Académique Documents
Professionnel Documents
Culture Documents
SPEAKERS:
Bob McDowall
R.D. McDowall Ltd.
Karl-Heinz Menges
Regierungspräsidium
Darmstadt
Yves Samson
Kereon AG
17 and 18 – 20 April 2018, Copenhagen, Denmark
28 and 29 – 31 August 2018, Copenhagen, Denmark
Workshops on:
1 1 and 12 – 14 December 2018, Berlin, Germany
–– Which Audit Trail to Review?
–– Identifying GMP-relevant Data
–– Reviewing Audit Trail Entries
LEARNING OBJECTIVES:
–– Analysis of FDA Warning Letters
–– Key Data Integrity Topics /
Criteria
Understand the regulatory requirements for an Audit Trails (review)
–– How to write testable Identifying GMP relevant data
requirements for Data Integrity Review of Audit Trail entries
–– Assessing a System for Data Technical Controls to Aid Second Person Review of Audit Trails
Integrity FDA Draft Guidance for Industry ‘Data Integrity and Compliance
with cGMP’
WHO, MHRA and GAMP Data Integrity Guidances - Key Points
Data Integrity – EU requirements
Principles of Data Integrity
Data Governance
Role of Management in Data Integrity
IT Support for Data Integrity
Implementing Data Integrity Training
Data Integrity and Cloud Computing
Supplier Chain Data Integrity
European Inspector’s point of view
Case study: Data Integrity questions as part of an inspection
This education course is recognised for the ECA GMP Certification Programme „Certified Data Integrity Manager“.
Please find details at www.gmp-certification.eu
Audit Trail Review
17 April 2018, Copenhagen, Denmark | 28 August 2018, Copenhagen, Denmark | 11 December 2018, Berlin, Germany
Background
Audit Trail Reviews are required by international regula- What are GMP-relevant Data?
tions like US 21 CFR Part 11 and EU GMP Guide Annex 11. Annex 11 requires that audit trails monitor
Clause 9 requests: GMP-relevant data – what are GMP-relevant data?
This course is designed for managers and staff from Workshop 3: Reviewing Audit Trail Entries
health care industries as well for auditors who are re- Attendees will be provided with the output of an audit
sponsible for the organisation and execution of audit trail trail to review and see if any potential issues are identi-
(reviews) in their companies. fied for further investigation.
Objectives Programme
Understand the current FDA and EU GMP regulations Why is Data Integrity Important? – Setting the Scene
and guidance impacting data integrity from paper Summary of falsification observed by FDA and EU
records to hybrid and electronic systems. inspectors 2005 – to date
Understand the FDA requirements for data integrity, FDAISA act 2012 and October 2014 Guidance for
MHRA Data Integrity guidance July 2016 and WHO Industry and the impact on inspections
guidance from September 2015. Inspection of computerised systems is changing:
Learn what is required for a data governance system from paper to on-line
from senior management through to staff in laborato- MHRA expectation for data governance; data integrity
ries, manufacturing and quality assurance. guidance documents 2016
Understand the data life cycle and how it is linked FDA Level 2 guidance on data integrity: 2010 and
with the business process and where problems can 2014 postings
occur for both paper records, hybrid systems and Impact of WHO guidance for data integrity
electronic systems.
Data Integrity – EU GMP Requirements
EU GMP Chapter 4 – documentation
Background EU GMP Annex 11 computerised systems
Data integrity definitions
Data Integrity is a global problem and currently a major Difference between paper and electronic systems
concern with FDA and European Regulatory Agencies.
Multiple FDA warning letters and EU GMP non-compli- Principles of Data Integrity
ance reports have highlighted major data integrity fail- The ALCOA+ criteria for data integrity
ures and falsification in companies globally. The regula- Data life cycle in the process workflow – managing
tory concern has been responded by the FDA issuing controls
Compliance Program Guide that covers Pre-Approval Paper versus hybrid versus electronic systems
Inspections. This document became effective in May Validation of computerised systems for data integrity
2012. The CPG objective 3 covers the laboratory data controls
integrity audit. Furthermore in August 2014, the FDA is- Scope: production information versus laboratory
sued Level 2 guidance on their web site about the shar- data: why are laboratory data higher risk?
ing of login credentials for computerized systems and
the use of test injections for testing into compliance. Facilitated Discussion / Workshop on Key Data
Integrity Topics
In Europe, the UK’s MHRA issued two versions of a Recording results on paper
Guidance for Industry on Data Integrity in January and Configuration of software applications
March 2015. This document outlines a data integrity Unique user identities for all users
governance system and principles for defining quality Unauthorised access
and data integrity into processes and systems. In addi- Appropriate access privileges for each user role
tion, the guidance defines 19 terms and provides expec- Is my chromatographic system ready? Role of “test”
tations and examples for many of them and therein is injections
where the document’s value lies. A new draft version of Audit trails – options for older systems
the Guidance was published in July 2016. The WHO Manual chromatographic integration
guidance is complimentary to the MHRA guidance in Standalone versus network systems
that it provides guidance for data governance and also Protecting electronic records of standalone systems
expectations for records in both paper and electronic
form.
WHO, MHRA and GAMP Data Integrity Guidances -
As the regulators are tightening their inspection Key Points
approaches it is important that managers, supervisors Data Governance System within the Pharmaceutical
and users in regulated GMP laboratories understand Quality System
the issues around data integrity and begin programs to Data Life Cycle
ensure that their processes and systems ensure data Spectrum of Systems: Paper to Electronic Systems
integrity. with data integrity audit
The GAMP Records and Data Integrity Guide
FDA Draft Guidance for Industry ‘Data Integrity and Data Integrity in paper documentation
Compliance with cGMP’ GMP requirements for good documentation practice
Background Application to paper documents
Questions and Answers regarding Data Integrity Common problems from FDA 483 observations and
warning letters and how to avoid them
Role of Management in Data Integrity
Role of Senior, Production and Department Manage- User Account Management and Application
ment in ensuring data integrity within an organisation Configuration
and its suppliers Separation of roles and responsibilities between IT
Data governance within a Quality System and the business
Failures to address poor data integrity practices and Documentation of the configuration of an application
no training e.g. audit trail, user types and access privileges
User account management: the dos and don’ts
Development and Scope of a Data Governance System User identities must be unique
Within a PQS, what is the scope of a data governance Regular review of each system users and privileges
system?
Who are involved? IT Support for Data Integrity
What are their roles? IT facilities, environmental controls and physical
security
Implementing Data Integrity Training Qualified IT infrastructure and validated IT systems
Scope of data integrity training Backup and recovery / Change control
What cover in the training? IT support including database administration
Checking training effectiveness Impact of IT infrastructure on data integrity
Integrating data integrity training with GMP training
Software Suppliers Responsibility for Data Integrity
Workshop: Analysis of an FDA Warning Letter Compliance
Working in teams, attendees will analyse one of Regulatory requirements for software systems: proce-
several FDA warning letters to identify key areas of dural and technical
regulatory concern Role of software suppliers
Group discussion of regulatory concerns identified Regulations push v market needs pull
Implementing technical requirements for software:
architecture, database and application
US 21 CFR 211 and EU GMP Chapter 4: Complete data Marketing literature versus marketing bullshit
vs raw data vs primary record
Why complete data and raw data are important for Workshop: Assessing a System for Data Integrity
understanding data integrity Using a checklist based on the data integrity criteria,
EU GMP Chapter 4 requirements for raw data attendees will assess a system for data integrity
21 CFR 211 requirements for laboratory records:
complete data
FDA Level 2 guidance: paper versus e-records
Complete data / raw data / primary record example Case study: Can Spreadsheets meet Data Integrity
requirements?
Case study: Data Integrity questions as part of an Problems with spreadsheets
inspection Good Practice for using spreadsheets in a regulated
Lab System environment
QA System Building data integrity features into a spreadsheet
Manufacturing System
Supply Chain Data Integrity – Organisational Interfaces
Approaches to ensuring data integrity of your
Workshop: How to write testable requirements for suppliers
Data Integrity Role of technical agreements and audits
Access control
Archiving Key Learning Points and Final Discussion
Technology constraints Summary of Data Integrity Requirements and Key
Learning Points
Final Discussions and close of the course
Fees Audit Trail Review (per delegate plus VAT) Social Event
ECA Members € 790 On 18 April / 29 August / 12 December you are cordially invited
APIC Members € 840 to a social event. This is an excellent opportunity to share your
Non-ECA Members € 890 experiences with colleagues from other companies in a relaxed
EU GMP Inspectorates € 445 atmosphere.
The conference fee is payable in advance after receipt of in-
voice and includes conference documentation, lunch and all
Speakers
refreshments. VAT is reclaimable.
P.O. Box 10 17 64
Form:
Company Department
69007 Heidelberg, Germany
Important: Please indicate your company’s VAT ID Number P.O. Number (if applicable)
CONCEPT HEIDELBERG
Phone/Fax
Reservation Form:
+ 49 6221 84 44 34
General terms and conditions CONCEPT HEIDELBERG reserves the right to change the materials, in- Important: This is a binding registration and above fees are due in case Privacy Policy: By registering for this event, I accept the processing
If you cannot attend the conference you have two options: structors, or speakers without notice or to cancel an event. If the event of cancellation or non-appearance. If you cannot take part, you have of my Personal Data. Concept Heidelberg will use my data for the
1. We are happy to welcome a substitute colleague at any time. must be cancelled, registrants will be notified as soon as possible and to inform us in writing. The cancellation fee will then be calculated processing of this order, for which I hereby declare to agree that my
2. If you have to cancel entirely we must charge the following process- will receive a full refund of fees paid. CONCEPT HEIDELBERG will not according to the point of time at which we receive your message. In personal data is stored and processed. Concept Heidelberg will only
ing fees: Cancellation be responsible for discount airfare penalties or other costs incurred case you do not appear at the event without having informed us, you send me information in relation with this order or similar ones. My
- until 2 weeks prior to the conference 10 %, due to a cancellation. will have to pay the full registration fee, even if you have not made personal data will not be disclosed to third parties (see also the privacy
@ e-mail:
- until 1 weeks prior to the conference 50 % Terms of payment: Payable without deductions within 10 days after the payment yet. Only after we have received your payment, you are policy at http://www.gmp-compliance.org/eca_privacy.html).
- within 1 week prior to the conference 100 %. receipt of invoice. entitled to participate in the conference (receipt of payment will not I note that I can ask for the modification, correction or deletion of my
be confirmed)! (As of January 2012) data at any time via the contact form on this website.
German law shall apply. Court of jurisdiction is Heidelberg.
Fax
Fax
Fax
10557 Berlin
Data Integrity:
Data Integrity:
Data Integrity:
Amager Boulevard 70
Amager Boulevard 70
+45 33 96 55 00
+45 33 96 55 00
Phone +45 33 96 50 00
Phone +45 33 96 50 00
Katharina-Paulus-Straße 5
Date and Venue April 2018