common mistake, and it is one that can quietly derail a provider’s ability to bill Medicare.

What does PECOS certification actually mean?

In PECOS, certification refers to the legal certification statement tied to a Medicare enrollment application, not to any clinical qualification.

By signing that statement, the provider or authorized official attests that the information in the application is true and complete, agrees to meet and maintain the standards required for Medicare participation, and acknowledges that enrollment can be denied or revoked if those requirements are not met. 

Making a false statement carries real weight, exposing the signer to civil monetary penalties, criminal liability, and exclusion from federal healthcare programs.

It is worth separating this from two things it is often confused with. It is not board certification, and it is not the facility-level Medicare certification that comes from a state survey. PECOS certification is simply the signature that makes an enrollment record valid. For the broader picture of how the system works, see the overview of PECOS Medicare.

Who signs the certification statement?

The certification statement cannot be signed by just anyone, and getting the signer wrong is a frequent cause of rejected applications.

An individual practitioner is the only person who can sign their own enrollment, and that authority cannot be delegated. For an organization, the authorized official or a delegated official signs on the organization’s behalf. Staff members can prepare an application, but they cannot certify it unless they hold that authority.

PECOS supports electronic signatures through the CMS e-signature workflow, but the rule stands regardless of format. An application that is unsigned, or signed by the wrong person, simply will not be processed.

PECOS certification is simply the signature that makes an enrollment record valid. For the broader picture of how the system works, see the overview of PECOS Medicare.

Ordering and certifying providers

There is a related use of the word certifying that is worth understanding, because it trips people up.

Some providers enroll in Medicare solely to order, certify, refer, or prescribe, without billing for services themselves. They complete an abbreviated application, the CMS-855O, for this ordering and certifying role. 

Under Section 6405 of the Affordable Care Act, physicians and eligible professionals must be enrolled in Medicare to order or refer items or services for beneficiaries, and CMS denies claims when the ordering or referring provider is not found in PECOS. 

More recently, physicians who certify the need for hospice services have been required to enroll as well.

Why PECOS certification matters

Certification is the gate. Without a valid, signed certification, an enrollment is not complete, and an incomplete enrollment can mean denied claims and interrupted payment.

It is also a continuing obligation rather than a one-time signature. Providers must complete revalidation on a periodic cycle, and they are required to report changes such as ownership, practice location, or final adverse legal actions within 30 days. 

Because the certification is a standing promise to keep meeting Medicare’s requirements, anything that undermines eligibility can put the enrollment itself at risk.

PECOS certification and exclusion status

One of the requirements a provider attests to is eligibility to participate in federal healthcare programs, and that is where certification intersects directly with screening.

A provider who is excluded cannot validly enroll or remain enrolled in Medicare, and an exclusion is exactly the kind of adverse action that has to be reported. 

Standing behind a certification statement therefore means continuously confirming that a provider is not on the OIG exclusion list or the SAM exclusion list. This is why exclusion screening sits alongside enrollment rather than apart from it.

How Streamline Verify supports Medicare enrollment compliance

A certification statement is a promise that a provider meets Medicare’s requirements. Keeping that promise true over time means confirming eligibility continuously, not just on the day the application is signed.

Streamline Verify is a fully automated solution for exclusion and sanction screening. It continuously screens providers, employees, and vendors against the OIG LEIE, the SAM exclusion list, and applicable state Medicaid lists, flags potential matches for review, and records every check in a time-stamped audit trail

If a provider becomes excluded, the change surfaces quickly rather than at the next revalidation.

As a fully automated solution, Streamline Verify does not handle Medicare enrollment itself. What it does is keep the exclusion and sanction side of Medicare compliance continuous and documented, so a provider’s eligibility can be shown rather than assumed.

Want to see how automated exclusion screening supports your Medicare enrollment compliance?

CONTACT US

You may also want to read on…

Understanding OIG Exclusions

OIG Exclusions Screening Process

Exclusion FAQS

Quick OIG Exclusion Basics

Employing Excluded Individuals

Consequences to Employing an Excluded Individual

OIG Compliance Law

Laws and Publications on OIG Compliance

Our Culture Icon Small

Blog

Stay ahead of healthcare compliance - updates that matter.

Ask Me Anything

Clear answers. Cleaner compliance.

Exclusion Compliance

Understand exclusions. Reduce risk.

Security First

  • ✓ Cloud hosted
  • ✓ Encrypted data
  • ✓ Real-time backups

Trusted for Accuracy

  • ✓ Physical security
  • ✓ Restricted access
  • ✓ Single sign-on
  • ✓ Password security
  • ✓ Certified secure
  • ✓ Cross checking

HEALTHCARE ESTABLISHMENTS NATIONWIDE COUNT ON STREAMLINE VERIFY

5

60%

Average workload reduction by implementing the Streamline Verify program

5

10K

Establishments trust Streamline Verify nationwide

5

2011

Serving the healthcare industry’s unique compliance needs since 2011

5

24X

Setting standards with hourly synchronization to primary source data

AICP SOC Compliance Logo
HIPAA Compliance Logo
Our Culture Icon Small

Our Culture

We build the best, so you can perform at your best.

Trusted for Good Reason

  • ✓ Guaranteed accurate
  • ✓ Certified Secure
  • ✓ Audit Proof
  • ✓ Feature-rich reporting
  • ✓ Round the clock real-time-data
  • ✓ Processing fully automated

Security First

  • ✓ Cloud hosted
  • ✓ Encrypted data
  • ✓ Real-time backups

Trusted for Accuracy

  • ✓ Physical security
  • ✓ Restricted access
  • ✓ Single sign-on
  • ✓ Password security
  • ✓ Certified secure
  • ✓ Cross checking

HEALTHCARE ESTABLISHMENTS NATIONWIDE COUNT ON STREAMLINE VERIFY

5

60%

Average workload reduction by implementing the Streamline Verify program

5

10K

Establishments trust Streamline Verify nationwide

5

2011

Serving the healthcare industry’s unique compliance needs since 2011

5

24X

Setting standards with hourly synchronization to primary source data

AICP SOC Compliance Logo
HIPAA Compliance Logo