GXP, E-RAW DATA AND E-ARCHIVE QA PERSPECTIVE
|
|
- Augustus Oliver
- 5 years ago
- Views:
Transcription
1 GXP, E-RAW DATA AND E-ARCHIVE QA PERSPECTIVE GIQAR Feedback of GxP & Electronic Archive Round Table (March 21 st 2016) Dott.ssa Ilaria Enrietto RBM SpA Merck Biopharma Parma - May 18th
2 HOW THE PROGRESS TOUCHED OUR TECHNOLOGIES AND ABOVE ALL OUR MINDSET 2 2
3 HOW THE PROGRESS TOUCHED OUR TECHNOLOGIES AND ABOVE ALL OUR MINDSET From theory to practice: our experience in using an HPLC-UV/VIS system Moving from paper-based to electronic data The Ivrea Test Facility paperless project 3 3
4 ELECTRONIC DATA DEFINITIONS MHRA GUIDELINE AGIT GUIDELINES PIC/S GUIDELINE 4 4
5 ELECTRONIC DATA DEFINITIONS OECD GLP Advisory Document n. 15 Establishment and Control of Archives that Operate in Compliance with the Principles of GLP Electronic record: All original laboratory records and documentation, including data directly entered into a computer through an instrument interface, which are the results of original observations and activities in a study and which are necessary for the reconstruction and evaluation of the report of that study. Metadata: Data that describe the attributes of other data. Most commonly these are data that describe the structure, data elements, inter-relationships and other characteristics of electronic records. 5 5
6 ELECTRONIC DATA MANAGEMENT What is new in the GLP OECD Advisory Doc n.17? 6 Life cycle approach to validation/operation of CS Risk Management as central element on validation process Data integrity concept and physical/logical security Fit for purpose intent of usage of CS Differentiation within qualification and validation concepts Defined roles and responsibilities (e.g. TFM, SD, QA) Access privilegies and corresponding training SLA regulating the agreements between suppliers and Test Facilities COTS validation depending on risk and complexity of customisation Change control procedures and configuration control Data migration concept (data conversion upgrades migration to other medium) Interfaces and corresponding tests Accuracy checks on data entered manually into electronic systems Audit trail incident management Periodic review Electronic signatures E-Archiving GLP OECD Advisory Doc. N.15 Business Continuity and Disaster Recovery 6
7 COMPLIANCE FRAMEWORK AGIT GLP GUIDELINES GAMP 5 GLP OECD Advisory Document n.17 CS Annex 11 PIC/S GUIDELINE 21 CFR Part 11 FDA MHRA 7 7
8 2010: HPLC used in the Formulation Department in order to perform test item concentration analysis, formulation stability and homogeneity studies, validation of analytical methods for quantitative and qualitative analyses 2016: the scope is the same as in the past WHAT HAS BEEN CHANGED? We will not underline technologic changes in the system, but we will focus on main changes of its usage and data definition/management 8 8
9 2010: The system we are referring to is an HPLC system with a ChemStation management software which allows data acquisition and basic data evaluations using modules for method and run controls, data analysis module for elaborating acquired data and report layout module. The HPLC system has 2 different accesses for operator (access for performing the analysis) and manager (access for performing, reviewing, elaborating and reporting results) according to the different required privilegies. Raw-data and metadata are all locally and temporally stored in the systems itself. There is NO electronic archive in place, the capability of the internal memory is low. All raw-data considering chromatograms, metadata related to set up/calibration/audit trail, derived data from peack integrations or elaborations performed in excel file sheets are printed and inserted in the paper study folder 9 9
10 2016: The system we are reffering to is OpenLAB CDS ChemStation Edition which provides tools for HPLC data acquisition, analysis and interpretation monitoring instrument parameters, creating the defined methods, generating and printing (if needed) reports and exporting data to the archived system. As in workstation or networked workstation configurations, the instrument configuration dialog runs on the local PC. A central data storage system can hold all kinds of electronic data independent of any proprietary data formats
11 2016:WHAT HAS BEEN CHANGED THANKS TO THE ADVANCED TECHNOLOGIES Raw data are stored together in the OpenLAB Data Store (centralized data management) partition with also all metadata including sample information, data analysis method, chromatographic signals, instrument conditions and above all the audit trail. All ChemStation methods, sequence templates, report templates, and data files (sequences and single runs) are uploaded to the file share partition of the virtual server which is identified as GxP Archive. Data can later downloaded back into the ChemStation if required. With Secure Workstation for OpenLAB CDS ChemStation Edition ChemStation and Data Store are installed together on a single workstation computer. AUDIT TRAIL The transactions that occur during the analysis, including accesses, changes, any errors and the instrument conditions (such as flow, temperature, pressure and solvent composition for liquid chromatographs) from the start to the end of the analysis are always recorded and then extracted with every data file. The file includes a review scheme that indicates if data has been reprocessed. This is an uneditable binary format that ensures the originality of the results
12 2016: LOOKING CAREFULLY AT THE AUDIT TRAIL «Audit Trails need to be availabe and convertible to a human readable form and regularly reviewed. Any change to e-records must not obscure the original entry and be time and date stamped and traceable to the person who made the change. Audit trail for a CS should be enabled, appropriately configured and reflect the roles and responsibilities of study personnel. The ability to make modifications to the audit trail settings should be restricted to authorised personnel. Any personnel involved in a study (GLP SD, head of department, analysts) should not be authorised to change audit trail settings. A system should be in place that ensures a riskbased review of the audit trail functions, its settings and recorded info GLP QA personnel should be involved». 12 OECD GLP Advisory Document Application of the GLP Principles to Computerised Systems n.17 12
13 ACCESSES AND PRIVILEGIES IN THE WORKSTATION Auto log-ff and 3 tentatives max UNIQUE COMBINATION BETWEEN USERNAME AND PASSWORD FOR EACH EMPLOYEE Expiry timeframe Administrator Defined rules for psw complexity Supervisor Analyst 13 13
14 DISASTER RECOVERY PLAN AND BUSINESS CONTINUITY PLAN All data (primary data derived data metadata audit trail in the original form and in PDF) which have been automatically saved after every step on the Workstation itself, are backupped automatically everyday on a dedicated partition of the GxP file share automatically, used as backup folder. The file shares are controlled accesses partitions where ONLY authorized personnel can have defined permissions (read or write permission). All permissions list can be checked immediatly by the applications or on the server logbooks. If necessary, data can be retrieved by the backup folder
15 DATA MANAGEMENT Using a dedicated copy script, after every acquisition the result set containing all data (primary data, derived data, metadata, audit trail in the original form and in PDF) is automatically saved on the server (GxP file share Archive) in the dedicated Data Management folder. Each folder is identified as «Name of the server / Data / Instrument ID / QUALITY STANDARD / Study Number». All elaborations (integration, quantification, review, recalculation, elaborations performed on validated Excel files) are also trackable and saved on the server. «Raw data: Measurable or descriptive attribute of a physical entity, process or event. The GLP Principles define raw-data as all laboratory records and documentation, including data directly entered into a computer through an GLP OECD Advisory automatic instrument interface, which are the results of primary Doc. Application of observations and activities in a study and which are necessary for the GLP Principles to CS reconstruct and evaluation of the report of that study. n.17 Derived data: They depend on raw-data and can be reconstructed from rawdata (e.g., final concentrations as calculated by a spreadsheet relying on 15 raw-data, result tables as summarised by a LIMS, etc). 15
16 DATA APPROVAL AND QA AUDIT Final draft data (primary data derived data metadata audit trail in the original form and in PDF) after having been consolidated and approved on Chemstation by the Administrator, are completely «frozen» in the system and then they are manually saved by e-archivist on a dedicated subfolder on the server partition for QA audit related to the draft study report and corresponding data. AUDIT TRAIL INFO WHO WHEN WHAT WHY QA 16 16
17 DATA ARCHIVING After QA audit and study report signature, the Study Director is responsible of granting the archive of the study considering either paper and electronic data. Both processes are managed in parallel by the Archivist and e-archivist. Final data (primary data derived data metadata audit trail in the original form and in PDF) are archived by e-archivist on a dedicated folder on the server partition which is identified according to the following folder path: «Name of the server ARCHIVE Instrument ID QUALITY STANDARD Study Number» E- ARCHIVIST is the only one with writing access to the folder, just for the time of trasferring the data in the archived folder. When the study has been electronically archived, the e-archivist signs a dedicated paper Archive History report that has to be sent to Study Director for confirmation and then sent to the GxP paper-archive for tracking all types of documents/data/specimens archived for that study. Every change on the archived folder is detectable by the internal audit trail of the folder itself, where all entries/changes are recorded. All other approved accesses can only have «read» permission. The study can be de-archived ONLY if the requests comes from TFM (e.g. For HA Inspectors requests) and only having recorded TFM de-archiviation approval on a dedicated form sent via mail
18 REQUIREMENTS FOR THE ARCHIVING OF ELECTRONIC RAW DATA INTEGRITY OF ARCHIVED ELECTRONIC RAW DATA AVAILABILITY OF ELECTRONIC RAW DATA LONG TERM ARCHIVING 18 18
19 REQUIREMENTS FOR THE ARCHIVING OF ELECTRONIC RAW DATA THE ROLE OF THE QA IN THE ARCHIVING PROCESS Audit to archiving procedure Electronic archives and IT Infrastructure QA audits all aspect of archiving Roles and responsibilities and relative personnel access Study archiving process and archived studies 19 19
20 REQUIREMENTS FOR THE ARCHIVING OF ELECTRONIC RAW DATA THE ROLE OF THE QA IN THE ARCHIVING PROCESS TRAINING Specific technical training in order to let the auditor understand CS functionalities and data management ACCESS QA with read access to all systems cointaining electronic raw data UPDATES Be always «future oriented» in order to follow innovations 20 20
21 BACKUP AND RESTORE OF THE SERVERS Server backups are managed according to local SOP everyday and automatically. QUALIFIED INFRASTRUCTURE composed either by physical servers and virtual servers. The virtualization platform is composed by a NETAPP storage system composed by 2 physical units. The first NETAPP which includes virtual servers (containing also GxP File Server defined as GxP electronic Archive) is backuped LOCALLY (SNAPVAULT) on the second NETAPP and, for Site specific disaster recovery plan and in agreement with Global Corporate Policies, the second NETAPP is replicated (SNAPMIRROR for files) to the Datacenter of the Main HUB of our Company. Accesses to the Backup systems are only ALLOWED to IT local personnel. Data restore (e.g. for local data deletion) can be asked to local IT only following a procedurized process which grant the traceability of each step, also for the restore one. Server restore test have been performed in the OQ phase of the validation process and repeated and tested during periodic review
22 QUALIFIED INFRASTRUCTURE DESIGN The RBM Infrastructure is composed by: Network (VLAN, racks and switches, routers, firewalls, Wi-Fi access points) Servers (physical and virtual) Clients (Merck Biopharma standard clients and nonstandard clients) Printers Server Room with Anti-fire system, environmental conditioning control system, access control system and intrusion prevention system with alarms IT Infrastructure software tools (e.g. Jenny Portal, LANDesk Management Suite, Push-Portal, Spectrum OneClick for Infrastructure) 22 22
23 THE PROCESS WE ARE WORKING ON, SHOULD GRANT: 23 23
24 DATA INTEGRITY CONCEPT Data Integrity means the degree to which a collection of DATA is complete, consistent and accurate: Good Documentation Practices are followed; Content of Data is trustworthy and reliable (data is valid)
25 DATA INTEGRITY CONCEPT MHRA: All phases in the life of data from initial generation and recording through processing (including transformation or migration), use, data retention, archive / retrieval and destruction (MHRA GMP Data Integrity Definitions and Guidance for Industry; March 2015) Are data (paper and electronic) created/documented following Good Documentation Practice? Are there processes/systems in place to ensure data integrity across the entire Data Life Cycle? Is there Quality Management & Governance in place to promote Data Integrity? 25 25
26 HOW TO ASSURE DATA INTEGRITY Key questions to consider when defining risk mitigation strategies (BUSINESS questions): Do I have all my data? Am I reviewing all my data? Has my data been objectively processed? Am I reporting all my data? 26 26
27 THE WORK OF QA IN DATA INTEGRITY PERSPECTIVE Do we include data integrity aspects in our audits? Do we review the right data (and metadata) when preparing for / performing audits? Are our auditors adequately trained on the electronic systems to allow an effective review of original data? Do we assess quality management systems of vendors for data integrity aspects when performing vendor audits? Are data integrity risks reflected in our risk assessment tools? Do we include data integrity aspects when preparing for inspections? Do we prepare auditees for the methodologies used in data integrity inspections? 27 27
28 WHAT IS NEXT? PAPERLESS PROJECT! 1) ELECTRONIC NOTEBOOK (ELN) Used in non-regulated environment. Project on going for extending ELN usage in GLP AIM for the ELECTRONIC NOTEBOOK Supportive documents to study management (study folders) will no more exist in paper but will be managed electronically by a centralized database where all supportive info will be documented/scanned. As soon as validation will be completely GxP compliant, ELN project will be extended to GLP environment dedicated implementation plan will be presented to HA 28 28
29 WHAT IS NEXT? PAPERLESS PROJECT! 2) DATA INTEGRITY ASSESSMENT All Computerised systems will be assessed by selected external SME. A dedicated gap analysis will be performed in order to identify main areas of improvements A dedicated checklist will be compiled with all info of each CS. The project started in GMP enviroment and on June it will be extended to GLP and GCP Functions A specific Data Integrity training will be performed by external SME for Test Facility personnel 29 29
30 FEEDBACK FROM ROUND TABLE IN ROME: DEEP DISCUSSIONS GREAT BRAINSTORMING SESSIONS 30 30
31 THANKS FOR YOUR ATTENTION! 31 31
Good Laboratory Practice GUIDELINES FOR THE ARCHIVING OF ELECTRONIC RAW DATA IN A GLP ENVIRONMENT. Release Date:
AGIT: Swiss Working Group on Information Technology in a GLP Environment Good Laboratory Practice GUIDELINES FOR THE ARCHIVING OF ELECTRONIC RAW DATA IN A GLP ENVIRONMENT Release Date: 31.01.2018 Version:
More informationSparta Systems TrackWise Digital Solution
Systems TrackWise Digital Solution 21 CFR Part 11 and Annex 11 Assessment February 2018 Systems TrackWise Digital Solution Introduction The purpose of this document is to outline the roles and responsibilities
More informationIndustry Guidelines for Computerized Systems Validation (GAMP, PDA Technical Reports)
Training Course Computerized System Validation in the Pharmaceutical Industry Istanbul, 16-17 January 2003 Industry Guidelines for Computerized Systems Validation (GAMP, PDA Technical Reports) Wolfgang
More informationLeveraging ALCOA+ Principles to Establish a Data Lifecycle Approach for the Validation and Remediation of Data Integrity. Bradford Allen Genentech
Leveraging ALCOA+ Principles to Establish a Data Lifecycle Approach for the Validation and Remediation of Data Integrity Bradford Allen Genentech 1 Agenda Introduction Data Integrity 101 Review What is
More informationOMCL Network of the Council of Europe QUALITY ASSURANCE DOCUMENT
PA/PH/OMCL (08) 69 3R - OMCL Guideline on Validation of Computerised Systems - Core Document OMCL Network of the Council of Europe QUALITY ASSURANCE DOCUMENT PA/PH/OMCL (08) 69 3R Full document title and
More informationSparta Systems TrackWise Solution
Systems Solution 21 CFR Part 11 and Annex 11 Assessment October 2017 Systems Solution Introduction The purpose of this document is to outline the roles and responsibilities for compliance with the FDA
More information21 CFR Part 11 LIMS Requirements Electronic signatures and records
21 CFR Part 11 LIMS Requirements Electronic signatures and records Compiled by Perry W. Burton Version 1.0, 16 August 2014 Table of contents 1. Purpose of this document... 1 1.1 Notes to version 1.0...
More informationData Integrity and the FDA AFDO Education Conference
Data Integrity and the FDA AFDO Education Conference June, 2018 OUR EXPERIENCE YOUR SUCCESS 1 Data Integrity What does it mean to you? 2 Data Integrity What does FDA say about data integrity No legal definition
More informationSparta Systems Stratas Solution
Systems Solution 21 CFR Part 11 and Annex 11 Assessment October 2017 Systems Solution Introduction The purpose of this document is to outline the roles and responsibilities for compliance with the FDA
More informationMHRA GMP Data Integrity Definitions and Guidance for Industry March Introduction:
MHRA GMP Data Integrity Definitions and Guidance for Industry Introduction: Data integrity is fundamental in a pharmaceutical quality system which ensures that medicines are of the required quality. This
More informationRecommendations for Implementing an Information Security Framework for Life Science Organizations
Recommendations for Implementing an Information Security Framework for Life Science Organizations Introduction Doug Shaw CISA, CRISC Director of CSV & IT Compliance Azzur Consulting Agenda Why is information
More informationAgilent Response to 21CFR Part11 requirements for the Agilent ChemStation Plus
Agilent Response to 21CFR Part11 requirements for the Agilent ChemStation Plus 1. Preface This document describes which requirements of the FDA s rule for electronic records and electronic signature (21
More informationEU Annex 11 Compliance Regulatory Conformity of eve
White Paper EU Annex 11 Compliance Regulatory Conformity of eve Franco Berz, Head of Quality Management INFORS HT Dr. Britta Abellan, Computer System Validation Manager INFORS HT 1. Introduction More and
More informationComply with Data Integrity Regulations with Chromeleon CDS Software
Comply with Data Integrity Regulations with Chromeleon CDS Software Anna Severoni Sales Support Specialist for Chromatography Thermo Fisher Scientific, Rodano (MI) The world leader in serving science Introduction
More informationMHRA GMP Data Integrity Definitions and Guidance for Industry January Initial Review and Critique March 2015
MHRA GMP Data Integrity Definitions and Guidance for Industry January 2015 Initial Review and Critique March 2015 Bob McDowall R.D.McDowall Ltd Thanks to Mark Newton, Lorrie Schuessler & Chris Burgess
More informationValidation and Use of Excel Spreadsheets in Regulated Environments
Validation and Use of Excel Spreadsheets in Regulated Environments February 13, 2007 Ludwig Huber Fax.: +49 7802 981948 Tel.: +49 7802 980582 E-mail:Ludwig_Huber@labcompliance.com Today s Agenda Regulatory
More informationWhite Paper Assessment of Veriteq viewlinc Environmental Monitoring System Compliance to 21 CFR Part 11Requirements
White Paper Assessment of Veriteq viewlinc Environmental Monitoring System Compliance to 21 CFR Part 11Requirements Introduction The 21 CFR Part 11 rule states that the FDA view is that the risks of falsification,
More informationTechnical Note. Introduction
Integration of ChemStation with Agilent OL ECM Technical Note Introduction Agilent Enterprise Content Manager (ECM) is a web-based electronic library that provides a storage place for all electronic data.
More informationImpact Analysis for Software changes in OpenLAB CDS A.01.04
Impact Analysis for Software changes in OpenLAB CDS A.01.04 Document Information: Filename Product Identifier Product Revision Project Identifier Document Revision Impact_Analysis_OpenLAB_CDS_A0104 OpenLAB
More informationPart 11 Compliance SOP
1.0 Commercial in Confidence 16-Aug-2006 1 of 14 Part 11 Compliance SOP Document No: SOP_0130 Prepared by: David Brown Date: 16-Aug-2006 Version: 1.0 1.0 Commercial in Confidence 16-Aug-2006 2 of 14 Document
More informationIn the first article in this series (1),
OCTOBER 2015 LCGC NORTH AMERICA VOLUME 33 NUMBER 10 1 The Ideal Chromatography Data System for a Regulated Laboratory, Part II: System Architecture Requirements Here in the second part of this series,
More informationIntroduction. So what is 21 CFR Part 11? Who Should Comply with 21CFR Part 11?
Introduction The following guide is an explanation of the term 21 CFR Part 11, and gives some background into the tools/features that Comark includes in its 21 CFR Part 11 products to aid compliance with
More informationData Integrity: Technical controls that demonstrate trust
WHITE PAPER 80077 Data Integrity: Technical controls that demonstrate trust Using Chromeleon 7 Chromatography Data System for enhanced data integrity Author Shaun Quinn, Marketing Manager Informatics and
More informationKEEPING YOUR RESEARCH SECURE AND COMPLIANT
KEEPING YOUR RESEARCH SECURE AND COMPLIANT Introduction to Archiving Because research records and materials are vital to drug development programs, it is fundamental that they be properly stored in a GLP-compliant
More informationData Integrity and Electronic Records Compliance with DoseControl
1.0 PURPOSE To provide detailed descriptions of the functional specifications for the GEX DoseControl Dosimetry System, related to data integrity and electronic records compliance. 2.0 BACKGROUND The DoseControl
More informationStreamline the Chromatographic Method Validation Process using Empower 2 Method Validation Manager
Streamline the Chromatographic Method Validation Process using Empower 2 Method Validation Manager Table of Contents Introduction... 3 Optimize your chromatographic method validation workflow... 4 Efficiently
More informationData Storage, Recovery and Backup Checklists for Public Health Laboratories
Data Storage, Recovery and Backup Checklists for Public Health Laboratories DECEMBER 2018 Introduction Data play a critical role in the operation of a laboratory information management system (LIMS) and
More informationData Integrity. Developments, updates, and deficiencies. Paul Moody, GMP Inspector. GMP Conference. 7 February 2017 Dublin
Data Integrity Developments, updates, and deficiencies Paul Moody, GMP Inspector GMP Conference 7 February 2017 Dublin Agenda Data Integrity Regulatory Guidance Data Governance: What is it? The Data Lifecycle:
More informationAssessment of Vaisala Veriteq viewlinc Continuous Monitoring System Compliance to 21 CFR Part 11 Requirements
/ White PAPer Assessment of Vaisala Veriteq viewlinc Continuous Monitoring System Compliance to 21 CFR Part 11 Requirements The 21 CFR Part 11 rule states that the FDA view is that the risks of falsification,
More informationIntegrated Solutions. Automated Tablet Dissolution Testing with Agilent Chemstation HPLC. unique automated analytical solution for HPLC Analysis
Integrated Solutions Automated Tablet Dissolution Testing with Agilent Chemstation HPLC unique automated analytical solution for HPLC Analysis The IDIS integrated solutions provide a unique analytical
More informationApplication Note. This data also falls under FDA regulations for GLP and must comply with the guidelines for electronics records (21 CFR Part 11.
Using ChemStation Plus to Track Data from Drug Stability Studies Application Note Introduction Drug stability is one of the most often studied characteristics in pharmaceutical testing. Large numbers of
More informationDATA INTEGRITY (EMA AUGUST 2016)
Data integrity Data integrity enables good decision-making by pharmaceutical manufacturers and regulatory authorities.it is a fundamental requirement of the pharmaceutical quality system described in EU
More informationtesto Comfort Software CFR 4 Instruction manual
testo Comfort Software CFR 4 Instruction manual 2 1 Contents 1 Contents 1 Contents... 3 2 Specifications... 4 2.1. Intended purpose... 4 2.2. 21 CFR Part 11 and terminology used... 5 3 First steps... 9
More informationIT SECURITY RISK ANALYSIS FOR MEANINGFUL USE STAGE I
Standards Sections Checklist Section Security Management Process 164.308(a)(1) Information Security Program Risk Analysis (R) Assigned Security Responsibility 164.308(a)(2) Information Security Program
More informationSystem Assessment Report Relating to Electronic Records and Electronic Signatures; 21 CFR Part 11. System: tiamo (Software Version 2.
Page 1 /15 System Assessment Report Relating to Electronic Records and Electronic Signatures; 21 CFR Part 11 System: tiamo (Software Version 2.5) Page 2 /15 1 Procedures and Controls for Closed Systems
More informationRotronic Monitoring System Technical paper Version 1.0. Rotronic Monitoring System - Technical paper - Understanding RMS from an IT perspective
Version 1.0 Rotronic Monitoring System - Technical paper - Understanding RMS from an IT perspective 2 Abbreviations CFR CL CS FAT FDA FRS FS Code of Federal Regulations Change Log Configuration Specification
More informationGood Laboratory Practice GUIDELINES FOR THE DEVELOPMENT AND VALIDATION OF SPREADSHEETS. Release Date:
AGIT: Swiss Working Group on Information Technology in a GLP Environment Good Laboratory Practice GUIDELINES FOR THE DEVELOPMENT AND VALIDATION OF SPREADSHEETS Release Date: 31.01.2018 Version: 2.0 TABLE
More informationComment sheet for MHRA draft document:
Comment sheet for MHRA draft document: MHRA GxP Data Integrity Definitions and Guidance for Industry Deadline for comments: 31 October 2016 Send comments in Word format to: inspectorate@mhra.gsi.gov.uk
More informationApril Appendix 3. IA System Security. Sida 1 (8)
IA System Security Sida 1 (8) Table of Contents 1 Introduction... 3 2 Regulatory documents... 3 3 Organisation... 3 4 Personnel security... 3 5 Asset management... 4 6 Access control... 4 6.1 Within AFA
More informationAutomation Change Management for Regulated Industries
Automation Change Management for Regulated Industries Achieving Part 11 Compliance A White Paper Synopsis This whitepaper provides information related to FDA regulation 21 CFR Part 11 (Part 11) for organizations
More informationIntegration of Agilent OpenLAB CDS EZChrom Edition with OpenLAB ECM Compliance with 21 CFR Part 11
OpenLAB CDS Integration of Agilent OpenLAB CDS EZChrom Edition with OpenLAB ECM Compliance with 21 CFR Part 11 Technical Note Introduction Part 11 in Title 21 of the Code of Federal Regulations includes
More informationInspections and Audit Trends
p. 01 Inspections and Audit Trends Rumors p. 02 IT Inspection, preparations Arranged meetings p. 03 Understood that IT would be an important element Established an PV/IT Inspection Preparation Team Developed
More information21 CFR Part 11 FAQ (Frequently Asked Questions)
21 CFR Part 11 FAQ (Frequently Asked Questions) and Roles and Responsibilities for Assessment of METTLER TOLEDO STAR e Software Version 16.00, including: - 21 CFR 11 Compliance software option for Compliance
More informationIntroduction To IS Auditing
Introduction To IS Auditing Instructor: Bryan McAtee, ASA, CISA Bryan McAtee & Associates - Brisbane, Australia * Course, Presenter and Delegate Introductions * Definition of Information Technology (IT)
More informationTouchstone Technologies, Inc. Course Catalog February 2017
Touchstone Technologies, Inc. Course Catalog February 2017 Angela Bazigos ANGELA BAZIGOS 1 HR Courses Course Duration Audience Speaker 1. Basics of Project Management Webinar 90 mins Management Bazigos
More informationSummary of PIC/S Guidance Good Practices for Data Management and Integrity in Regulated GMP/GDP Environments
www.rx-360.org Summary of PIC/S Guidance Good Practices for Data Management and Integrity in Regulated GMP/GDP Environments Draft Published August 2016 This summary was prepared by the Rx-360 Monitoring
More informationDevelopment of Requirement Specifications for Computer Systems
Standard Operating Procedure Development of Requirement Specifications for Computer Systems This is an example of a Standard Operating Procedure. It is a proposal and starting point only. The type and
More informationORA HIPAA Security. All Affiliate Research Policy Subject: HIPAA Security File Under: For Researchers
All Affiliate Research Policy Subject: HIPAA File Under: For Researchers ORA HIPAA Issuing Department: Office of Research Administration Original Policy Date Page 1 of 5 Approved by: May 9,2005 Revision
More informationIntegration of Agilent UV-Visible ChemStation with OpenLAB ECM
Integration of Agilent UV-Visible ChemStation with OpenLAB ECM Compliance with Introduction in Title 21 of the Code of Federal Regulations includes the US Federal guidelines for storing and protecting
More informationAgilent ICP-MS ChemStation Complying with 21 CFR Part 11. Application Note. Overview
Agilent ICP-MS ChemStation Complying with 21 CFR Part 11 Application Note Overview Part 11 in Title 21 of the Code of Federal Regulations includes the US Federal guidelines for storing and protecting electronic
More informationSystem Assessment Report Relating to Electronic Records and Electronic Signatures; 21 CFR Part 11. System: StabNet (Software Version 1.
Page 1 /16 System Assessment Report Relating to Electronic Records and Electronic Signatures; 21 CFR Part 11 System: StabNet (Software Version 1.1) Page 2 /16 1 Procedures and Controls for Closed Systems
More informationSDA COMPLIANCE SOFTWARE For Agilent ICP-MS MassHunter Software
SDA COMPLIANCE SOFTWARE For Agilent ICP-MS MassHunter Software Part 11 in Title 21 of the US Code of Federal Regulations (commonly referred to as 21 CFR Part 11) governs food and drugs in the US, and includes
More informationDESCRIPTION. DataApex Clarity 32bit multi instrument chromatography station for Windows
wwwdataapexcom e-mail: clarity@dataapexcom DESCRIPTION DataApex Clarity 32bit multi instrument chromatography station for Windows Multi-detector instruments Easy to install and easy to use Graphical user
More information21 CFR PART 11 FREQUENTLY ASKED QUESTIONS (FAQS)
21 CFR PART 11 FREQUENTLY ASKED QUESTIONS (S) The United States Food and Drug Administration (FDA) defines the criteria under which electronic records and electronic signatures are considered trustworthy,
More informationThis Document is licensed to
GAMP 5 Page 291 End User Applications Including Spreadsheets 1 Introduction This appendix gives guidance on the use of end user applications such as spreadsheets or small databases in a GxP environment.
More informationJob Descriptions and Person Specifications for Information and Communication Technology (ICT) Officers and Communication Officers
Republic of Uganda Ministry of Public Service Job Descriptions and Person Specifications for Information and Communication Technology (ICT) Officers and Communication Officers Prepared by; Directorate
More information"Charting the Course... Certified Information Systems Auditor (CISA) Course Summary
Course Summary Description In this course, you will perform evaluations of organizational policies, procedures, and processes to ensure that an organization's information systems align with overall business
More informationAgilent ChemStation OpenLAB Option
Agilent ChemStation OpenLAB Option Concepts Guide ChemStation OpenLAB Option Concepts Guide Agilent Technologies Notices Agilent Technologies, Inc. 2008-2009, 2010 No part of this manual may be reproduced
More information... with data security and Store & Forward
Environmental Monitoring System... with data security and Store & Forward Secure electronic data Self healing data archiving Dynamic reporting Pharmaceutical Environmental Quality Monitoring System Control
More informationSecure Workstation for OpenLAB CDS ChemStation Edition User's Guide
Secure Workstation for OpenLAB CDS ChemStation Edition User's Guide Secure Workstation for OpenLAB CDS ChemStation Edition User's Guide Agilent Technologies Notices Agilent Technologies, Inc. 2014-2017
More informationSystem Assessment Report Relating to Electronic Records and Electronic Signatures; Final Rule, 21 CFR Part 11
Page 1 /16 System Assessment Report Relating to Electronic Records and Electronic Signatures; Final Rule, 21 CFR Part 11 System: Touch Control for Titrando (Software version 5.840.0150) Page 2 /16 1 Procedures
More informationLCquan Configuring LCquan for Compliance with 21 CFR Part 11
Xcalibur LCquan Configuring LCquan for Compliance with 21 CFR Part 11 Administrator Guide XCALI-97168 Revision D August 2007 2007 Thermo Fisher Scientific Inc. All rights reserved. Microsoft, Access, Excel,
More informationEZChrom Elite Chromatography Data System. Regulatory Compliance with FDA Rule of Electronic Records and Electronic Signatures (21 CFR Part 11)
EZChrom Elite Chromatography Data System Regulatory Compliance with FDA Rule of Electronic Records and Electronic Signatures (21 CFR Part 11) Scope On August 20, 1997 the final rule of the United States
More informationMeeting regulatory compliance guidelines with Agilent ICP-MS MassHunter and OpenLAB Server
Meeting regulatory compliance guidelines with Agilent ICP-MS MassHunter and OpenLAB Server White Paper Overview The United States Pharmacopoeia (USP) and the International Council for Harmonisation of
More informationNIST Risk Assessment for Part 11 Compliance: Evaluation of a GXP Case Study
NIST Risk Assessment for Part 11 Compliance: Evaluation of a GXP Case Study Monica Fanjoy* 109 Fairground Road, Holly Springs, NC 27540, USA Summary Current guidance for compliance with 21 Code of Federal
More informationINFORMATION TECHNOLOGY ( IT ) GOVERNANCE FRAMEWORK
INFORMATION TECHNOLOGY ( IT ) GOVERNANCE FRAMEWORK 1. INTRODUCTION The Board of Directors of the Bidvest Group Limited ( the Company ) acknowledges the need for an IT Governance Framework as recommended
More informationElectronic Records and Signatures with the Sievers M9 TOC Analyzer and DataPro2 Software
Water Technologies & Solutions fact sheet 21 CFR Part 11 Electronic Records and Signatures with the Sievers M9 TOC Analyzer and DataPro2 Software introduction Part 11 of Title 21 of the Code of Federal
More informationAgilent ChemStation Plus
Agilent ChemStation Plus Getting Started Guide Agilent Technologies Notices Agilent Technologies, Inc. 2004, 2006-2008 No part of this manual may be reproduced in any form or by any means (including electronic
More informationAgilent ChemStation Plus
Agilent ChemStation Plus Getting Started Guide Agilent Technologies Notices Agilent Technologies, Inc. 2004 No part of this manual may be reproduced in any form or by any means (including electronic storage
More informationMedicines & Healthcare products Regulatory Agency (MHRA) GXP Data Integrity Guidance and Definitions
Medicines & Healthcare products Regulatory Agency (MHRA) GXP Data Integrity Guidance and Definitions March 2018 Page 1 of 21 Table of contents 1. Background... 3 2. Introduction... 3 3. The principles
More informationHIPAA RISK ADVISOR SAMPLE REPORT
HIPAA RISK ADVISOR SAMPLE REPORT HIPAA Security Analysis Report The most tangible part of any annual security risk assessment is the final report of findings and recommendations. It s important to have
More informationInformation Technology General Control Review
Information Technology General Control Review David L. Shissler, Senior IT Auditor, CPA, CISA, CISSP Office of Internal Audit and Risk Assessment September 15, 2016 Background Presenter Senior IT Auditor
More information90% 191 Security Best Practices. Blades. 52 Regulatory Requirements. Compliance Report PCI DSS 2.0. related to this regulation
Compliance Report PCI DSS 2.0 Generated by Check Point Compliance Blade, on April 16, 2018 15:41 PM O verview 1 90% Compliance About PCI DSS 2.0 PCI-DSS is a legal obligation mandated not by government
More informationOpenLAB ELN Supporting 21 CFR Part 11 Compliance
OpenLAB ELN Supporting 21 CFR Part 11 Compliance White Paper Overview Part 11 in Title 21 of the Code of Federal Regulations includes the US Federal guidelines for storing and protecting electronic records
More informationAUTHORITY FOR ELECTRICITY REGULATION
SULTANATE OF OMAN AUTHORITY FOR ELECTRICITY REGULATION SCADA AND DCS CYBER SECURITY STANDARD FIRST EDITION AUGUST 2015 i Contents 1. Introduction... 1 2. Definitions... 1 3. Baseline Mandatory Requirements...
More informationGood Laboratory Practice (GLP) Guidelines for the Development and Validation of Spreadsheets
Good Laboratory Practice (GLP) Guidelines for the Development and Validation of Spreadsheets Peter M. Esch 1, *, Christoph Moor 2, Beat Schmid 3, Silvio Albertini 4, Stephan Hassler 5, Gérard Donzé 6 and
More informationSmooth and secure integration of ChemStation Plus with LIMS systems using Labtronics LimsLink CDS. Application. Steve Bolton Ute Bober.
Smooth and secure integration of ChemStation Plus with LIMS systems using Labtronics LimsLink CDS Application Steve Bolton Ute Bober Abstract Laboratories today are facing an urgent requirement to make
More informationFusion AE LC Method Validation Module. S-Matrix Corporation 1594 Myrtle Avenue Eureka, CA USA Phone: URL:
Fusion AE LC Method Validation Module S-Matrix Corporation 1594 Myrtle Avenue Eureka, CA 95501 USA Phone: 707-441-0404 URL: www.smatrix.com Regulatory Statements and Expectations ICH Q2A The objective
More informationUsing the Titrando system to comply with 21 CFR Part 11
01.2003/sn Using the Titrando system to comply with 21 CFR Part 11 The Electronic Records and Signatures Rule, known as 21 CFR Part 11, was established by the U.S. Food and Drug Administration (FDA) to
More informationon demand infrastructure leveraging a virtual datacenter for compliant customer GxPi to save money, time and GxPi s client.
leveraging a virtual datacenter for compliant infrastructure on demand Deploying to the iland cloud enabled netexperts and its customer GxPi to save money, time and GxPi s client. an exclusive case study
More informationStatement of 21 CFR Part 11 Validation Results
Statement of Validation Results Software application: Session Manager DB (TurboTag ) Sealed Air Corporation Version: 2.1.1.5 Status: Validated through version 2.1.1.5 (Original validation completed on
More information21 CFR 11!"#$%!& 3!"#$%&'()
Regulatory Matters Wolfgang Winter and Ludwig Huber 21 CFR 11 & 3 &'() "CFR11 &'()*%"+ &'()*+(, Wolfgang Winter is worldwide product manager, data systems, and corresponding author Ludwig Huber is worldwide
More informationAutomated Cloud Compliance. GxP and 21 CFR Part 11 Compliance
Automated Cloud Compliance GxP and 21 CFR Part 11 Compliance Solution Overview Sierra Labs has developed a set of tools to help companies with HIPAA compliance, 21 CFR Part 11 requirement, and GxP validation
More informationAltius IT Policy Collection
Altius IT Policy Collection Complete set of cyber and network security policies Over 100 Policies, Plans, and Forms Fully customizable - fully customizable IT security policies in Microsoft Word No software
More informationTARGET2-SECURITIES INFORMATION SECURITY REQUIREMENTS
Target2-Securities Project Team TARGET2-SECURITIES INFORMATION SECURITY REQUIREMENTS Reference: T2S-07-0270 Date: 09 October 2007 Version: 0.1 Status: Draft Target2-Securities - User s TABLE OF CONTENTS
More informationCurrent Expectations and Guidance Data Integrity
Current Expectations and Guidance Data Integrity by Pepe Rodriguez-Perez, PhD Business Excellence Consulting Inc www.calidadpr.com email training@calidadpr.com US FDA Guidance for Industry April 2016 This
More informationValidation of a CMS Software
Validation of a CMS Software GxP Webinar Paul Daniel Senior Regulatory Compliance Instructor Vaisala, Inc. Practical Webinar Stuff Challenges with your audio connection? Try calling by phone: U.S. & Canada
More informationApproaches for Auditing Software Vendors
Approaches for Auditing Software Vendors Chris Wubbolt, QACV Consulting, LLC IVT Validation Week October 20, 2016 10/20/2016 www.qacvconsulting.com 1 Objectives Understanding impact of vendor processes
More informationData Integrity Checklist
A Attributable Does your company maintain a signature log for employees that work in GxP areas? Are staff trained in Good Documentation Practices outlining that GxP records must be initialled and dated?
More informationANZSCO Descriptions The following list contains example descriptions of ICT units and employment duties for each nominated occupation ANZSCO code. And
ANZSCO Descriptions The following list contains example descriptions of ICT units and employment duties for each nominated occupation ANZSCO code. Content 261311 - Analyst Programmer... 2 135111 - Chief
More informationIntegration of GC/MSD ChemStation with OpenLAB ECM
Integration of GC/MSD ChemStation with OpenLAB ECM Technical Overview Introduction OpenLAB Enterprise Content Manager (ECM) is a Web-based electronic library that provides a secure storage place for all
More informationUnderstanding IT Audit and Risk Management
Understanding IT Audit and Risk Management Presentation overview Understanding different types of Assessments Risk Assessments IT Audits Security Assessments Key Areas of Focus Steps to Mitigation We need
More informationReal World Examples for Part 11 Technical Controls
Wolfgang Winter Product Manager, Networked Data Systems 23. January 2003 Real World Examples for Part 11 Technical Controls Time: 3.00 p.m. Central European Time Telephone Number: +44 20 8240 8243 Chair
More informationData Quality and Integrity Investigation in Laboratories (Analytical)
Data Quality and Integrity Investigation in Laboratories (Analytical) Dr. Ademola O. Daramola, DHSc., MPH Assistant Country Director International Relations Specialist (Drug) US FDA Office of International
More informationNetwork Security Policy
Network Security Policy Date: January 2016 Policy Title Network Security Policy Policy Number: POL 030 Version 3.0 Policy Sponsor Policy Owner Committee Director of Business Support Head of ICU / ICT Business
More informationUsing "IC Net 2.2 " software to comply with 21 CFR Part 11
CH-9101 Herisau/Switzerland E-Mail info@metrohm.com Internet www.metrohm.com Using "IC Net 2.2 " software to comply with 21 CFR Part 11 Compliance white paper 8.110.8273 CH-9101 Herisau/Switzerland E-Mail
More informationThe Common Controls Framework BY ADOBE
The Controls Framework BY ADOBE The following table contains the baseline security subset of control activities (derived from the Controls Framework by Adobe) that apply to Adobe s enterprise offerings.
More informationSECURITY & PRIVACY DOCUMENTATION
Okta s Commitment to Security & Privacy SECURITY & PRIVACY DOCUMENTATION (last updated September 15, 2017) Okta is committed to achieving and preserving the trust of our customers, by providing a comprehensive
More informationIS Audit of Stock Brokers
IS Audit of Stock Brokers CA Pranay Kochar B.Com, A.C.A, P.G.D.I.T., C.I.S.A., D.I.S.A (ICAI), ISO 27001 LA, Dip. Cyber Law Partner Kochar & Associates Chartered Accountants Types of IS Audits for Stock
More informationChecklist: Credit Union Information Security and Privacy Policies
Checklist: Credit Union Information Security and Privacy Policies Acceptable Use Access Control and Password Management Background Check Backup and Recovery Bank Secrecy Act/Anti-Money Laundering/OFAC
More information