Computerised Systems. Alfred Hunt Inspector. Wholesale Distribution Information Day, 28 th September Date Insert on Master Slide.

Similar documents
EUROPEAN COMMISSION ENTERPRISE AND INDUSTRY DIRECTORATE-GENERAL. EudraLex The Rules Governing Medicinal Products in the European Union

EU GMP - Annex 11 Computerised systems Versione corrente Nuova versione per commenti (emessa 8 aprile 2008)

Computerised Systems. Inspection Expectations. Paul Moody, Inspector. 18/10/2013 Slide 1. ISPE GAMP COP Ireland Meeting, Dublin, 17 th October 2013

COMPUTERISED SYSTEMS

Regulatory Overview Annex 11 and Part 11. Sion Wyn Conformity +[44] (0)

EUROPEAN COMMISSION HEALTH AND CONSUMERS DIRECTORATE-GENERAL. EudraLex The Rules Governing Medicinal Products in the European Union

CUSTOMER AND SUPPLIER ROLES AND RESPONSIBILITIES FOR 21 CFR 11 COMPLIANCE ASSESSMENT. 21 CFR Part 11 FAQ. (Frequently Asked Questions)

References Concept. Principle. EU Annex 11 US FDA , (g), (i), 11 Orlando Lopez 2/15/11. Old Annex 11.

Computerised System Validation

Contents. Contents (13) 1 Qualification (21)

Computer System Validation Perform a Gap Analysis of your CSV Processes

EU Annex 11 US FDA 211, 820, 11; other guidelines Orlando López 11-MAY-2011

EU Annex 11 US FDA , (g), (i), 11 Orlando López 09-APR

GAMP Guideline & Validation Documentation

System Requirements (URS)

Oracle Tech Cloud GxP Position Paper December, 2016

EU Annex 11 update. An ISPE interpretation

COMPUTERIZED SYSTEM VALIDATION

ISPE NORDIC COP CLEAN UTILITIES SEPTEMBER TUUSULA FINLAND. Timo Kuosmanen STERIS Finn-Aqua

General European OMCL Network (GEON) QUALITY MANAGEMENT DOCUMENT

White paper: Code of GMP Chapter 4 Documentation - PIC/S versus EU

COMPUTER SYSTEMS VALIDATION

MASTER VALIDATION PLAN PROCEDURE DRAFT DRAFT OF A POSSIBLE COMPUTER SYSTEMS VALIDATION MASTER PLAN PROCEDURE

GLP Computerized Systems Updates from OECD Guidance. Dr. Michael Regehr, BASF Corporation 28 JAN 2016, NAICC, Orlando

Implement Effective Computer System Validation. Noelia Ortiz, MME, CSSGB, CQA

Summary of Significant Changes. Policy

OECD Working Group on Good Laboratory Practice. Template for submission of comments on draft GLP Guidance Documents. Instructions for Use

Good Automated Manufacturing Practices (GAMP)

Enterprise and Industry Directorate-General European Commission B-1049 Brussels Belgium BY TO and

Ensure Data Integrity Compliance Enterprise-Wide

Validation of MES and Manufacturing Automation systems

Use of computerised equipment, software and systems in clinical research

Managing Validation. Paperless Recorders

Clarity CDS since version 7.2 supportive tools for compliance with Title 21 CFR Part 11, EudraLex Chapter 4, Annex 11 and other similar legislation

Validation Documentation. Presented by John Montalto 27 March, 2013

GOOD PRACTICES FOR COMPUTERISED SYSTEMS IN REGULATED GXP ENVIRONMENTS

Data Integrity Through the Life Cycle Balancing Quality and Innovation. Sion Wyn Conformity +44 (0)

Jean Guichard. Introduction to Good Process Record Management (GxP) #: Internet-WP Version: e1.00 /EN

COMPUTERIZED SYSTEM VALIDATION (CSV) IMPLEMENTATION, DEMARCATION AND STRUCTURATION

GxP Compliance for Computerized Systems

SESSION 14. Documentation Requirements and Management for Validation. 30 March Frits Vogt

Develop a Roadmap for the Implementation of a Global CSV Program. Eileen Cortes April 26, 2017

SIMATIC IT. SIMATIC IT R&D SUITE V7.1 Compliance Response ERES. Introduction 1. The Requirements in Short 2

New GDP Guidelines - Implementation

Blackbox for sensitive freight.

GAMP5 Validation for Dynamics 365

Risk-based Approach to Part 11 and GxP Compliance

Strategies for Risk Based Validation of Laboratory Systems

GAMP 5 ARiskBased Risk-Based Approach to. Computerized Systems

The Role of the LMS in 21 CFR Part 11 Compliance

DATA INTEGRITY ASSURANCE AS KEY FACTOR FOR SURVIVING CORPORATE AUDITS AND REGULATORY INSECTIONS

Content Targeting Pre inspection procedures GLP points of interest: Test substance & equipment SOPs Electronic data 2

Process ERP, an ideal software solution for Life Science industries

QMS CO-ORDINATOR & GENERAL PROCEDURES:-

Documenta tion and Records

Good Distribution Practices Toolkit. Quality Management System 08 March 2016

Guide for Distributors of Medical Devices

General Accreditation Guidance. ISO/IEC 17025:2017 Gap analysis. April 2018

GAMP 4/5 Prospective / retrospective Qualification of water treatment plants) P. Dony

Manufacturing Optimisation Inside the Pharmaceutical Supply Chain. Business System Compliance

Internal Control and the Computerised Information System (CIS) Environment. CA A. Rafeq, FCA

Annex IV to guidance for the conduct of good clinical practice inspections sponsor and CRO

EUROPEAN INDUSTRIAL PHARMACISTS GROUP. Guidance on CPD for QUALIFIED PERSONS

Data Integrity Compliance Project

HACCP audit checklist

EUROPEAN COMMISSION DIRECTORATE-GENERAL FOR HEALTH AND FOOD SAFETY. EudraLex. Volume 4

Compliance Response Electronic Records / Electronic Signatures (ERES) for SIMATIC PCS 7 V8.1

Welcome. Data Integrity Beyond Bytes and Signatures. Paul Daniel Senior Regulatory Compliance Expert

INFORMATION BULLETIN No. 173

Quality & Validation for the Supply Chain

Healthcare Good Distribution Practice (GDP)

Blackbox for sensitive freight.

Electronic Systems - Regulators Observations

ANCHOR ISO9001:2008 RPR-007 MARINE SERVICES ADDITIONAL PROCEDURE PRODUCT REALISATION

[ WHITE PAPER ] A Basic Overview: Meeting the PIC/S Requirements for a Computerized System INTRODUCTION GOOD MANUFACTURING PRACTICES

Process development and basic GMP

Standard Operating Procedures

Overview sulla nuova guideline GDP

No. Question Answer IT Qualification Statement 1 SITE CONTACT

PTC s Windchill Product Lifecycle Management (PLM) System Facilitates Part 11 / Annex 11 Compliance

Current Trends in Data Quality and Integrity Issues in Inspections and Risk Based Approach to Investigations; EU perspective

Key changes in new BCSH Transfusion I.T. Guidelines. Debbie Asher EPA Network Transfusion Manager Member, BCSH Guideline Writing Group

Regulatory Expectations, Standards & Guidelines

Internal Audit Report Review of Controls Operating over Accounts Payable. Issued: 21 February 2018 Final Report

Good Laboratory Practice GUIDELINES FOR THE VALIDATION OF COMPUTERISED SYSTEMS. Release Date:

Records Management Plan

GCP Basics - refresher

ASQ FD&C GMP Quality Conference

ScreenMaster RVG200 Paperless recorder

Validation and Automated Validation

Good Laboratory Practice (GLP) Philip Cunningham St Vincent s s Hospital Sydney

INFORMATION BULLETIN No. 173

Design Quality. Indu Lakshman

Compliance Response Electronic Records / Electronic Signatures for COMOS V10.0

Blackbox for sensitive freight.

LEVERAGING YOUR VENDORS TO SUPPORT DATA INTEGRITY:

Data Integrity: Production Environment

SECTION 18. INFORMATION TECHNOLOGY AND COMMUNICATION SYSTEMS RECORDS

LEGAL REQUIREMENTS and DATA INTEGRITY...

c) Have personnel been appointed to supervise the production operations across all shifts in order to ensure the product quality?

Transcription:

Computerised Systems Wholesale Distribution Information Day, Alfred Hunt Inspector Date Insert on Master Slide Slide 1

Index What is a computerised system Updates to EU GDPs Expectations Case studies Slide 2

Slide 3

What is a Computerised System GAMP 5 Slide 4

Computerised Systems within Wholesaling Systems which may impact on product quality Provide safety or quality data Impact operational reliability Maintain regulated data A few examples Inventory Management Systems Sales and Invoicing Systems Temperature Monitoring Systems Document Management Systems Slide 5

Question In the event of a recall how would you identify who you supplied the affected product to? a) By manually checking through all paper invoices b) By manually checking a goods-out logbook c) By manually checking through electronic records d) By running a product search on an electronic inventory / invoicing system? Slide 6

Why New Requirements? Patient safety Product quality Data integrity Where a computerised system replaces a manual operation, there should be no resultant decrease in product quality or quality assurance Did we build the right system & did we build it correctly? Slide 7

Revised EU Guideline on GDP (Draft) Section 3.19 Before a computerised system is brought into use, it should be demonstrated through appropriate validation or verification studies, that the system is capable of achieving the desired results accurately, consistently and reproducibly. Slide 8

Revised EU Guideline on GDP (Draft) Section 3.20 Written detailed description Diagrams Kept up-to-date Principles Objectives Security Measures System scope Main features How the system is used How the system interacts with other systems Slide 9

Revised EU Guideline on GDP (Draft) Section 3.21 Data should only be entered or amended by persons authorised to do so Slide 10

Revised EU Guideline on GDP (Draft) Section 3.22 Data should be secured by physical or electronic means and protected against accidental or unauthorised modifications. Stored data should be checked periodically for accessibility. Data should be protected by backing up at regular intervals. Back up data should be retained for a period stated in national legislation but at least 5 years at a separate and secure location. Slide 11

Revised EU Guideline on GDP (Draft) Section 3.23 Procedures to be followed if the system fails or breaks down should be defined. This should include systems for the restoration of data. Slide 12

What to Do??? Custom Software & Hardware Level of Validation Configurable Non - Configurable Standard Software & Hardware Greater complexity Less user experience Risk of Failure / Defects Slide 13

Life Cycle Approach 1. Concept (User Requirement Specification - URS) 2. Project (Functional Specification, Design Specification) 3. Operation (Ongoing maintenance systems) 4. Retirement GAMP 5 Supplier Involvement Is the system being validated the same as the proposed system? Slide 14

User Requirement Specification A document that specifies the requirements for a computerised system what it should do Should be commensurate with level of risk, complexity and novelty of system Should be detailed enough to allow for subsequent verification of system requirements May include operational requirements, functional requirements, data requirements, technical requirements, interface requirements, performance requirements, security requirements, maintenance requirements, retirement requirements For commercially available systems - may be part of purchasing document Slide 15

Software Validation Category 1 Infrastructure Software 3 Non - Configured 4 Configured Validation Approach Record version (include service pack). Verify Correct Installation URS Record version and verify installation Risk based tests against requirements Procedures put in place for maintaining compliance Consider auditing supplier for critical and complex applications As above, plus Life cycle approach Supplier questionnaire Adequate QMS Risk based tests against requirements in a test environment Risk based tests against requirements within the business process 5 Custom As above, plus Full life cycle documentation Design and source code review GAMP 5 Appendix M4 Slide 16

Hardware Validation Hardware Category 1 - Standard Hardware Installation and connection Record model, version number, serial number Change Control Hardware Category 2 - Custom Built Hardware As above plus... Design Specification and Acceptance Testing Verification of compatibility of interconnected hardware Supplier audit Slide 17

Load Reviews Ensuring that your system can cope with all eventualities Minimum level through to greater than expected load Repeat if new area / site added Growth modelling Number of users number of transactions memory capabilities Slide 18

Suppliers Provide / Install / Configure / Integrate / Validate / Maintain / Modify / Retain Suitability? Competence? Technical Agreements Audit Slide 19

Case Study 1 A wholesaler uses an off-the-shelf software package for inventory management and accounting purposes. The system was installed on a standard networked IT system. All wholesaling transactions are processed using the system and it is used as their primary method of traceability. Slide 20

Case Study 1 Step 1 Determine category of system Software Category 3 (Non-configurable system) Hardware Category 1 Step 2 Determine approach to be taken (may include ) Functionality versus URS Record version of software/hardware, verify correct installation Allowable users Verify data entry capability (product, code, quantity, location ) Verify processes (orders, picking, FEFO, returns) Verify data is retrievable and accurate Run systems side-by-side if upgrading Training, Procedures etc Slide 21

Case Study 2 A wholesaler installs a temperature monitoring system into their warehouse. The system consists of wireless probes which send a signal to a relay box which in turn sends a signal to a receiving unit linked to a PC. The data is uploaded via broadband to the system supplier s hosting site. In order to access the data the wholesaler must log in to the suppliers website. Slide 22

Case Study 2 Step 1 Determine category of system Software - Category 4 (Configurable system) Hardware Category 2 Step 2 Determine approach to be taken (may include ) URS / Functional Specification (may be combined) Operation and performance of system versus URS & FS SLA with supplier, consider audit Record version of software, hardware details Verify operation of system under load conditions User access levels Ensure data storage is secure Verify data is retrievable and accurate Verify hardware is compatible and functioning (commission and calibrate) Run systems side-by-side if upgrading Training, Procedures etc Slide 23

Other Requirements User procedures Training Software package documentation Hardware package documentation Passwords Routinely change (Different cases, numbers, characters) Not to be shared! Usernames specific for person & not ambiguous Slide 24

Change Management Changes to a part of the system pose a risk due to interdependencies Does the process owner know if supplier makes a change? (SLA) Version controlled Record, assess, approve and document changes Slide 25

Retention 5 years (Depending on products!) Regulatory duty Preserve content and meaning Back-ups (archiving / long term retention) validation of data and media integrity (number of uses etc) Restoration (time, routine verification) Separate and secure location Slide 26

Ongoing Maintenance Ongoing monitoring of system s performance Error Logs Operator training Change control Maintenance of user manuals / SOPs Updates to system Slide 27

Recovery after failure Restoring system to correct state Log file of transaction records Incomplete transactions Protocols and procedures for testing Manual data entry Outage investigation Slide 28

Retrospective Validation Legacy systems / Reclassification Focus attention on those computerised systems with most impact on patient safety, product quality, and data integrity Risk assessments History of use Maintenance Error logs Validation plan / Gap assessment Slide 29

Risk Management Useful for retrospective validation Assess risks Apply controls Linked to the protection of the patient Level of effort, formality, documentation should be commensurate with the level of risk Slide 30

Databases Databases and repositories should also be validated Database integrity size? Compatibility with other systems Slide 31

Commercial Spreadsheet Applications Highly configurable Difficult to validate Audit trails Changes Slide 32

Outsourced Services E.g. Temperature monitoring Security of data Control of data / ownership Access Service Level Agreements Disclaimers Slide 33

Considerations Patient safety is priority Audit trail Ease of validation Electronic signatures Support from supplier Slide 34

Further Guidance! PIC/S Good Practice for Computerised Systems in regulated GXP Environments www.picscheme.org Eudralex Volume 4 GMP Guide Annex 11: Computerised Systems GAMP 5 - Good Automated Manufacturing Practice Slide 35

Thank you alfred.hunt@imb.ie compliance@imb.ie www.imb.ie 01-6764971 Slide 36

2024 © businessdocbox.com Privacy Policy | Terms of Service | Feedback