October p. 01. GCP Update Data Integrity

Similar documents
Summary of PIC/S Guidance Good Practices for Data Management and Integrity in Regulated GMP/GDP Environments

DATA INTEGRITY (EMA AUGUST 2016)

MHRA GMP Data Integrity Definitions and Guidance for Industry March Introduction:

Leveraging ALCOA+ Principles to Establish a Data Lifecycle Approach for the Validation and Remediation of Data Integrity. Bradford Allen Genentech

Data Integrity. Developments, updates, and deficiencies. Paul Moody, GMP Inspector. GMP Conference. 7 February 2017 Dublin

Data Integrity and Worldwide Regulatory Guidance

Sparta Systems TrackWise Solution

Sparta Systems TrackWise Digital Solution

Data Integrity for the Microbiology Laboratory

Data Integrity for the Microbiology Laboratory

Medicines & Healthcare products Regulatory Agency (MHRA) GXP Data Integrity Guidance and Definitions

Data Integrity session Hosted by DCVMN Day 1 08/06/ Dr. Sandra O. Rumiano June 18th and 19th 2018

This Document is licensed to

Sparta Systems Stratas Solution

Comment sheet for MHRA draft document:

Data Integrity Checklist

Data Integrity in Clinical Trials

!"# $ # # $ $ % $ &% $ '"# $ ()&*&)+(( )+(( )

Data Quality and Integrity Investigation in Laboratories (Analytical)

Data Integrity and the FDA AFDO Education Conference

Elements of Data Management

Automated Cloud Compliance. GxP and 21 CFR Part 11 Compliance

Electronic Data Capture (EDC) Systems and Part 11 Compliance

Vaccine data collection tool Oct Functions, Indicators & Sub-Indicators

MHRA GMP Data Integrity Definitions and Guidance for Industry January Initial Review and Critique March 2015

ISPE Annual Meeting 29 October 1 November 2017 San Diego, CA

Standard Development Timeline

Manchester Metropolitan University Information Security Strategy

Standard Operating Procedure. Data Management. Adapted with the kind permission of University Hospitals Bristol NHS Foundation Trust

INFORMATION SECURITY AND RISK POLICY

ISSUE N 1 MAJOR MODIFICATIONS. Version Changes Related Release No. PREVIOUS VERSIONS HISTORY. Version Date History Related Release No.

Data Inventory and Classification, Physical Devices and Systems ID.AM-1, Software Platforms and Applications ID.AM-2 Inventory

ISPE Annual Meeting 8 11 November 2015 Philadelphia, PA. Forensic Auditing for Data Integrity. Rebecca A. Brewer Quality Executive Partners

Enterprise GRC Implementation

By Cornelia Wawretchek. The Drug Manufacturer s Guide to Site Master Files

Alexion Pharma International Trading

New York Cybersecurity. New York Cybersecurity. Requirements for Financial Services Companies (23NYCRR 500) Solution Brief

Current Expectations and Guidance, including Data Integrity and Compliance With CGMP

Detecting Aberrant Data as an Indicator of Data Integrity Issues

APF!submission!!draft!Mandatory!data!breach!notification! in!the!ehealth!record!system!guide.!

CIP Cyber Security Configuration Change Management and Vulnerability Assessments

In 2017, the Auditor General initiated an audit of the City s information technology infrastructure and assets.

5. The technology risk evaluation need only be updated when significant changes or upgrades to systems are implemented.

Standard Development Timeline

Importance of the Data Management process in setting up the GDPR within a company CREOBIS

EUROPEAN MEDICINES AGENCY (EMA) CONSULTATION

UNIVERSITY OF LEICESTER, UNIVERSITY OF LOUGHBOROUGH & UNIVERSITY HOSPITALS OF LEICESTER NHS TRUST JOINT RESEARCH & DEVELOPMENT SUPPORT OFFICE

System Assessment Report Relating to Electronic Records and Electronic Signatures; Final Rule, 21 CFR Part 11

Medical Device Cybersecurity: FDA Perspective

Record Lifecycle Modeling Tasks

Information and documentation Records management. Part 1: Concepts and principles AS ISO :2017 ISO :2016

CIP Cyber Security Configuration Change Management and Vulnerability Assessments

Part 11 Compliance SOP

System Assessment Report Relating to Electronic Records and Electronic Signatures; 21 CFR Part 11. System: tiamo (Software Version 2.

CIP Cyber Security Configuration Change Management and Vulnerability Assessments

NEWCASTLE CLINICAL TRIALS UNIT STANDARD OPERATING PROCEDURES

STANDARD OPERATING PROCEDURE

Data Management Dr Evelyn Flanagan

STANDARD INFORMATION SHARING FORMATS. Will Semple Head of Threat and Vulnerability Management New York Stock Exchange

Implementation of Article 6 of the Paris Agreement status and pathways to COP24

Examining Rescue Studies

21 CFR PART 11 FREQUENTLY ASKED QUESTIONS (FAQS)

The HITECH Act. 5 things you can do Right Now to pave the road to compliance. 1. Secure PHI in motion.

Guideline on the specifications for provision of an electronic submission (e-submission) for a veterinary medicinal product

SECURITY & PRIVACY DOCUMENTATION

Procedure re-written. (i.e. All staff with responsibility for the creation, use and management of organisational responsibility)

FDA : Ensuring data integrity is an important component of industry s

Data Integrity: Technical controls that demonstrate trust

CRITERIA FOR CERTIFICATION BODY ACCREDITATION IN THE FIELD OF RISK BASED INSPECTION MANAGEMENT SYSTEMS

CDASH Standards and EDC CRF Library. Guang-liang Wang September 18, Q3 DCDISC Meeting

OSD Product Support BCA Guidebook. Joseph Colt Murphy Senior Financial Analyst ODASD Materiel Readiness 9 May 2011

Standard CIP Cyber Security Systems Security Management

Scientific Research Data Management Policy

Industry Guidelines for Computerized Systems Validation (GAMP, PDA Technical Reports)

How ISO can assist with your GDPR compliance

Turning Risk into Advantage

Data Integrity and Electronic Records Compliance with DoseControl

IT MANAGER PERMANENT SALARY SCALE: P07 (R ) Ref:AgriS042/2019 Information Technology Manager. Reporting to. Information Technology (IT)

Within our recommendations for editorial changes, additions are noted in bold underline and deletions in strike-through.

Gatekeeper Public Key Infrastructure Framework. Information Security Registered Assessors Program Guide

COMPLIANCE. associates VALIDATOR WHITE PAPER. Addressing 21 cfr Part 11

Policy Document. PomSec-AllSitesBinder\Policy Docs, CompanyWide\Policy

CIP Cyber Security Configuration Management and Vulnerability Assessments

The Long-term Preservation of Accurate and Authentic Digital Data: The InterPARES Project

Keele Clinical Trials Unit

MANAGEMENT ACTION FILE NOTES STANDARD OPERATING PROCEDURE (SOP)

Below we ve highlighted several of the key points from the final guidance document.

DATA STEWARDSHIP BODY OF KNOWLEDGE (DSBOK)

NHS Gloucestershire Clinical Commissioning Group. Business Continuity Strategy

Agenda. Bibliography

GOVERNANCE, RISK MANAGEMENT AND COMPLIANCE TRENDS BY FCPAK ERIC KIMANI

FairWarning Mapping to PCI DSS 3.0, Requirement 10

John Snare Chair Standards Australia Committee IT/12/4

Common approaches to management. Presented at the annual conference of the Archives Association of British Columbia, Victoria, B.C.

NDIS Quality and Safeguards Commission. Incident Management System Guidance

Compliance Matrix for 21 CFR Part 11: Electronic Records

Pacific Knowledge Systems. RippleDown Deployment Guide: v8.0.5

Monitoring of Scientific Literature

Touchstone Technologies, Inc. Course Catalog February 2017

CIP Cyber Security Information Protection

Transcription:

p. 01

p. 02

p. 03 failures by organizations to: apply robust systems that inhibit data risks, improve the detection of situations where data reliability may be compromised, and/or investigate and address root causes when failures do arise.

p. 04 Good Data and Record Management Practices (GDRP): The totality of organized measures that should be in place to collectively and individually ensure that data and records are secure, attributable, legible, traceable, permanent, contemporaneously recorded, original and accurate and that, if not robustly implemented, can impact on data reliability and completeness and undermine the robustness of decision-making based upon those data records. WHO Technical Report Series No. 996, 2016

p. 05 A Quality Risk Management (QRM) approach that effectively assures patient safety and product quality and validity of data by ensuring that management aligns expectations with actual process capabilities Monitoring of processes and allocation of the necessary resources by management to ensure and enhance infrastructure, as required (for example, to continuously improve processes and methods) Adoption of a quality culture within the company that encourages personnel to be transparent about failures so that management has an accurate understanding of risks and can then provide the necessary resources to achieve expectations and meet data quality standards Mapping of data processes and application of modern QRM and sound scientific principles throughout the data life cycle Ensuring that all site personnel are kept up to date about the application of good documentation practices (GDocP) to ensure that the GXP principles of ALCOA are understood and applied to electronic data

p. 06 Data Management Governance: A robust and sustainable good data management system requires data management governance, including: application of modern QRM principles and good data management principles that assure the validity, completeness and reliability of data; application of appropriate quality metrics; assurance that personnel are not subject to commercial, political, financial and other pressures or incentives that may adversely affect the quality and integrity of their work; allocation of adequate human and technical resources such that the workload, work hours and pressures on those responsible for data generation and record keeping do not increase errors;

p. 07 Quality culture maintain a working environment that minimizes the risk of noncompliant records and erroneous records and data. transparent and open reporting of deviations, errors, omissions and aberrant results at all levels of the organization. Steps should be taken to prevent, and to detect and correct weaknesses in systems and procedures that may lead to data errors so as to continually improve the robustness of scientific decision-making within the organization.

Data Lifecycle p. 08 data generation and capture data disposal data transmission data retention and retrieval data processing data reporting data review

p. 09 Data life cycle Validation should include assessing risk and developing quality risk mitigation strategies, including controls to prevent and detect risks throughout the data life cycle. determining the risk-based approach to reviewing electronic data and audit trails based upon process understanding and knowledge of potential impact on products and patients; writing SOPs defining review of original electronic records and including meaningful metadata such as audit trails and review of any associated printouts or PDF records; documenting the system architecture and data flow, including the flow of electronic data and all associated metadata, from the point of creation through archival and retrieval; ensuring that the relationships between data and metadata are maintained intact throughout the data life cycle.

audit trails p. 010 Data entries, such as source data for inclusion of a patient in a clinical trial, should be verified by a second person or entered through technical means such as barcoding, as appropriate for the intended use of these data. Additional controls may include locking critical data entries after the data are verified and review of audit trails for critical data to detect if they have been altered.

audit trails p. 011 Changes to scientific data may sometimes be most readily viewed by; running various database queries or viewing metadata fields labelled history files or review of designed and validated system reports, The files designated by the software developer as audit trails alone may be of limited value for an effective review. The risk-based review of electronic data and metadata, such as audit trails, requires an understanding of the system and the scientific process governing the data life cycle so that the meaningful metadata are subject to review, regardless of the naming conventions used by the software developer.

p. 012 True copies of electronic records should preserve the dynamic format of the original electronic data as this is essential to preserving the meaning of the original electronic data, e.g: preserving the dynamic format of clinical study data captured in an ecrf system allows searching and querying of data, whereas a pdf of the ecrf data, even if it includes a PDF of audit trails, would lose this aspect of the content and meaning of the original ecrf data. Clinical investigators should have access to original records throughout the study and records retention period in a manner that preserves the full content and meaning of the source information. Especially for data that support critical decision-making, even if PDF/printed summaries are maintained, the complete copies of electronic data should continue to be maintained throughout the records retention period to allow for investigations that may be necessary under unexpected circumstances, such as application integrity investigations.

p. 013 How can data risk be assessed? Data risk assessment should consider the vulnerability of data to involuntary or deliberate amendment, deletion or recreation. Factors to consider include: Complexity Consistency - degree of automation /human interface Subjectivity of outcome / result Manual interfaces with IT systems can the user influence the reporting of data from the validated system http://www.ema.europa.eu/ema/index.jsp?curl=pages/regulation/q_and_a/q_and_a_detail_000027.jsp#section16

p. 014 How can data criticality be assessed? Points to consider regarding data criticality include: What decision does the data influence? For example: when making a batch release decision, data which determines compliance with critical quality attributes is of greater importance than warehouse cleaning records. What is the impact of the data to product quality or safety? For example: for an oral tablet, active substance assay data is of greater impact to product quality and safety than tablet dimensions data. http://www.ema.europa.eu/ema/index.jsp?curl=pages/regulation/q_and_a/q_and_a_detail_000027.jsp#section16

p. 015 WHO Expert Committee on Specifications for Pharmaceutical Preparations, Annex 5 Guidance on good data and record management practices http://www.who.int/medicines/publications/pharmprep/who_trs_996_annex05.p df EMA GMP/GDP Q&A, : http://www.ema.europa.eu/ema/index.jsp?curl=pages/regulation/q_and_a/q_and_ a_detail_000027.jsp PIC/S draft guidance GOOD PRACTICES FOR DATA MANAGEMENT AND INTEGRITY IN REGULATED GMP/GDP ENVIRONMENTS https://www.picscheme.org/useruploads/documents//pi_041_1_draft_2_guidance _on_data_integrity_2.pdf

p. 016

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback