SlideShare a Scribd company logo

Providing SharePoint Solutions in an FDA Regulated Environment

Download as PPTX, PDF
Deb Walther
Deb Walther

This document discusses providing SharePoint solutions in a regulated FDA environment. It provides background on the FDA and drug approval process. It explains that computer systems used for clinical trials and drug development must be validated per 21 CFR Part 11. SharePoint can be used, but requires configuration in a separate isolated environment, change control, and validation documentation to ensure it meets regulatory requirements as an electronic records system. Documentation of installation, testing, and ongoing system management is necessary to comply with FDA regulations.

Technology
1 of 44
Providing SharePoint Solutions in an FDA Regulated Environment Deb Walther IT Consultant IT Validation and Compliance ARIAD Pharmaceuticals
About Me • BS Biochemistry, MS from a Molecular Pharmacology program – Stony Brook University • > 25 years in Biotech • 2 Patents • Start up to Large Pharma • Recently moved to IT • Goal: Make work life easier • Volunteer Ski Coach/ Volunteer Tutor
Goals • Explain what the FDA is and how they affect software development in Biotechs/Pharma • Requirements for working in a validated environment • How this works with SharePoint – Strategies for using it with GxP systems – Setting it up as a GxP system
Vocabulary • GxP – Good x Practices – X= Manufacturing, Clinical, Laboratory • cGxP= Current practices – Tricky: need to know what your competitors are doing • API= Active Pharmaceutical Ingredient
Background BIOTECHS AND DRUGS
What is the FDA • FDA: Food and Drug Administration – Regulates food, drugs and cosmetics – Prevent adulteration • Oldest consumer protection agency in the US • ICH: International Conference on Harmonization – Attempted to provide a consistent approach to approving and regulating drugs in the EU, US and Japan
Key Principles – Make sure you are getting what you think you are getting • 30 mg of the active ingredient is actually 30 mg – Make sure the product works as expected • Snake oil salesmen – Do no harm • All ingredients are safe – Record what you’ve done • “Make more paper than product”
Background DRUG TRIAL PHASES
Drug Approval Process • R&D – Drug Discovery • Preclinical – GLP – Animal trials • IND: Investigation New Drug Application – Asking to perform a clinical trial
Drug Approval Process • Phase 1 – Healthy Volunteers – Look for side effects – Drug Metabolism • Phase 2 (a & b) – Effectiveness – Safety • Phase 3 – Safety & Efficacy – Dosage
Drug Approval Process • NDA: New Drug Application – Inspections – Approval= launch to market • Post Approval – Adverse Effects – Regulatory Control • Marketing Materials • Labeling
Drug Approval Process • All these steps after NDA must be performed in a regulated environment – Electronic records – Software – Hardware (not covered today)
Background HOW DID WE GET HERE?
History of the FDA • 19th Century – Drugs compounded by local pharmacies – Inconsistent – Efficacy not proven • 1820 Creation of the U.S. Pharmacopoeia (USP) – Standards of composition, strength and purity – Provide consistency across the country
History of the FDA • 1848 Analysis of chemical compounds & Drug importation act – Chemical analyses of agricultural products as part of the Patent Office – US Customs starts inspections to prevent entry of “adulterated substances” from overseas • 1906 Pure Food and Drugs Act – Prevented interstate commerce of adulterated and misbranded foods and drugs – First modern regulation of medications
History of the FDA • 1911/1912 Food and drug act did not prohibit the false therapeutic claims, but only misleading statements regarding ingredients – Shirley Amendment dealt with intended false claims • Mrs Winslow’s Soothing Syrup contained morphine had fatal events
History of the FDA • 1938 FDA Act passed by Congress – Major overhaul of regulations • Added Cosmetics and devices • Required drugs be shown to be safe/ approval • Safe Tolerance levels • Factory Inspections (strengthened in 1958 with written reports) – Allow Court injunctions along with penalties/seizures • Wheeler act added advertising
History of the FDA • 1943 Corporate officers may be prosecuted for violations – Even without intention • 1949 First Guidances • 1951 Defined prescription drugs • 1962 Must prove drug efficacy • 1970 First paper package insert with risks/benefits • 1972 Regulation of biologics
History of the FDA • 1976 Medical Devices must prove safety and effectiveness • 1988 FDA Act, Generic Drug Act & the Prescription Drug Marketing Act – Allows generics to be manufactured • 1997 FDA Modernization Act – 21 CFR part 11 introduced – Updated in 2003 – Finalized in 2007
What is 21 CFR Part 11? • Subpart A – General Provisions – Scope: • E-Signatures, Computer Systems, electronic record creation and storage – Implementation – Definitions • Subpart B – Electronic Records – Controls for closed systems – Controls for open systems – Signature manifestations – Signature/record linking • Subpart C – Electronic Signatures – General requirements – Electronic signatures and controls – Controls for identification codes/passwords
Welcome to the confusion REGULATIONS VS. GUIDANCES
Remember Software is being used to make decisions that may affect a person’s life or death
Regulations vs Guidances • CFR: Code of Federal Regulations – Covers all Pharmaceuticals, Diagnostics and Food – This is the law of the land • FDA’s “suggested” way to do things to follow the law – Available via www.fda.gov – “c” means current practices • cGMP: current Good Manufacturing Practices
Computer System • Computer systems: 21 CFR Part 11 – http://www.accessdata.fda.gov/scripts/cdrh/cfdocs/cfcfr/CFRSearch.cfm?CFRPart=11 • Guidances: – General Principles of Software Validation; Final Guidance for Industry and FDA Staff: • http://www.fda.gov/downloads/RegulatoryInformation/Guidances/ucm126955.pdf – Good Practices for Computerized Systems in Regulated GxP Environments – Guidance for Industry Part 11, Electronic Records; Electronic Signatures — Scope and Application • http://www.fda.gov/downloads/RegulatoryInformation/Gui dances/ucm125125.pdf
GxP and Software • Secure Logging – Only the right people have access to the right things – Maintain a secure environment • Auditing – Provide a history of • Changes • Decisions • Risk analysis • Mistakes (Deviations)
GxP and Software • Archives – Provide evidence in case of litigation – Length of time varies by country – http://www.fda.gov/ohrms/dockets/98fr/00d-1539-gdl0001.pdf • Accountability – Author – Signatures – Secure user name/password required
GxP and Software • Non-Repudiation – Logging of auditable material – Use of digital signatures • Stringent Record-keeping and traceability – Document the line of decision making – Risk assessments – Verification of Installation and operation of systems • Regulation & Litigation Support – Respond to regulators & lawsuits
Computer System Validation • Computer systems used to make decisions • Validation of the hardware and software – Ensures consistency • Operates as designed – Meets business and regulatory requirements – Secured information – Management is performed via formal procedures and processes
CSV • CSV= Computer Systems Validation – Does the software do what we say it does in a consistent manner? – Is it being maintained under change control? – Validation Protocol/Plan • Scope/risk assessment • Deliverables: documentation – Validation Summary report • Results of the Validation • Deviations
Biotech Culture and CSV • The culture determines how mature the approach is to CSV • Small – More academic in approach – Least stringent • Mid-sized – Mixture of academics, seasoned scientists/professionals – Going through a maturation process • Large – Great diversity in experience – Larger IT budget – More stringent
Documentation • Vendor is responsible for keeping their documentation up to date – Updates – Changes • Documentation available for audits
Software Deliveribles • Documentation – Company-dependent Document Responsible Installation Qualification (IQ) Vendor Project Scope Customer Use Cases Customer/Vendor Discovery Findings (Gap Analysis, Requirements, Recommendations) Customer/Vendor Deployment Recommendation Vendor Configuration Protocol Vendor 21 CFR Part 11 Checklist Customer Installation and Configuration Test Plan Vendor Functional Testing Report Vendor User Acceptance Testing Customer UAT Summary Report Customer Computer Validation Project Plan Customer/Vendor Validation Project Summary Report Customer
Audits • FDA can show up any time any place • Company must let them in • Strategy: – Team for audits – Train company – Announcements – Have documentation in good order • FDA will dig deeper if the surface isn’t in good order
Training • Training is key • Design towards roles – End Users – Admins – Other roles • Remember the multiple learning types: – Visual – Auditory – Kinesthetic
CSV USING SHAREPOINT
SharePoint • Separate farm (on prem) or tenant (O365) – Isolated to make the system closed and separate from non-GxP part of the business – Plan the environment to ensure scalability – Perform a Risk analysis: Regulatory and business • Track who has access – Compliance • Track changes to the environment via formalized Change Control
Change Management • Identify and justify changes • Risk assessment: Show the changes have no adverse impact on – SharePoint – Other software (if data connections are made) – Processes • Update SOP’s
SharePoint • Electronic Records in SharePoint may be – Documents – Metadata – Forms (InfoPath, .aspx, third party) • Approval workflows must end in Electronic signatures • Must have an audit trail – Created, edited, approved
Considerations • Configured “off the shelf” systems require less validation efforts than customized ones – SharePoint is considered “Configured off the shelf” systems – Can the work be done via a third party “industry standard” system?
Do I need to Validate? • Validation Assessment: – Is the record an electronic copy of a paper record? • Driving a regulated process? – Does the record exist in electronic format? • No paper record – Is the record required by predicate Rule (any requirement by the FDA)
Installing • IQ (Installation) – Setting up SharePoint – Configuration – Show evidence • OQ – Functional testing • PQ (Requirements Testing) – Test Scripts – UAT summary report – Not required for initial SharePoint validation as there is nothing for a user to test yet
Completing and beyond • Final Validation Summary reports – Show evidence • 3rd party: Vendor must maintain their documentation • Significant changes require re-validation – Risk assessment – Very costly
References • History of the FDA – http://www.fdareview.org/history.shtm – http://www.fda.gov/AboutFDA/WhatWeDo/History/Overviews/ucm056044.html – http://www.fda.gov/AboutFDA/WhatWeDo/History/Milestones/ucm128305.htm – http://www.fda.gov/aboutfda/whatwedo/history/default.htm – http://www.manhattan-institute.org/html/fda_05.htm • Guidances – http://21cfrpart11.com/pages/fda_docs/ – ICH: http://www.picscheme.org/pdf/27_pi-011-3-recommendation-on-computerised- systems.pdf
Thank You • Erik Osterlund & Joe George (ARIAD) • My Contact info: – debwalther@outlook.com – www.linkedin.com/in/debwalther – Twitter: debwalther1 – Blog: SharePoint for Blondes

Recommended

Validating SharePoint for Regulated Life Sciences Applications
Validating SharePoint for Regulated Life Sciences ApplicationsValidating SharePoint for Regulated Life Sciences Applications
Validating SharePoint for Regulated Life Sciences ApplicationsMontrium
 
SharePoint And 21 CFR Part 11 Share Fest
SharePoint And 21 CFR Part 11 Share FestSharePoint And 21 CFR Part 11 Share Fest
SharePoint And 21 CFR Part 11 Share Festpaulkfenton
 
SharePoint for Pharma - A Risk-Based Validation Approach for Life Sciences
SharePoint for Pharma - A Risk-Based Validation Approach for Life SciencesSharePoint for Pharma - A Risk-Based Validation Approach for Life Sciences
SharePoint for Pharma - A Risk-Based Validation Approach for Life SciencesMontrium
 
Continuous validation of office 365
Continuous validation of office 365Continuous validation of office 365
Continuous validation of office 365Montrium
 
Executing Validation of GxP Systems Electronically using SharePoint
Executing Validation of GxP Systems Electronically using SharePointExecuting Validation of GxP Systems Electronically using SharePoint
Executing Validation of GxP Systems Electronically using SharePointMontrium
 
Document Management in the Life Sciences - New Horizons for Small-Medium Ente...
Document Management in the Life Sciences - New Horizons for Small-Medium Ente...Document Management in the Life Sciences - New Horizons for Small-Medium Ente...
Document Management in the Life Sciences - New Horizons for Small-Medium Ente...Montrium
 
SharePoint for Pharma - Computer System Life Cycle Management
SharePoint for Pharma - Computer System Life Cycle ManagementSharePoint for Pharma - Computer System Life Cycle Management
SharePoint for Pharma - Computer System Life Cycle ManagementMontrium
 
SharePoint Configuration Management – Effective Techniques for Regulated Shar...
SharePoint Configuration Management – Effective Techniques for Regulated Shar...SharePoint Configuration Management – Effective Techniques for Regulated Shar...
SharePoint Configuration Management – Effective Techniques for Regulated Shar...Montrium
 

Recommended

Validating SharePoint for Regulated Life Sciences Applications
Validating SharePoint for Regulated Life Sciences ApplicationsValidating SharePoint for Regulated Life Sciences Applications
Validating SharePoint for Regulated Life Sciences ApplicationsMontrium
 
SharePoint And 21 CFR Part 11 Share Fest
SharePoint And 21 CFR Part 11 Share FestSharePoint And 21 CFR Part 11 Share Fest
SharePoint And 21 CFR Part 11 Share Festpaulkfenton
 
SharePoint for Pharma - A Risk-Based Validation Approach for Life Sciences
SharePoint for Pharma - A Risk-Based Validation Approach for Life SciencesSharePoint for Pharma - A Risk-Based Validation Approach for Life Sciences
SharePoint for Pharma - A Risk-Based Validation Approach for Life SciencesMontrium
 
Continuous validation of office 365
Continuous validation of office 365Continuous validation of office 365
Continuous validation of office 365Montrium
 
Executing Validation of GxP Systems Electronically using SharePoint
Executing Validation of GxP Systems Electronically using SharePointExecuting Validation of GxP Systems Electronically using SharePoint
Executing Validation of GxP Systems Electronically using SharePointMontrium
 
Document Management in the Life Sciences - New Horizons for Small-Medium Ente...
Document Management in the Life Sciences - New Horizons for Small-Medium Ente...Document Management in the Life Sciences - New Horizons for Small-Medium Ente...
Document Management in the Life Sciences - New Horizons for Small-Medium Ente...Montrium
 
SharePoint for Pharma - Computer System Life Cycle Management
SharePoint for Pharma - Computer System Life Cycle ManagementSharePoint for Pharma - Computer System Life Cycle Management
SharePoint for Pharma - Computer System Life Cycle ManagementMontrium
 
SharePoint Configuration Management – Effective Techniques for Regulated Shar...
SharePoint Configuration Management – Effective Techniques for Regulated Shar...SharePoint Configuration Management – Effective Techniques for Regulated Shar...
SharePoint Configuration Management – Effective Techniques for Regulated Shar...Montrium
 
Strategies for Conducting GxP Vendor Assessment of Cloud Service Providers - ...
Strategies for Conducting GxP Vendor Assessment of Cloud Service Providers - ...Strategies for Conducting GxP Vendor Assessment of Cloud Service Providers - ...
Strategies for Conducting GxP Vendor Assessment of Cloud Service Providers - ...Montrium
 
Case Study – Deploying SharePoint Based eTMF in the Cloud
Case Study – Deploying SharePoint Based eTMF in the CloudCase Study – Deploying SharePoint Based eTMF in the Cloud
Case Study – Deploying SharePoint Based eTMF in the CloudMontrium
 
Myths of validation
Myths of validationMyths of validation
Myths of validationJeff Thomas
 
ISPE-CCPIE China Conference 2010 (Stokes-GAMP Legacy Systems - English)
ISPE-CCPIE China Conference 2010 (Stokes-GAMP Legacy Systems - English)ISPE-CCPIE China Conference 2010 (Stokes-GAMP Legacy Systems - English)
ISPE-CCPIE China Conference 2010 (Stokes-GAMP Legacy Systems - English)David Stokes
 
Achieving a 21 CFR Part 11 Compliant eTMF
Achieving a 21 CFR Part 11 Compliant eTMFAchieving a 21 CFR Part 11 Compliant eTMF
Achieving a 21 CFR Part 11 Compliant eTMFpaulkfenton
 
21 cfr part 11 compliance
21 cfr part 11 compliance21 cfr part 11 compliance
21 cfr part 11 complianceKiran Kota
 
Network Infrastructure Validation Conference @UPRA (2003)
Network Infrastructure Validation Conference @UPRA (2003)Network Infrastructure Validation Conference @UPRA (2003)
Network Infrastructure Validation Conference @UPRA (2003)Raul Soto
 
Computer System Validation
Computer System ValidationComputer System Validation
Computer System ValidationEric Silva
 
IT Validation Training
IT Validation TrainingIT Validation Training
IT Validation TrainingRobert Sturm
 
Computer System Validation - The Validation Master Plan
Computer System Validation - The Validation Master PlanComputer System Validation - The Validation Master Plan
Computer System Validation - The Validation Master PlanWolfgang Kuchinke
 
Computerized system validation_final
Computerized system validation_finalComputerized system validation_final
Computerized system validation_finalDuy Tan Geek
 
Overview on “Computer System Validation” CSV
Overview on “Computer System Validation” CSVOverview on “Computer System Validation” CSV
Overview on “Computer System Validation” CSVAnil Sharma
 
Gamp Riskbased Approch To Validation
Gamp Riskbased Approch To ValidationGamp Riskbased Approch To Validation
Gamp Riskbased Approch To ValidationRajendra Sadare
 
Computer system validations
Computer system validationsComputer system validations
Computer system validationsAmruta Balekundri
 
Computerized System Validation : Understanding basics
Computerized System Validation : Understanding basics Computerized System Validation : Understanding basics
Computerized System Validation : Understanding basics Anand Pandya
 
Computerized system validation
Computerized system validationComputerized system validation
Computerized system validationDevipriya Viswambharan
 
FDA 21 CFR Part 11 and Related Regulations and Guidances
FDA 21 CFR Part 11 and Related Regulations and GuidancesFDA 21 CFR Part 11 and Related Regulations and Guidances
FDA 21 CFR Part 11 and Related Regulations and GuidancesInstitute of Validation Technology
 
Computer system validation
Computer system validationComputer system validation
Computer system validationGaurav Kr
 
Kelis king - a storehouse of vast knowledge on software testing and quality ...
Kelis king - a storehouse of vast knowledge on software testing and quality ...Kelis king - a storehouse of vast knowledge on software testing and quality ...
Kelis king - a storehouse of vast knowledge on software testing and quality ...KelisKing
 
Gamp 5 overview by jaya prakash ra
Gamp 5 overview by jaya prakash raGamp 5 overview by jaya prakash ra
Gamp 5 overview by jaya prakash raJAYA PRAKASH VELUCHURI
 
Preparing for New FSMA Preventive Controls Regulations
Preparing for New FSMA Preventive Controls RegulationsPreparing for New FSMA Preventive Controls Regulations
Preparing for New FSMA Preventive Controls RegulationsAlchemy Systems
 
Epitome Corporate PPT
Epitome Corporate PPTEpitome Corporate PPT
Epitome Corporate PPTEpitome Technologies Training
 

More Related Content

What's hot

Strategies for Conducting GxP Vendor Assessment of Cloud Service Providers - ...
Strategies for Conducting GxP Vendor Assessment of Cloud Service Providers - ...Strategies for Conducting GxP Vendor Assessment of Cloud Service Providers - ...
Strategies for Conducting GxP Vendor Assessment of Cloud Service Providers - ...Montrium
 
Case Study – Deploying SharePoint Based eTMF in the Cloud
Case Study – Deploying SharePoint Based eTMF in the CloudCase Study – Deploying SharePoint Based eTMF in the Cloud
Case Study – Deploying SharePoint Based eTMF in the CloudMontrium
 
Myths of validation
Myths of validationMyths of validation
Myths of validationJeff Thomas
 
ISPE-CCPIE China Conference 2010 (Stokes-GAMP Legacy Systems - English)
ISPE-CCPIE China Conference 2010 (Stokes-GAMP Legacy Systems - English)ISPE-CCPIE China Conference 2010 (Stokes-GAMP Legacy Systems - English)
ISPE-CCPIE China Conference 2010 (Stokes-GAMP Legacy Systems - English)David Stokes
 
Achieving a 21 CFR Part 11 Compliant eTMF
Achieving a 21 CFR Part 11 Compliant eTMFAchieving a 21 CFR Part 11 Compliant eTMF
Achieving a 21 CFR Part 11 Compliant eTMFpaulkfenton
 
21 cfr part 11 compliance
21 cfr part 11 compliance21 cfr part 11 compliance
21 cfr part 11 complianceKiran Kota
 
Network Infrastructure Validation Conference @UPRA (2003)
Network Infrastructure Validation Conference @UPRA (2003)Network Infrastructure Validation Conference @UPRA (2003)
Network Infrastructure Validation Conference @UPRA (2003)Raul Soto
 
Computer System Validation
Computer System ValidationComputer System Validation
Computer System ValidationEric Silva
 
IT Validation Training
IT Validation TrainingIT Validation Training
IT Validation TrainingRobert Sturm
 
Computer System Validation - The Validation Master Plan
Computer System Validation - The Validation Master PlanComputer System Validation - The Validation Master Plan
Computer System Validation - The Validation Master PlanWolfgang Kuchinke
 
Computerized system validation_final
Computerized system validation_finalComputerized system validation_final
Computerized system validation_finalDuy Tan Geek
 
Overview on “Computer System Validation” CSV
Overview on “Computer System Validation” CSVOverview on “Computer System Validation” CSV
Overview on “Computer System Validation” CSVAnil Sharma
 
Gamp Riskbased Approch To Validation
Gamp Riskbased Approch To ValidationGamp Riskbased Approch To Validation
Gamp Riskbased Approch To ValidationRajendra Sadare
 
Computerized System Validation : Understanding basics
Computerized System Validation : Understanding basics Computerized System Validation : Understanding basics
Computerized System Validation : Understanding basics Anand Pandya
 
Computer system validation
Computer system validationComputer system validation
Computer system validationGaurav Kr
 
Kelis king - a storehouse of vast knowledge on software testing and quality ...
Kelis king - a storehouse of vast knowledge on software testing and quality ...Kelis king - a storehouse of vast knowledge on software testing and quality ...
Kelis king - a storehouse of vast knowledge on software testing and quality ...KelisKing
 

What's hot (20)

Strategies for Conducting GxP Vendor Assessment of Cloud Service Providers - ...
Strategies for Conducting GxP Vendor Assessment of Cloud Service Providers - ...Strategies for Conducting GxP Vendor Assessment of Cloud Service Providers - ...
Strategies for Conducting GxP Vendor Assessment of Cloud Service Providers - ...
 
Case Study – Deploying SharePoint Based eTMF in the Cloud
Case Study – Deploying SharePoint Based eTMF in the CloudCase Study – Deploying SharePoint Based eTMF in the Cloud
Case Study – Deploying SharePoint Based eTMF in the Cloud
 
Myths of validation
Myths of validationMyths of validation
Myths of validation
 
ISPE-CCPIE China Conference 2010 (Stokes-GAMP Legacy Systems - English)
ISPE-CCPIE China Conference 2010 (Stokes-GAMP Legacy Systems - English)ISPE-CCPIE China Conference 2010 (Stokes-GAMP Legacy Systems - English)
ISPE-CCPIE China Conference 2010 (Stokes-GAMP Legacy Systems - English)
 
Achieving a 21 CFR Part 11 Compliant eTMF
Achieving a 21 CFR Part 11 Compliant eTMFAchieving a 21 CFR Part 11 Compliant eTMF
Achieving a 21 CFR Part 11 Compliant eTMF
 
21 cfr part 11 compliance
21 cfr part 11 compliance21 cfr part 11 compliance
21 cfr part 11 compliance
 
Network Infrastructure Validation Conference @UPRA (2003)
Network Infrastructure Validation Conference @UPRA (2003)Network Infrastructure Validation Conference @UPRA (2003)
Network Infrastructure Validation Conference @UPRA (2003)
 
Computer System Validation
Computer System ValidationComputer System Validation
Computer System Validation
 
IT Validation Training
IT Validation TrainingIT Validation Training
IT Validation Training
 
Computer System Validation - The Validation Master Plan
Computer System Validation - The Validation Master PlanComputer System Validation - The Validation Master Plan
Computer System Validation - The Validation Master Plan
 
Computerized system validation_final
Computerized system validation_finalComputerized system validation_final
Computerized system validation_final
 
Overview on “Computer System Validation” CSV
Overview on “Computer System Validation” CSVOverview on “Computer System Validation” CSV
Overview on “Computer System Validation” CSV
 
Gamp Riskbased Approch To Validation
Gamp Riskbased Approch To ValidationGamp Riskbased Approch To Validation
Gamp Riskbased Approch To Validation
 
Computer system validations
Computer system validationsComputer system validations
Computer system validations
 
Computerized System Validation : Understanding basics
Computerized System Validation : Understanding basics Computerized System Validation : Understanding basics
Computerized System Validation : Understanding basics
 
Computerized system validation
Computerized system validationComputerized system validation
Computerized system validation
 
FDA 21 CFR Part 11 and Related Regulations and Guidances
FDA 21 CFR Part 11 and Related Regulations and GuidancesFDA 21 CFR Part 11 and Related Regulations and Guidances
FDA 21 CFR Part 11 and Related Regulations and Guidances
 
Computer system validation
Computer system validationComputer system validation
Computer system validation
 
Kelis king - a storehouse of vast knowledge on software testing and quality ...
Kelis king - a storehouse of vast knowledge on software testing and quality ...Kelis king - a storehouse of vast knowledge on software testing and quality ...
Kelis king - a storehouse of vast knowledge on software testing and quality ...
 
Gamp 5 overview by jaya prakash ra
Gamp 5 overview by jaya prakash raGamp 5 overview by jaya prakash ra
Gamp 5 overview by jaya prakash ra
 

Similar to Providing SharePoint Solutions in an FDA Regulated Environment

Preparing for New FSMA Preventive Controls Regulations
Preparing for New FSMA Preventive Controls RegulationsPreparing for New FSMA Preventive Controls Regulations
Preparing for New FSMA Preventive Controls RegulationsAlchemy Systems
 
FDA Inspections - Lessons Learnt
FDA Inspections - Lessons LearntFDA Inspections - Lessons Learnt
FDA Inspections - Lessons LearntVISAMED GmbH
 
cGMP Training 2013
cGMP Training 2013cGMP Training 2013
cGMP Training 2013bloodbank
 
Audit and inspection by madhukar thagnar
Audit and inspection by madhukar thagnar Audit and inspection by madhukar thagnar
Audit and inspection by madhukar thagnar MadhukarSureshThagna
 
Audit and Inspection in Clinical Trial
Audit and Inspection in Clinical TrialAudit and Inspection in Clinical Trial
Audit and Inspection in Clinical TrialDR. RANJEET PRASAD
 
GCP Key Concepts NCI 4-19-17.pdf main concepts
GCP Key Concepts NCI 4-19-17.pdf main conceptsGCP Key Concepts NCI 4-19-17.pdf main concepts
GCP Key Concepts NCI 4-19-17.pdf main conceptsAakanksha38925
 
Focus on FDA cGMPs inspections
Focus on FDA cGMPs inspections Focus on FDA cGMPs inspections
Focus on FDA cGMPs inspections JinalPrajapati13
 
2016-06-08 FDA Inspection Readiness - Mikael Yde
2016-06-08 FDA Inspection Readiness - Mikael Yde2016-06-08 FDA Inspection Readiness - Mikael Yde
2016-06-08 FDA Inspection Readiness - Mikael Ydemikaelyde
 
Presentation on data integrity in Pharmaceutical Industry
Presentation on data integrity in Pharmaceutical IndustryPresentation on data integrity in Pharmaceutical Industry
Presentation on data integrity in Pharmaceutical IndustrySathish Vemula
 
eTMF Structure, Setup, and Implementation Case Study
eTMF Structure, Setup, and Implementation Case StudyeTMF Structure, Setup, and Implementation Case Study
eTMF Structure, Setup, and Implementation Case StudyAdair Turner, MS, RAC
 
FDA’s approach to regulation of in vitro diagnostic tests
FDA’s approach to regulation of in vitro diagnostic testsFDA’s approach to regulation of in vitro diagnostic tests
FDA’s approach to regulation of in vitro diagnostic testsMaRS Discovery District
 
Update on regulatory reforms from the Scientific Evaluation Branch
Update on regulatory reforms from the Scientific Evaluation BranchUpdate on regulatory reforms from the Scientific Evaluation Branch
Update on regulatory reforms from the Scientific Evaluation BranchTGA Australia
 
Update on regulatory reforms from the Scientific Evaluation Branch
Update on regulatory reforms from the Scientific Evaluation BranchUpdate on regulatory reforms from the Scientific Evaluation Branch
Update on regulatory reforms from the Scientific Evaluation BranchTGA Australia
 
TGA presentation: Data Integrity - an international regulatory perspective
TGA presentation: Data Integrity - an international regulatory perspectiveTGA presentation: Data Integrity - an international regulatory perspective
TGA presentation: Data Integrity - an international regulatory perspectiveTGA Australia
 

Similar to Providing SharePoint Solutions in an FDA Regulated Environment (20)

Preparing for New FSMA Preventive Controls Regulations
Preparing for New FSMA Preventive Controls RegulationsPreparing for New FSMA Preventive Controls Regulations
Preparing for New FSMA Preventive Controls Regulations
 
Epitome Corporate PPT
Epitome Corporate PPTEpitome Corporate PPT
Epitome Corporate PPT
 
Data Integrity
Data IntegrityData Integrity
Data Integrity
 
FDA Inspections - Lessons Learnt
FDA Inspections - Lessons LearntFDA Inspections - Lessons Learnt
FDA Inspections - Lessons Learnt
 
cGMP Training 2013
cGMP Training 2013cGMP Training 2013
cGMP Training 2013
 
Audit and inspection by madhukar thagnar
Audit and inspection by madhukar thagnar Audit and inspection by madhukar thagnar
Audit and inspection by madhukar thagnar
 
Audit and Inspection in Clinical Trial
Audit and Inspection in Clinical TrialAudit and Inspection in Clinical Trial
Audit and Inspection in Clinical Trial
 
GCP Key Concepts NCI 4-19-17.pdf main concepts
GCP Key Concepts NCI 4-19-17.pdf main conceptsGCP Key Concepts NCI 4-19-17.pdf main concepts
GCP Key Concepts NCI 4-19-17.pdf main concepts
 
160702-JC-Auditing
160702-JC-Auditing160702-JC-Auditing
160702-JC-Auditing
 
Data integrity
Data integrityData integrity
Data integrity
 
Focus on FDA cGMPs inspections
Focus on FDA cGMPs inspections Focus on FDA cGMPs inspections
Focus on FDA cGMPs inspections
 
Supplier Selection
Supplier SelectionSupplier Selection
Supplier Selection
 
2016-06-08 FDA Inspection Readiness - Mikael Yde
2016-06-08 FDA Inspection Readiness - Mikael Yde2016-06-08 FDA Inspection Readiness - Mikael Yde
2016-06-08 FDA Inspection Readiness - Mikael Yde
 
Presentation on data integrity in Pharmaceutical Industry
Presentation on data integrity in Pharmaceutical IndustryPresentation on data integrity in Pharmaceutical Industry
Presentation on data integrity in Pharmaceutical Industry
 
eTMF Structure, Setup, and Implementation Case Study
eTMF Structure, Setup, and Implementation Case StudyeTMF Structure, Setup, and Implementation Case Study
eTMF Structure, Setup, and Implementation Case Study
 
FDA’s approach to regulation of in vitro diagnostic tests
FDA’s approach to regulation of in vitro diagnostic testsFDA’s approach to regulation of in vitro diagnostic tests
FDA’s approach to regulation of in vitro diagnostic tests
 
RAC review Chapter 10.pptx
RAC review Chapter 10.pptxRAC review Chapter 10.pptx
RAC review Chapter 10.pptx
 
Update on regulatory reforms from the Scientific Evaluation Branch
Update on regulatory reforms from the Scientific Evaluation BranchUpdate on regulatory reforms from the Scientific Evaluation Branch
Update on regulatory reforms from the Scientific Evaluation Branch
 
Update on regulatory reforms from the Scientific Evaluation Branch
Update on regulatory reforms from the Scientific Evaluation BranchUpdate on regulatory reforms from the Scientific Evaluation Branch
Update on regulatory reforms from the Scientific Evaluation Branch
 
TGA presentation: Data Integrity - an international regulatory perspective
TGA presentation: Data Integrity - an international regulatory perspectiveTGA presentation: Data Integrity - an international regulatory perspective
TGA presentation: Data Integrity - an international regulatory perspective
 

More from Deb Walther

Collabdays NE2023DWalther-Skyterra.pdf
Collabdays NE2023DWalther-Skyterra.pdfCollabdays NE2023DWalther-Skyterra.pdf
Collabdays NE2023DWalther-Skyterra.pdfDeb Walther
 
DWaltherGraniteStateUG 2023.pptx
DWaltherGraniteStateUG 2023.pptxDWaltherGraniteStateUG 2023.pptx
DWaltherGraniteStateUG 2023.pptxDeb Walther
 
Challenges and Victories During a Migration to Modern Microsoft 365
Challenges and Victories During a Migration to Modern Microsoft 365Challenges and Victories During a Migration to Modern Microsoft 365
Challenges and Victories During a Migration to Modern Microsoft 365Deb Walther
 
Maine Adaptive Teaching Kids Through Games Deb Walther
Maine Adaptive Teaching Kids Through Games Deb WaltherMaine Adaptive Teaching Kids Through Games Deb Walther
Maine Adaptive Teaching Kids Through Games Deb WaltherDeb Walther
 
Dwalther spsnh2013
Dwalther spsnh2013Dwalther spsnh2013
Dwalther spsnh2013Deb Walther
 
Dwalther spsnh2013
Dwalther spsnh2013Dwalther spsnh2013
Dwalther spsnh2013Deb Walther
 
D walther info path spnh 2012
D walther info path spnh 2012D walther info path spnh 2012
D walther info path spnh 2012Deb Walther
 

More from Deb Walther (7)

Collabdays NE2023DWalther-Skyterra.pdf
Collabdays NE2023DWalther-Skyterra.pdfCollabdays NE2023DWalther-Skyterra.pdf
Collabdays NE2023DWalther-Skyterra.pdf
 
DWaltherGraniteStateUG 2023.pptx
DWaltherGraniteStateUG 2023.pptxDWaltherGraniteStateUG 2023.pptx
DWaltherGraniteStateUG 2023.pptx
 
Challenges and Victories During a Migration to Modern Microsoft 365
Challenges and Victories During a Migration to Modern Microsoft 365Challenges and Victories During a Migration to Modern Microsoft 365
Challenges and Victories During a Migration to Modern Microsoft 365
 
Maine Adaptive Teaching Kids Through Games Deb Walther
Maine Adaptive Teaching Kids Through Games Deb WaltherMaine Adaptive Teaching Kids Through Games Deb Walther
Maine Adaptive Teaching Kids Through Games Deb Walther
 
Dwalther spsnh2013
Dwalther spsnh2013Dwalther spsnh2013
Dwalther spsnh2013
 
Dwalther spsnh2013
Dwalther spsnh2013Dwalther spsnh2013
Dwalther spsnh2013
 
D walther info path spnh 2012
D walther info path spnh 2012D walther info path spnh 2012
D walther info path spnh 2012
 

Recently uploaded

08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking MenDelhi Call girls
 
The Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxThe Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxMalak Abu Hammad
 
SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024Scott Keck-Warren
 
AI as an Interface for Commercial Buildings
AI as an Interface for Commercial BuildingsAI as an Interface for Commercial Buildings
AI as an Interface for Commercial BuildingsMemoori
 
How to Remove Document Management Hurdles with X-Docs?
How to Remove Document Management Hurdles with X-Docs?How to Remove Document Management Hurdles with X-Docs?
How to Remove Document Management Hurdles with X-Docs?XfilesPro
 
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking MenDelhi Call girls
 
Enhancing Worker Digital Experience: A Hands-on Workshop for Partners
Enhancing Worker Digital Experience: A Hands-on Workshop for PartnersEnhancing Worker Digital Experience: A Hands-on Workshop for Partners
Enhancing Worker Digital Experience: A Hands-on Workshop for PartnersThousandEyes
 
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | DelhiFULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhisoniya singh
 
My Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationMy Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationRidwan Fadjar
 
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmaticsKotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmaticscarlostorres15106
 
Key Features Of Token Development (1).pptx
Key Features Of Token Development (1).pptxKey Features Of Token Development (1).pptx
Key Features Of Token Development (1).pptxLBM Solutions
 
Handwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsHandwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsMaria Levchenko
 
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 3652toLead Limited
 
Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...
Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...
Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...HostedbyConfluent
 
Azure Monitor & Application Insight to monitor Infrastructure & Application
Azure Monitor & Application Insight to monitor Infrastructure & ApplicationAzure Monitor & Application Insight to monitor Infrastructure & Application
Azure Monitor & Application Insight to monitor Infrastructure & ApplicationAndikSusilo4
 
Pigging Solutions Piggable Sweeping Elbows
Pigging Solutions Piggable Sweeping ElbowsPigging Solutions Piggable Sweeping Elbows
Pigging Solutions Piggable Sweeping ElbowsPigging Solutions
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerThousandEyes
 
Human Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR SystemsHuman Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR SystemsMark Billinghurst
 
Benefits Of Flutter Compared To Other Frameworks
Benefits Of Flutter Compared To Other FrameworksBenefits Of Flutter Compared To Other Frameworks
Benefits Of Flutter Compared To Other FrameworksSoftradix Technologies
 
Unblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesUnblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesSinan KOZAK
 

Recently uploaded (20)

08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men
 
The Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxThe Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptx
 
SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024
 
AI as an Interface for Commercial Buildings
AI as an Interface for Commercial BuildingsAI as an Interface for Commercial Buildings
AI as an Interface for Commercial Buildings
 
How to Remove Document Management Hurdles with X-Docs?
How to Remove Document Management Hurdles with X-Docs?How to Remove Document Management Hurdles with X-Docs?
How to Remove Document Management Hurdles with X-Docs?
 
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
 
Enhancing Worker Digital Experience: A Hands-on Workshop for Partners
Enhancing Worker Digital Experience: A Hands-on Workshop for PartnersEnhancing Worker Digital Experience: A Hands-on Workshop for Partners
Enhancing Worker Digital Experience: A Hands-on Workshop for Partners
 
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | DelhiFULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
 
My Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationMy Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 Presentation
 
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmaticsKotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
 
Key Features Of Token Development (1).pptx
Key Features Of Token Development (1).pptxKey Features Of Token Development (1).pptx
Key Features Of Token Development (1).pptx
 
Handwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsHandwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed texts
 
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
 
Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...
Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...
Transforming Data Streams with Kafka Connect: An Introduction to Single Messa...
 
Azure Monitor & Application Insight to monitor Infrastructure & Application
Azure Monitor & Application Insight to monitor Infrastructure & ApplicationAzure Monitor & Application Insight to monitor Infrastructure & Application
Azure Monitor & Application Insight to monitor Infrastructure & Application
 
Pigging Solutions Piggable Sweeping Elbows
Pigging Solutions Piggable Sweeping ElbowsPigging Solutions Piggable Sweeping Elbows
Pigging Solutions Piggable Sweeping Elbows
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected Worker
 
Human Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR SystemsHuman Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR Systems
 
Benefits Of Flutter Compared To Other Frameworks
Benefits Of Flutter Compared To Other FrameworksBenefits Of Flutter Compared To Other Frameworks
Benefits Of Flutter Compared To Other Frameworks
 
Unblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesUnblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen Frames
 

Providing SharePoint Solutions in an FDA Regulated Environment

  • 1. Providing SharePoint Solutions in an FDA Regulated Environment Deb Walther IT Consultant IT Validation and Compliance ARIAD Pharmaceuticals
  • 2. About Me • BS Biochemistry, MS from a Molecular Pharmacology program – Stony Brook University • > 25 years in Biotech • 2 Patents • Start up to Large Pharma • Recently moved to IT • Goal: Make work life easier • Volunteer Ski Coach/ Volunteer Tutor
  • 3. Goals • Explain what the FDA is and how they affect software development in Biotechs/Pharma • Requirements for working in a validated environment • How this works with SharePoint – Strategies for using it with GxP systems – Setting it up as a GxP system
  • 4. Vocabulary • GxP – Good x Practices – X= Manufacturing, Clinical, Laboratory • cGxP= Current practices – Tricky: need to know what your competitors are doing • API= Active Pharmaceutical Ingredient
  • 6. What is the FDA • FDA: Food and Drug Administration – Regulates food, drugs and cosmetics – Prevent adulteration • Oldest consumer protection agency in the US • ICH: International Conference on Harmonization – Attempted to provide a consistent approach to approving and regulating drugs in the EU, US and Japan
  • 7. Key Principles – Make sure you are getting what you think you are getting • 30 mg of the active ingredient is actually 30 mg – Make sure the product works as expected • Snake oil salesmen – Do no harm • All ingredients are safe – Record what you’ve done • “Make more paper than product”
  • 9. Drug Approval Process • R&D – Drug Discovery • Preclinical – GLP – Animal trials • IND: Investigation New Drug Application – Asking to perform a clinical trial
  • 10. Drug Approval Process • Phase 1 – Healthy Volunteers – Look for side effects – Drug Metabolism • Phase 2 (a & b) – Effectiveness – Safety • Phase 3 – Safety & Efficacy – Dosage
  • 11. Drug Approval Process • NDA: New Drug Application – Inspections – Approval= launch to market • Post Approval – Adverse Effects – Regulatory Control • Marketing Materials • Labeling
  • 12. Drug Approval Process • All these steps after NDA must be performed in a regulated environment – Electronic records – Software – Hardware (not covered today)
  • 13. Background HOW DID WE GET HERE?
  • 14. History of the FDA • 19th Century – Drugs compounded by local pharmacies – Inconsistent – Efficacy not proven • 1820 Creation of the U.S. Pharmacopoeia (USP) – Standards of composition, strength and purity – Provide consistency across the country
  • 15. History of the FDA • 1848 Analysis of chemical compounds & Drug importation act – Chemical analyses of agricultural products as part of the Patent Office – US Customs starts inspections to prevent entry of “adulterated substances” from overseas • 1906 Pure Food and Drugs Act – Prevented interstate commerce of adulterated and misbranded foods and drugs – First modern regulation of medications
  • 16. History of the FDA • 1911/1912 Food and drug act did not prohibit the false therapeutic claims, but only misleading statements regarding ingredients – Shirley Amendment dealt with intended false claims • Mrs Winslow’s Soothing Syrup contained morphine had fatal events
  • 17. History of the FDA • 1938 FDA Act passed by Congress – Major overhaul of regulations • Added Cosmetics and devices • Required drugs be shown to be safe/ approval • Safe Tolerance levels • Factory Inspections (strengthened in 1958 with written reports) – Allow Court injunctions along with penalties/seizures • Wheeler act added advertising
  • 18. History of the FDA • 1943 Corporate officers may be prosecuted for violations – Even without intention • 1949 First Guidances • 1951 Defined prescription drugs • 1962 Must prove drug efficacy • 1970 First paper package insert with risks/benefits • 1972 Regulation of biologics
  • 19. History of the FDA • 1976 Medical Devices must prove safety and effectiveness • 1988 FDA Act, Generic Drug Act & the Prescription Drug Marketing Act – Allows generics to be manufactured • 1997 FDA Modernization Act – 21 CFR part 11 introduced – Updated in 2003 – Finalized in 2007
  • 20. What is 21 CFR Part 11? • Subpart A – General Provisions – Scope: • E-Signatures, Computer Systems, electronic record creation and storage – Implementation – Definitions • Subpart B – Electronic Records – Controls for closed systems – Controls for open systems – Signature manifestations – Signature/record linking • Subpart C – Electronic Signatures – General requirements – Electronic signatures and controls – Controls for identification codes/passwords
  • 21. Welcome to the confusion REGULATIONS VS. GUIDANCES
  • 22. Remember Software is being used to make decisions that may affect a person’s life or death
  • 23. Regulations vs Guidances • CFR: Code of Federal Regulations – Covers all Pharmaceuticals, Diagnostics and Food – This is the law of the land • FDA’s “suggested” way to do things to follow the law – Available via www.fda.gov – “c” means current practices • cGMP: current Good Manufacturing Practices
  • 24. Computer System • Computer systems: 21 CFR Part 11 – http://www.accessdata.fda.gov/scripts/cdrh/cfdocs/cfcfr/CFRSearch.cfm?CFRPart=11 • Guidances: – General Principles of Software Validation; Final Guidance for Industry and FDA Staff: • http://www.fda.gov/downloads/RegulatoryInformation/Guidances/ucm126955.pdf – Good Practices for Computerized Systems in Regulated GxP Environments – Guidance for Industry Part 11, Electronic Records; Electronic Signatures — Scope and Application • http://www.fda.gov/downloads/RegulatoryInformation/Gui dances/ucm125125.pdf
  • 25. GxP and Software • Secure Logging – Only the right people have access to the right things – Maintain a secure environment • Auditing – Provide a history of • Changes • Decisions • Risk analysis • Mistakes (Deviations)
  • 26. GxP and Software • Archives – Provide evidence in case of litigation – Length of time varies by country – http://www.fda.gov/ohrms/dockets/98fr/00d-1539-gdl0001.pdf • Accountability – Author – Signatures – Secure user name/password required
  • 27. GxP and Software • Non-Repudiation – Logging of auditable material – Use of digital signatures • Stringent Record-keeping and traceability – Document the line of decision making – Risk assessments – Verification of Installation and operation of systems • Regulation & Litigation Support – Respond to regulators & lawsuits
  • 28. Computer System Validation • Computer systems used to make decisions • Validation of the hardware and software – Ensures consistency • Operates as designed – Meets business and regulatory requirements – Secured information – Management is performed via formal procedures and processes
  • 29. CSV • CSV= Computer Systems Validation – Does the software do what we say it does in a consistent manner? – Is it being maintained under change control? – Validation Protocol/Plan • Scope/risk assessment • Deliverables: documentation – Validation Summary report • Results of the Validation • Deviations
  • 30. Biotech Culture and CSV • The culture determines how mature the approach is to CSV • Small – More academic in approach – Least stringent • Mid-sized – Mixture of academics, seasoned scientists/professionals – Going through a maturation process • Large – Great diversity in experience – Larger IT budget – More stringent
  • 31. Documentation • Vendor is responsible for keeping their documentation up to date – Updates – Changes • Documentation available for audits
  • 32. Software Deliveribles • Documentation – Company-dependent Document Responsible Installation Qualification (IQ) Vendor Project Scope Customer Use Cases Customer/Vendor Discovery Findings (Gap Analysis, Requirements, Recommendations) Customer/Vendor Deployment Recommendation Vendor Configuration Protocol Vendor 21 CFR Part 11 Checklist Customer Installation and Configuration Test Plan Vendor Functional Testing Report Vendor User Acceptance Testing Customer UAT Summary Report Customer Computer Validation Project Plan Customer/Vendor Validation Project Summary Report Customer
  • 33. Audits • FDA can show up any time any place • Company must let them in • Strategy: – Team for audits – Train company – Announcements – Have documentation in good order • FDA will dig deeper if the surface isn’t in good order
  • 34. Training • Training is key • Design towards roles – End Users – Admins – Other roles • Remember the multiple learning types: – Visual – Auditory – Kinesthetic
  • 36. SharePoint • Separate farm (on prem) or tenant (O365) – Isolated to make the system closed and separate from non-GxP part of the business – Plan the environment to ensure scalability – Perform a Risk analysis: Regulatory and business • Track who has access – Compliance • Track changes to the environment via formalized Change Control
  • 37. Change Management • Identify and justify changes • Risk assessment: Show the changes have no adverse impact on – SharePoint – Other software (if data connections are made) – Processes • Update SOP’s
  • 38. SharePoint • Electronic Records in SharePoint may be – Documents – Metadata – Forms (InfoPath, .aspx, third party) • Approval workflows must end in Electronic signatures • Must have an audit trail – Created, edited, approved
  • 39. Considerations • Configured “off the shelf” systems require less validation efforts than customized ones – SharePoint is considered “Configured off the shelf” systems – Can the work be done via a third party “industry standard” system?
  • 40. Do I need to Validate? • Validation Assessment: – Is the record an electronic copy of a paper record? • Driving a regulated process? – Does the record exist in electronic format? • No paper record – Is the record required by predicate Rule (any requirement by the FDA)
  • 41. Installing • IQ (Installation) – Setting up SharePoint – Configuration – Show evidence • OQ – Functional testing • PQ (Requirements Testing) – Test Scripts – UAT summary report – Not required for initial SharePoint validation as there is nothing for a user to test yet
  • 42. Completing and beyond • Final Validation Summary reports – Show evidence • 3rd party: Vendor must maintain their documentation • Significant changes require re-validation – Risk assessment – Very costly
  • 43. References • History of the FDA – http://www.fdareview.org/history.shtm – http://www.fda.gov/AboutFDA/WhatWeDo/History/Overviews/ucm056044.html – http://www.fda.gov/AboutFDA/WhatWeDo/History/Milestones/ucm128305.htm – http://www.fda.gov/aboutfda/whatwedo/history/default.htm – http://www.manhattan-institute.org/html/fda_05.htm • Guidances – http://21cfrpart11.com/pages/fda_docs/ – ICH: http://www.picscheme.org/pdf/27_pi-011-3-recommendation-on-computerised- systems.pdf
  • 44. Thank You • Erik Osterlund & Joe George (ARIAD) • My Contact info: – debwalther@outlook.com – www.linkedin.com/in/debwalther – Twitter: debwalther1 – Blog: SharePoint for Blondes