Consider this scenario --
A patient walks in, pays co-payment in cash. The receptionist pockets it. Few days or weeks later, she records the copayment that the patient paid on the DOS, with the "Deposit Date" changed to match the DOS. This fraudulent entry does not show up in the daily collections report (because of the pre-dated deposit) and we have no clue that the money has gone missing and cash has been embezzled.
How can we spot this at the end of the day, as soon as it happens?
We found a few more such fraudulent entries by comparing a daily deposits report for the previous month and comparing it to the deposit report we print at the end of each work day. However, it is already a month past the date of embezzlement.
We have just turned on the audit for "Deposit" table, what else can we do? What other audit tables should be included to build a solid trail of evidence?