Risk Management Archives - Regulatory Compliance Associates

Waterfall Methodology

Posted on by Brandon Miller

Click now to watch Regulatory Compliance Associates^® Dr. Stephen Coulter explain how design controls and risk management play an intricate role in the Waterfall methodology:

The Waterfall methodology incorporates the usage of FDA design controls into the medical device design process. It serves as the primary connection between quality system requirements (QSR) and current good manufacturing practices (CGMP).

Waterfall Method

Conceptually, the FDA Waterfall model is designed to provide engineers with the flexibility to mitigate product risk, meet regulatory compliance and satisfy customer needs. It is a sequential process based on the quality assurance and medical device engineering principles listed in 21 CFR 820. The methodology itself is conceptualized in the image below from the Medical Device Bureau of Health Canada.

Waterfall Development

To increase risk mitigation during the Waterfall methodology, both risk management & design controls are considered. They often become integrated processes during Waterfall product development. Many unique tools that medical device engineers use to define requirements & meet user needs are shared across these processes, even though each is based on a separate standard.

While design controls for FDA approval are referred to in 21 CFR 820, medical device risk management is internationally associated with ISO 14971. Three critical elements of risk mitigation strategies clearly focus on avoiding risk during product development:

Evaluating an associated risk
Controlling an evaluated risk
Monitoring risk control effectiveness overall

Input Requirements

The success of the Waterfall development method depends on early research & assessments conducted about input requirements that include strategic risk. Further, spending time documenting the inputs of user interface, user stories and product epics can help increase positive outcomes and reduce requirement risk overall. Finally, any inconsistencies during the waterfall methodology between the proposed design & input requirements can be corrected across stages. This aligns with one of the primary motivations behind FDA originally developing 21 CFR 820 (e.g. helping medical device manufacturers find design deficiencies earlier in the process).

Risk Management

By starting the Waterfall process with this end state in mind, design inputs are more likely to pass failure testing & become a manufacturing output. This risk management strategy during a Waterfall project can begin with identifying the publicly known risks of competitive products. Second, the team is challenged to investigate if similar hazards could be associated with your medical device. When working with a Regulatory Compliance Associates risk management consultant, our clients are reassured that Waterfall development should detail how hazards can impact user needs & potential customers.

For example, design inputs should consider current regulations and global standards early in the waterfall process. This helps incorporate a risk management perspective even before verification and validation testing begins. Intended uses should consider predicate devices and if any causes for recalls are related to design, materials, or software.

Waterfall Approach

So, does this mean risk management & design controls are connected in the waterfall approach? And if they are, how important is one over the other when leading to marketing approval or regulatory compliance? This process is often measured against a combination of factors, including:

Regulations & standards for clinical approval
Risk class of medical device being manufactured
Regulatory body reviewing the marketing submission

Enterprise risk management would consider all three of these factors individually and in combination when considering how to eliminate systemic risk. The Waterfall project management team can also use various tools and techniques while developing the risk management plan. These risk identification tools include conducting a risk analysis, performing an FMEA, and charting risk tolerance.

Risk Analysis

Existing regulations & standards offer various types of risk tools that can be incorporated into design controls. This can include identifying risk levels and creating severity charts during the user needs & design inputs stages. Additionally, each new product will have different hazards and risk tolerance levels associated with the target patient. Being able to analyze the problem, control the problem, and mitigate the risk is essential to define in your risk analysis. Challenge yourself to reduce and identify hazards by analyzing the known data as much as possible.

FMEA

Failure Mode and Effects Analysis (FMEA) is a controlled technique to detect & concentrate on budding trouble. Each failure is commonly assigned a rating based on the negative effect it may cause. The Waterfall process would then take each rating and project how the marketplace, healthcare systems, or patients can be impacted. FMEAs are one of many risk mitigation tools that can help your team identify the hazards of your severity chart. Each charted hazard is established based on the severe nature of the hazard to the user and project requirements for design control.

Risk Tolerance

Further, after the severity is defined, all known or projected hazards can be developed into a risk tolerance chart. The risk tolerance chart can then be shared cross-functionally across the team to help everyone understand which design steps can increase user risk. One of the benefits of a risk tolerance chart is being able to show data visualization. The design team should consider how design controls and user needs can reduce the hazard’s impact. Finally, a waterfall chart could also project the negative consequences of adverse events and what the estimated cumulative impact might be during a product crisis scenario.

Risk Management Summary

Finally, once your team has evaluated the risks and decided on precautions, a risk management summary is developed. It may include involves multiple failure mode analysis types (e.g. product, process, etc.) and risk ratings. These initial ratings are typically based on the types of failures and the severity of the failure itself. Ranges can also be given to determine the risk management strategy and what is the acceptable level of product risk (e.g. high, medium, low).

About RCA’s Medical Device Consulting Services

The regulatory process surrounding the medical device industry involves strict adherence to pre/post-market compliance throughout a device’s life cycle. Even a single compliance issue you have can turn into a significant effect on your business. Regulatory Compliance Associates^® medical device consultants can help guide you through any stage of this strategic process, with capabilities during product development through the regulatory clearance/approval of your product.

Our team of over 500 medical device consultant Experts — including former FDA officials and other leaders in the field of medical device regulation — will work with your company to create a quality assurance and regulatory compliance approach tailored to your products and regulatory needs. Regulatory Compliance Associates^® works with both international Fortune 100 companies and small local start-ups, as well as law firms requesting remediation for warning letters, 483s, import bans, or consent decrees. Very few medical device consulting companies have the same expertise in a variety of medical fields.

Cybersecurity

For medical device manufacturers, technology can be a double-edged sword. The innovative technologies that elevate the quality of life for patients can also be used to potentially undermine the organization using the device. The consequences can affect the device itself if Regulatory Compliance Associates^® medtech consultants do not implement good IoT cybersecurity and FDA cybersecurity protocols.

At Regulatory Compliance Associates^®, we offer a wide variety of services for medical device security to help ensure that your product is protected from cyber-attacks. With a well-planned waterfall methodology design, along with full visibility of product development and the supply chain, Regulatory Compliance Associates^® medical device consultant Experts can help strengthen your device’s cybersecurity posture throughout. We partner with medical device companies for the entire life cycle, including from the development of your product to the regulatory submission services involved with medical technology consulting.

Regulatory Affairs

Regulatory affairs is Regulatory Compliance Associates^® backbone, and we handle more submissions in a month than many manufacturers do in a lifetime. Our medical device regulatory consulting Experts have experience working with the FDA, global regulatory bodies and / or agencies, and notified bodies worldwide. Therefore, you can count on us for in-depth and up-to-date insights which increase speed-to-market.

As a trusted regulatory affairs consultant, our FDA veterans and industry experts represent Regulatory Compliance Associates^® as one of the top medical device consulting firms. We’re here to help you navigate the difficulties associated with new product submissions. Regulatory Compliance Associates^® medical device consulting company has expertise in both the approval process and post-approval support.

New Product Approval
Post-Approval Support
Outsourced Staffing
EU MDR

Compliance Assurance

Increasingly, life science companies are feeling the pressure of greater scrutiny by regulators, and responding by developing sustainable compliance strategies. Whether it’s preparing for an audit, developing a response to an FDA finding, or remediation to an adverse event, Regulatory Compliance Associates^® can help.

Our network of over 500 medical device consultant & FDA, MHRA & EMA veterans are industry professionals offers a unique blend of expertise. This allows Regulatory Compliance Associates^® to handle both simple and complex regulatory compliance challenges within medical device consulting companies.

Gap Assessments
Internal Audits
Employee Training
Notified Body Response

Quality Assurance

Regulatory Compliance Associates^® Quality Assurance consulting includes quality system assessments, strategy, implementations, and identification of quality metrics to ensure continuous improvement, aligning with your business needs and goals. Each Regulatory Compliance Associates^® medical device consultant is a quality expert with experience spanning major corporations and start-ups. We know firsthand how to achieve, maintain, and improve quality, and we excel in transferring this knowledge to your organization.

In the medical devices field, quality assurance (QA) is more than merely ensuring the quality of a finished product. You need the tools to monitor and regulate every process from the design of a new product to continued quality compliance as the device is sent to market. At Regulatory Compliance Associates^®, we offer you the medical device consultant assistance you need to monitor these processes and ensure quality compliance every step of the way.

With more than 20 years experience working with medical device consulting companies, Regulatory Compliance Associates^® trusted medical device quality assurance consultant team is fully equipped to handle your unique QA needs.

ISO13485
21 CFR 210
21 CFR 211
Outsourced Staffing
MDSAP
Facility Validation
Equipment Validation

Remediation Support

Regulatory Compliance Associates^® is widely recognized within medical device consulting companies & the life science industry for remediation support. Regulatory Compliance Associates^® ability to help companies successfully resolve complex regulatory challenges have a proven track record of success. Our medical device consulting services include significant experience with the development of responses to 483 Observations, Warning Letters, Untitled Letters and Consent Decrees.

Our value goes beyond the initial response by helping companies successfully execute their action plans, develop an improved compliance culture tailored to the needs of their business, and ultimately move beyond the regulatory action to emerge as a stronger business. We negotiate difficult demands of remediation with insight and the clear advantage of our medical device consultant expertise and experience that makes partnering with Regulatory Compliance Associates^® a competitive differentiator in the remediation space.

Quality System
Technical File
Design History File
Data Integrity
cGMP

Strategic Consulting

Whether it’s a strategy, a technical plan, or a project, Regulatory Compliance Associates^®medical device consultancy can help ensure a successful project. Regulatory Compliance Associates^® medical device strategy consulting can deliver your project on time, on budget, and you’re never embroiled in a costly mistake.

Our medical device consultant Experts are industry Experts who are here to provide the unique insight you need before an M&A deal, through a staffing crisis and in every area of your product’s development and life cycle. As the trusted medical device manufacturing consultants of thousands of companies around the world, we have the knowledge and expertise needed to deliver exceptional results to your business — no matter your size or unique needs.

Manufacturing Optimization
Product Lifecycle Management
Mergers & Acquisitions (M&A)
Due Diligence
Device Vigilance
Product Complaints
Medical Information

About RCA^®

medical device consultants Regulatory Compliance Associates (RCA) provides medical device consulting to the following industries for the resolution of life science challenges:

We understand the complexities of running a life science business and possess areas of expertise that include every facet of R&D, operations, regulatory affairs, quality, and manufacturing. We are used to working on the front lines and thriving in the scrutiny of FDA, Health Canada, MHRA, and globally regulated companies.

As your partners, we can negotiate the potential minefield of regulatory compliance and regulatory due diligence with insight, hindsight, and the clear advantage of our unique expertise and experience.

Founded in 2000
Headquartered in Wisconsin (USA)
Expertise backed by over 500 industry subject matter experts
Acquired by Sotera Health in 2021

About Sotera Health^®

The name Sotera Health was inspired by Soteria, the Greek goddess of safety, and reflects the Company’s unwavering commitment to its mission, Safeguarding Global Health^®.

Sotera Health Company, along with its three best-in-class businesses – Sterigenics^®, Nordion^® and Nelson Labs^®, is a leading global provider of mission-critical end-to-end sterilization solutions and lab testing and advisory services for the healthcare industry. With a combined tenure across our businesses of nearly 200 years and our industry-recognized scientific and technological expertise, we help to ensure the safety of over 190 million patients and healthcare practitioners around the world every year.

We are a trusted partner to more than 5,800 customers in over 50 countries, including 40 of the top 50 medical device companies and 8 of the top 10 pharmaceutical companies.

To begin the Regulatory Compliance Associates^® scoping process today, please enter your information in the blue form below and click the submit button at the bottom of the webpage.

Product Development

Posted on by Brandon Miller

Click to watch Regulatory Compliance Associates medical device consultant, Dr. Stephen Coulter, discuss the common tools & processes used during product development. Early stages of new product development include analyzing user needs & translating design benefits into long-term patient efficacy.

Developing an original product idea is difficult but many common tools & processes are consistently used. The early stages of product development include analyzing user needs and how those translate into design inputs.

Product Development Strategy

Ideation and product development life cycle research can help you identify user needs. Additionally, increasing the quality of an existing product is often a successful new product development strategy. Your solution doesn’t have to be a radically new idea.

Does it have a substitute product that can take market share? Or, can you combine the features of multiple products during the product design process to make a combination product that patients prefer more? Could a product design consultant help answer these questions & provide knowledge transfer?

Product Development Cycle

Start by asking your cross-functional team an initial question: “What do we need to change to achieve success during the product development cycle?”. Product development strategy includes modifying existing systems & processes to accelerate efficiency. Refine your model or process based on the unique types of product solutions in your pipeline.

Product Research

Being able to understand & explain why your solution addresses a user needs statement is inherent to launch sales success. Interactive activities can be useful for improving creative conversation during market development strategy sessions. Further, voice of the customer (VOC) research consistently helps target the patient population in mind.

Finally, using VOC to identify early adopter audiences & the audience’s most important needs can increase early interest in your solution. Begin the sales process by determining core messaging ahead of the launch ramp-up based on device claims & if the regulatory submission is approved.

Market Development Strategy

User needs are the foundation of any successful market development strategy. Yet, being able to commercialize a new solution based on user needs using a team experiencing process problems is never an easy task. It requires the Engineering Team & Operations Team at the listening table earlier in the process than later.

Product Design and Development

A critical to quality objective early in the new product development process is removing everything but the essentials. Research your users needs to create design inputs for a product that patients both need & generates revenue.

Product Planning Process

After a business case is determined in the waterfall method, the product planning process begins cross functionally to validate product ideas via new product development research. What user needs will accelerate a successful product launch the fastest?

Innovative product design means addressing honest opinions from your target audience to validate your medical device solves a problem. The product development management team must be convinced the product can win in the commercial marketplace sooner rather than later.

Software Product Design

Success during the launch of a software as a medical device is often found at the heart of the product development plan. Any new product design must incorporate value added for the audience in one way, shape or form. This can include lean product design as some of the most effective software in the industry is not complicated.

Software as a Medical Device

Consider the regulatory differences between a tangible product and a technology product very carefully. For example, Software as a Medical Device (SaMD) has changed the marketplace by increasing both clinical research success & primary care delivery. Include process improvement sessions during internal meetings where a collective group deciphers what the user need statements mean to their team.

Agile Product Development

The vision for development begins with a minimum viable product, or MVP, during early software conceptualization & development; what is the business case of commercialization? How do we learn faster while making real time efficiency changes?

Digital Product Development

Product development teams must answer several questions before undertaking product design. Further, one focal ask is are successful processes already in place for medical product development.

Do you have a RACI chart to show who is responsible, accountable, considered, and informed? Finally, a clear cross-functional understanding of timelines & milestones can help guide expectations during MVP product development, which can be stressful based on the speed of common work.

MVP Agile

MVP (Minimum Viable Product) a widely accepted concept in software development in digital product development. However, our medical product design discussion will take a different direction – what is the regulatory affairs process?

A project management software development team should deliver a safe, efficacious solution with the objective of delivering patient value. Define your value through a regulatory strategy based on device claims, clinical evidence, and how both help the patient population.

Regulatory Compliance

Software as a medical device involves regulatory compliance based on multiple, widely accepted global standards.

This includes:
- ISO 13485
- IEC 62304
- IEC 62366
- ISO 14791

The product development engineering team is responsible for the software process. Any prototype development assistance should begin with a regulatory compliance perspective of claims and predicate devices.

Prototype predicate concepts begin with identifying the current risk class & why use cases help validate your proposed risk class during regulatory submission. Finally, consider younger product developers who may have never been through regulatory approval in their career. FDA readiness training can be a powerful tool that increases marketing approval & how to carefully identify and isolate risk hazards.

Regulatory Pathway

Planning the build for a product requires a regulatory pathway that includes risk management considerations based on the risk class. Create as much detail as possible during this prototyping and design inputs phase of NPD.

Product development companies, like Regulatory Compliance Associates, can help identify the correct predicate device based on a risk gap analysis. Diagrams should include material ingredients that need to be sourced to create the product. This can help you determine the risk category of the product (e.g. patient daily use, HCP specialty use, etc.) and corresponding patient hazards.

About Regulatory Compliance Associates

Regulatory Compliance Associates (RCA) provides life science consultants & consulting services to the following industries for resolution of compliance and regulatory challenges:

We understand the complexities of running a life science business and possess areas of expertise that include every facet of R&D, operations, regulatory affairs, quality, and manufacturing. Our life science consultants are used to working on the front lines and thriving in the scrutiny of FDA, Health Canada, MHRA and globally-regulated companies.

Founded in 2000
Expertise backed by over 500 industry subject matter experts
Acquired by Sotera Health in 2021

About Sotera Health

The name Sotera Health was inspired by Soteria, the Greek goddess of safety, and reflects the Company’s unwavering commitment to its mission, Safeguarding Global Health^®.

We are a trusted partner to more than 5,800 customers in over 50 countries, including 40 of the top 50 medical device companies and 8 of the top 10 pharmaceutical companies.

Regulatory Compliance Associates Medical Device Consulting Services

The regulatory process surrounding the medical device industry involves a strict adherence to pre/post market compliance throughout a device’s life-cycle. Even a single compliance issue you have can turn into a significant effect on your business. RCA^®‘s medical device consultants can help guide you through any stage of this strategic process, with capabilities during product development through the regulatory clearance/approval of your product.

Our team of over 500 life science consultants — including former FDA officials and other leaders in the field of medical device regulation — will work with your company to create a quality assurance and regulatory compliance approach tailored to your products and regulatory needs. RCA works with both international Fortune 100 companies and small local start-ups, as well as law firms requesting remediation for warning letters, 483’s, import bans or consent decrees. We offer expertise in a variety of medical fields, such

Cybersecurity

For medical device manufacturers, technology can be a double-edged sword. The innovative technologies that elevate the quality of life for patients can also be used to potentially undermine the organization using the device. The consequences can affect the device itself if we do not implement good IoT cybersecurity and FDA cybersecurity protocols. At Regulatory Compliance Associates^®, we offer a wide variety of services for medical devices security to help ensure that your product is protected from cyber-attacks.

With a well-planned design, along with full visibility of product development and the supply chain, RCA can help strengthen your device’s cybersecurity posture throughout. We partner with medical device companies for the entire life cycle, including from the development of your product to the regulatory submission to your notified body.

Regulatory Affairs

Regulatory affairs is Regulatory Compliance Associates^® ‘s backbone, and we handle more submissions in a month than many manufacturers do in a lifetime. We have experience working with the FDA, global regulatory bodies and / or agencies, and notified bodies worldwide. Therefore, you can count on us for in-depth and up-to-date insights which increase speed-to-market.

As a trusted regulatory affairs consultant, our FDA veterans and industry experts are here to help you navigate the difficulties associated with new product submissions. They have expertise in both the approval process and post-approval support.

New Product Approval
Post-Approval Support
Outsourced Staffing
EU MDR

Compliance Assurance

Our network of over 500 FDA, Health Canada & MHRA veterans and industry professionals offers a unique blend of expertise that allows us to handle both simple and complex regulatory compliance challenges within the medical device industry.

Gap Assessments
Internal Audits
Employee Training
Notified Body Response

Quality Assurance

Regulatory Compliance Associates^®‘s Quality Assurance services include quality system assessments, strategy, implementations, and identification of quality metrics to ensure continuous improvement, aligning with your business needs and goals. Our life science consultants are quality experts with experience spanning major corporations and start-ups. We know firsthand how to achieve, maintain, and improve quality, and we excel in transferring this knowledge to your organization.

In the medical devices field, quality assurance (QA) is more than merely ensuring the quality of a finished product. You need the tools to monitor and regulate every process from the design of a new product to continued quality compliance as the device is sent to market. At RCA^®, we offer you the assistance you need to monitor these processes and ensure quality compliance every step of the way.

With more than 20 years of experience as a trusted medical device quality assurance consultant, our team of over 500 industry Experts are fully equipped to handle your unique QA needs.

ISO13485
21 CFR 210
21 CFR 211
Outsourced Staffing
MDSAP
Facility Validation
Equipment Validation

Remediation Support

Regulatory Compliance Associates^® is widely recognized within the life science industry and global regulatory agencies for its ability to help companies successfully resolve complex regulatory challenges, including remediation. With a proven track record of success, we have significant experience with the development of responses to 483 Observations, Warning Letters, Untitled Letters and Consent Decrees.

Our value goes beyond the initial response by helping companies successfully execute their action plans, develop an improved compliance culture tailored to the needs of their business, and ultimately move beyond the regulatory action to emerge as a stronger business. We negotiate difficult demands of remediation with insight and the clear advantage of our unique expertise and experience that makes partnering with RCA^® Inc. a competitive differentiator in the remediation space.

Quality System
Technical File
Design History File
Data Integrity
cGMP

Strategic Consulting

Whether it’s a strategy, a technical plan, or project, Regulatory Compliance Associates^® life science consultants can help ensure a successful mix of people and product so your project is on time, on budget, and you’re never embroiled in a costly mistake.

Our 500 industry Experts are here to provide the unique insight you need before an M&A deal, through a staffing crisis and in every area of your product’s development and life cycle. As the trusted medical device manufacturing consultants of thousands of companies around the world, we have the knowledge and expertise needed to deliver exceptional results to your business — no matter your size or unique needs.

Manufacturing Optimization
Product Lifecycle Management
Mergers & Acquisitions (M&A)
Due Diligence
Device Vigilance
Product Complaints
Medical Information

Regulatory Compliance Associates Pharmaceutical Consulting Services

Regulatory Compliance Associates (RCA)^® has helped thousands of pharmaceutical companies meet regulatory, compliance, quality assurance, and remediation challenges. With more than 20 years of experience with FDA, Health Canada, EU and global regulatory agencies worldwide, RCA offers leading pharmaceutical consultants that can help you navigate through the challenges associated with evolving industry regulations.

Our team of over 500 seasoned FDA, Health Canada and EU compliance consultants and regulatory affairs experts can understand the complexities surrounding the pharmaceutical industry and the unique inner workings of the regulatory process.

Client Solutions

Whether you’re in the product planning, development or pharmaceutical lifecycle management stage or need a remediation strategy for a compliance crisis, RCA^®will guide you through every step of the regulatory process and create a customized approach depending on your product and your pharma company’s individual needs. Our clients include:

Companies new to FDA, Health Canada or EU regulations and the pharmaceutical industry
Start-up organizations with novel submissions to 510(k) submissions from multi-national corporations
Investment firms seeking private equity due diligence for pre-acquisition and post-deal research
Law firms seeking expertise in the remediation of warning letters, consent decrees, 483’s or import bans

Regulatory Affairs

Regulatory affairs is Regulatory Compliance Associates^®’s backbone and we fully understand the complexities of the pharmaceutical and biopharmaceutical industries. Our expertise spans all facets and levels of Regulatory Affairs, from Regulatory Support for New Products to Life Cycle Management, to other services like Outsourced Regulatory Affairs, Submissions, Training, and more.

As your partner, we can negotiate the potential assessment minefield of pharmaceuticals with insight, hindsight, and the clear advantage of our breadth and depth of knowledge and experience. We offer the following four regulatory affairs services for pharmaceutical companies.

New Product Support
Product Lifecycle
Other Regulatory Services

Compliance Assurance

The regulations process surrounding pharmaceutical companies can be tricky for even the most experienced industry veteran to understand, and just one misstep could mean significant and lasting consequences for your business. At RCA^®, we offer the experience and resources necessary to guide you in quality compliance.

Assessments
Audits
Regulatory Agency Response
Preparation and Training
Inspection Readiness

Quality Assurance

Regulatory Compliance Associates^® Quality Assurance services include assessments, strategy, implementations, staff augmentations, and identification of quality metrics to ensure continuous improvement, aligning with your business needs and goals. Our consultants are quality life science consultants with experience spanning major corporations and start-ups. We know firsthand how to achieve, maintain, and improve quality, and we excel in transferring this knowledge to your organization.

21 CFR Part 11
Data Integrity
Manufacturing Support
Facility Support

Remediation

Regulatory Compliance Associates^® has significant experience and a proven approach to managing FDA Warning Letters, Consent Decrees, Remediation and other serious regulatory situations. We know how to partner with executive, legal, and communication teams, and will assist management with a response that will be accepted by the regulatory agency and be realistic to execute.

We can develop a comprehensive proof book of documented objective evidence demonstrating the corrective actions taken to remediate non-compliant issues. In addition, RCA^® can help prepare a comprehensive strategy to assist in your remediation efforts, drive continuous improvement, and maintain compliance with the regulations.

Regulatory Action
Warning Letter
483 Observation
Oversight Services

To begin the Regulatory Compliance Associates scoping process today, please enter your information in the blue form below and click the submit button at the bottom of the webpage.

FDA ISO13485 Harmonization

Posted on by Brandon Miller

Click now to hear from Jordan Elder, RCA’s Director of Regulatory Affairs, regarding the latest info on Quality System Regulation (QSR) regulations and FDA harmonization efforts:

When developing a quality management system (QMS), it is important to understand any pitfalls that could arise as well as understand what each notified body looks for in a compliant quality system. Recently, one of the US Food and Drug Administration’s (FDA’s) top medical device regulators said harmonizing the agency’s current Quality System Regulation with the International Organization for Standardization (ISO) 13485:2016 is a “high priority” setting a target date of December 2023 to finalize the rule.

Do you need ISO13485 compliance support? Talk to our Experts.

QMS Harmonization

Currently, the US Food and Drug Administration (FDA) does not enforce ISO’s 13458:2016 standards set in place for Quality Management Systems, but uses its own Quality System Regulation (QSR) guidelines that do include parts of the 13458 standards. But this is set to change for the better. The FDA has recently proposed plans to align its quality system requirements with ISO 13485:2016, creating a new regulation dubbed the Quality Management System Regulation (QMRS). This shift came four years after the agency first proposed the regulatory alignment.

Quality Management System

Manufacturers who already conform to the ISO standard should not see much change and this move should help create efficiencies for them in the long run. The FDA proposed the alinement by incorporating the 2016 edition of the international standard specific for medical device quality management systems ISO13485. Through this rulemaking, the FDA is also proposing additional requirements that help connect and align ISO13485 with existing requirements in the FD&C Act and its implementing regulations. This will include making conforming edits to 21 CFR Part 4 to clarify the device CGMP requirements for combination products as well.

Risk Management

The most noticeable difference between the current quality systems regulation and ISO13485 is that the risk management requirements are integrated throughout the aspects of the quality management system in ISO13485. This differs from 21 CFR 820, in that the only risk-specific requirement in the QS regulation is listed in §820.30(g), as it relates to risk analysis as a part of design validation.

These revisions are intended to supplant the existing ISO13485 requirements with the specifications of an international consensus standard for medical device manufacturers. The revisions are expected to reduce device manufacturers’ burdens, specifically aspects of compliance and recordkeeping through the harmonization of domestic and international requirements.

ISO Standard

With a membership of 168 national standards bodies, ISO is an independent, non-governmental international organization that brings together experts from around the world to share knowledge and develop voluntary, consensus-based, market-relevant International Standards that support innovation and provide solutions to global challenges.

Although the standers set by ISO are recognized by organizations around the world, ISO compliance itself isn’t a legal requirement, the standards naturally align with different regulations across the industries. ISO compliance means using ISO standards as guidelines for aligning your policies, processes, and operating procedures to adhere to the standard.

ISO 13485:2016

ISO 13485:2016 specifies requirements for medical devices quality management systems where an organization needs to demonstrate its ability to consistently meet customer and applicable regulatory requirements. This includes one or more stages of the product life cycle, including:

Design controls and development
Production and manufacturing
Storage and distribution
Installation
Servicing a medical device
Technical support

ISO13485:2016 can also be used by suppliers or external parties that provide products, including quality management system-related services to such organizations.

Are you ready for this Change? RCA can Help!

Regulatory Compliance Associates’^® Quality Assurance services include quality system assessments, strategy, implementations, and identification of quality metrics to ensure continuous improvement, aligning with your business needs and goals. Our consultants are Quality consulting Experts with experience spanning major corporations and start-ups. We know firsthand how to achieve, maintain, and improve quality, and we excel in transferring this knowledge to your organization.

In the medical devices field, quality assurance (QA) is more than merely ensuring the quality of a finished product. You need the tools to monitor and regulate every process from the design of a new product to continued quality compliance as the device is sent to market. At RCA, we offer you the assistance you need to monitor these processes and ensure quality compliance every step of the way.

With more than 15 years of experience as a trusted medical device quality assurance consultant, our team of over 500 industry experts and FDA veterans is fully equipped to handle your unique QA needs.

ISO13485
21 CFR 210
21 CFR 211
Outsourced Staffing
MDSAP
Facility Validation
Equipment Validation

About RCA’s Medical Device Consulting Services

The regulatory process surrounding the medical device industry involves strict adherence to pre/post-market compliance throughout a device’s life cycle. Even a single compliance issue you have can turn into a significant effect on your business. RCA’s medical device consultants can help guide you through any stage of this strategic process, with capabilities during product development through the regulatory clearance/approval of your product.

Our team of over 500 industry experts — including former FDA officials and other leaders in the field of medical device regulation — will work with your company to create a quality assurance and regulatory compliance approach tailored to your products and regulatory needs.

RCA works with both international Fortune 100 companies and small local start-ups, as well as law firms requesting remediation for warning letters, 483s, import bans, or consent decrees. We offer expertise in a variety of medical fields, such

Cybersecurity

For medical device manufacturers, technology can be a double-edged sword. The innovative technologies that elevate the quality of life for patients can also be used to potentially undermine the organization using the device. The consequences can affect the device itself if we do not implement good IoT cybersecurity and FDA cybersecurity protocols. At Regulatory Compliance Associates Inc.®, we offer a wide variety of services for medical device security to help ensure that your product is protected from cyber-attacks.

Regulatory Affairs

Regulatory affairs is Regulatory Compliance Associates^® Inc.’s backbone, and we handle more submissions in a month than many manufacturers do in a lifetime. We have experience working with the FDA, global regulatory bodies and/or agencies, and notified bodies worldwide. Therefore, you can count on us for in-depth and up-to-date insights which increase speed-to-market.

New Product Approval
Post-Approval Support
Outsourced Staffing
EU MDR

Compliance Assurance

Increasingly, life science companies are feeling the pressure of greater scrutiny by regulators, and responding by developing sustainable compliance strategies. Whether it’s preparing for an audit, developing a response to an FDA finding, or remediation for an adverse event, Regulatory Compliance Associates can help.

Our network of over 500 FDA veterans and industry professionals offers a unique blend of expertise that allows us to handle both simple and complex regulatory compliance challenges within the medical device industry.

Gap Assessments
Internal Audits
Employee Training
Notified Body Response

Remediation Support

Regulatory Compliance Associates is widely recognized within the life science industry and global regulatory agencies for its ability to help companies successfully resolve complex regulatory challenges, including remediation. With a proven track record of success, we have significant experience with the development of responses to 483 Observations, Warning Letters, Untitled Letters, and Consent Decrees.

Our value goes beyond the initial response by helping companies successfully execute their action plans, develop an improved compliance culture tailored to the needs of their business, and ultimately move beyond the regulatory action to emerge as a stronger business. We negotiate difficult demands of remediation with insight and the clear advantage of our unique expertise and experience that makes partnering with Regulatory Compliance Associates a competitive differentiator in the remediation space.

Quality System
Technical File
Design History File
Data Integrity
cGMP

Strategic Consulting

Whether it’s a strategy, a technical plan, or project, Regulatory Compliance Associates worldwide experience can help ensure a successful mix of people and products so your project is on time, on budget, and you’re never embroiled in a costly mistake.

Our 500 industry and FDA experts are here to provide the unique insight you need before an M&A deal, through a staffing crisis, and in every area of your product’s development and life cycle. As the trusted medical device manufacturing consultants of thousands of companies around the world, we have the knowledge and expertise needed to deliver exceptional results to your business — no matter your size or unique needs.

Manufacturing Optimization
Product Lifecycle Management
Mergers & Acquisitions (M&A)
Due Diligence
Device Vigilance
Product Complaints
Medical Information

About RCA

medical device consultants Regulatory Compliance Associates^® (RCA) provides healthcare consulting services to the following industries for the resolution of compliance and regulatory challenges:

Founded in 2000
Headquartered in Wisconsin (USA)
Expertise backed by over 500 industry subject matter experts
Acquired by Sotera Health in 2021

To begin the Regulatory Compliance Associates scoping process today, please enter your information in the blue form below and click the submit button at the bottom of the webpage.

Medical Device Cybersecurity Guidance

Posted on by Joby Semmler

The International Medical Device Regulation Forum (IMDRF) recently published updated cybersecurity guidance for the medical device industry. The medical device cybersecurity working groups at IMDRF have been busy lately, publishing multiple final documents about medical devices & software as medical device (SaMD).

Regulatory Compliance

IMDRF’s medical device guidance provides steering assumptions for both regulatory compliance & medical device cybersecurity, which are appropriate for sponsors developing medical devices. Further, a primary objective of the guidance is simultaneously increasing patient safety & reducing external threats for providers and HCPs.

Global Harmonization

The guidance begins with harmonization concepts that could affect multiple departments inside a medical device manufacturer. Additionally, key areas for harmonization programs highlighted by the cybersecurity guidance include:

Product design
Risk management activities
Device labelling
Regulatory submission
Information sharing
Post-market activities

Product Life Cycle (PLC)

IMDRF’s cybersecurity guidance continues on with a deeper evaluation of risks associated across the product life cycle. It is recommended for potential vulnerabilities to be considered for any product life cycle stage, especially considering legacy devices that may be vulnerable to strategic risk.

Product Design

Product design considerations include the initial phases of medical device development and continues until the end of support (EOS) once a product is discontinued. The four product design stages the cybersecurity guidance refers to when it comes to total product life cycle:

Development Stage
Support Stage
Limited Stage
End of Support

Development Stage (Stage 1)

The Development Stage occurs during the pre-commercialization phase before a medical device is approved by a regulatory body. This is when medical device manufacturers begin to incorporate security into the product concepts being designed. Design controls are critical in this stage for medical device manufacturers to leverage when considering how to mitigate risks.

Finally, an important deliverable of the Development Stage is product-related security documentation. The documentation is designed to help unfamiliar users to understand how to securely operate the medical device.

Support Stage (Stage 2)

The Support stage is during the initial post-launch phase and may continue for many years. Medical devices in this stage are:

Currently used for providing patient care
Available for purchase on the open market
Contain major software, firmware, or programmable hardware components
Support for software, firmware or components is provided by the medical device manufacturer

Additionally, medical devices in the Support stage should receive full cybersecurity support. This support often includes software patches, software updates, hardware updates, and incremental support the manufacturer considers appropriate.

Limited Support Stage (Stage 3)

Medical device manufacturers continue to provide cybersecurity support during Stage 3. However, as product development transitions to a more current medical device design, different constraints are involved with the transition. Medical devices in Stage 3 often require additional network controls compared to medical devices in Stage 2:

Third-party components or software may be used more frequently than internally developed updates or patches
Cybersecurity best practices integration is often governed by the ease of following support practices outlined in the Stage 2
Medical device manufacturers must explain to users the existing limitations that are now recognized in the devices and services affected
Healthcare providers using the medical device should begin to take more of an active role in unmitigated features of security defense.

End of Support Stage (Stage 4)

Medical devices in Stage 4 are considered more vulnerable than any of the other stages. They may still be in use for providing patient care, but they have been publicly identified as no longer being supported by the medical device manufacturer. Each of these scenarios result in a medical device that cannot be consistently defended against modern cybersecurity dangers.

Critical facets healthcare information technology departments should look for include:

Medical devices that have been declared EOS by the medical device manufacturer
Medical devices that are not actively marketed or sold by the medical device manufacturer
Medical devices that contain software, firmware, or programmable hardware components no longer supported by software developers
Medical devices with known risks to device safety and effectiveness that are unmitigated

Risk Management

Further, the guidance calls for a risk management approach to product lifecycle management featuring:

Security risk analysis
Security risk evaluation
Security risk control
Security risk acceptability

The cybersecurity guidance expands on product design and how security is incorporated and maintained through the product life cycle. This can be accomplished through using risk control and a secure development framework.

Risk mitigation recommendations for medical device manufacturers include:

Security design and controls based on intended use of the medical device
Security risk assessments across the risk management process
Threat modelling to help determine operational risk

Security testing and communication for medical device manufacturers include:

Customer facing product security documentation & communication
Post-market monitoring of cybersecurity vulnerabilities
Identification of vulnerabilities in third party risk management
Vulnerability risk identification based on the device security design, controls, and mitigations

Ensuring availability of security patches & mitigations based on device risk:

Coordinated and clear communication to all affected users
Description related to the vulnerability and its corresponding mitigations
Identification of other mitigation options when a security patch is unavailable

Data Integrity

One of the core principles the guidance stresses is cybersecurity information, data integrity and the importance of information sharing. IMDRF encourages medical device industry stakeholders to implement a proactive pre- and post-market approach to cybersecurity information sharing.

Moreover, timely information can help the industry recognize threats, evaluate associated risks, and react quickly as needed. An increase in industry transparency could directly benefit healthcare providers, medical device users and medical device companies.

Security Updates

An important section of the medical device cybersecurity guidance details stakeholder responsibilities related communications, risk management, and transfer of responsibility. Specifically, it is important that medical device manufacturer communications are comprehensive & identify types of documentation needed and when the medical device user may need it.

Product Security Documentation

Medical device manufacturers should ideally provide PLC documentation about security or support changes early in the Support stage. This helps HCP risk management during both the procurement & deployment of medical devices. Types of life cycle support for product security documentation includes:

Manufacturer disclosure statement for medical device security
Software Bill of Materials (SBOM)
Security test report summaries
Third-party security certifications
Customer security documentation

Product Life Cycle Documentation

Medical device companies should communicate the strategic life cycle milestones to their customers. Further, these interactions would include cybersecurity EOL and EOS dates if available. This helps to support HCPs during both the procurement & installation process.

Additionally, medical device manufacturers should provide this information as far in advance as possible. The goal is at least 2 years in advance to best support healthcare professionals with the following information:

Affected medical devices
Medical device operating system(s)
Version of medical device deployed
Medical device software components
Expected date of medical device service changes
Extent of medical device maintenance after a service change occurs
Additional design controls that help all involves parties

Vulnerability & Patching Information

If a vulnerability is uncovered, medical device companies should provide related vulnerability information. Further, the guidance specifically mentions the importance of both the appropriate mitigation or available software patch. Additionally, the guidance stresses an elevated priority be placed on high-risk vulnerabilities where timely communication is required. This communication is designed to help prevent both patient injury or device interruption.

Finally, the mitigation method and implementation instructions should be provided to the medical device operators. These security updates include both an over-air update or deployment of service personnel to help install the remedy.

Proactive Communications for Third-Party Components

Medical device software and other digital components within a medical device will reach EOL/EOS before the product itself does. In these cases, risk can increase based on the lack of support for these elements. To help compensate for these security risks, the cybersecurity guidance suggests medical device companies should:

Validate the list of third-party components used in medical devices
Track support status updates of third-party components used within their device
Assess the risks that exist when third-party components become unsupported
Communicate new risks and available risk mitigations to healthcare providers

About RCA’s Medical Device Consulting Services

The regulatory process surrounding the medical device industry involves a strict adherence to pre/post market compliance throughout a device’s life-cycle. Even a single compliance issue you have can turn into a significant effect on your business. Regulatory Compliance Associates^® medical device consultants can help guide you through any stage of this strategic process, with capabilities during product development through the regulatory clearance/approval of your product.

Our team of over 500 medical device consultant Experts — including former FDA officials and other leaders in the field of medical device regulation — will work with your company to create a quality assurance and regulatory compliance approach tailored to your products and regulatory needs. Regulatory Compliance Associates^® works with both international Fortune 100 companies and small local start-ups, as well as law firms requesting remediation for warning letters, 483’s, import bans or consent decrees. Very few medical device consulting companies have the same expertise in a variety of medical fields.

Cybersecurity

At Regulatory Compliance Associates^®, we offer a wide variety of services for medical devices security to help ensure that your product is protected from cyber-attacks. With a well-planned design, along with full visibility of product development and the supply chain, Regulatory Compliance Associates^® medical device consultant Experts can help strengthen your device’s cybersecurity posture throughout. We partner with medical device companies for the entire life cycle, including from the development of your product to the regulatory submission services involved with medical technology consulting.

Regulatory Affairs

New Product Approval
Post-Approval Support
Outsourced Staffing
EU MDR

Compliance Assurance

Gap Assessments
Internal Audits
Employee Training
Notified Body Response

Quality Assurance

ISO13485
21 CFR 210
21 CFR 211
Outsourced Staffing
MDSAP
Facility Validation
Equipment Validation

Remediation Support

Quality System
Technical File
Design History File
Data Integrity
cGMP

Strategic Consulting

Whether it’s a strategy, a technical plan, or project, Regulatory Compliance Associates^®medical device consultancy can help ensure a successful project. Regulatory Compliance Associates^® medical device strategy consulting can deliver your project on time, on budget, and you’re never embroiled in a costly mistake.

Our medical device consultant Experts are industry Experts are here to provide the unique insight you need before an M&A deal, through a staffing crisis and in every area of your product’s development and life cycle. As the trusted medical device manufacturing consultants of thousands of companies around the world, we have the knowledge and expertise needed to deliver exceptional results to your business — no matter your size or unique needs.

Manufacturing Optimization
Product Lifecycle Management
Mergers & Acquisitions (M&A)
Due Diligence
Device Vigilance
Product Complaints
Medical Information

About RCA

Regulatory Compliance Associates^® (RCA) provides medical device consulting to the following industries for resolution of life science challenges:

Founded in 2000
Headquartered in Wisconsin (USA)
Expertise backed by over 500 industry subject matter experts
Acquired by Sotera Health in 2021

About Sotera Health

The name Sotera Health was inspired by Soteria, the Greek goddess of safety, and reflects the Company’s unwavering commitment to its mission, Safeguarding Global Health^®.

We are a trusted partner to more than 5,800 customers in over 50 countries, including 40 of the top 50 medical device companies and 8 of the top 10 pharmaceutical companies.

To begin the Regulatory Compliance Associates^® scoping process today, please enter your information in the blue form below and click the submit button at the bottom of the webpage.

FDA Publishes Updated Biologics Guidance

Posted on by Joby Semmler

The US Food and Drug Administration (FDA) recently issued final guidance for Biologics industry executives to help define modifications to existing products and update submission procedures. The primary focus of the guidance is to help biologics industry employees responsible for reporting understand which type of risk category is appropriate for updated variations in chemistry, manufacturing, and controls (CMC).

The guidance is applicable to CMC products with an existing biologics license application (BLA) currently approved by the FDA. It’s a critical update since any Biologics company or regulatory partners must notify the FDA about every change to an approved BLA under the Code of Federal Regulations (21 CFR 601.12).

Need help adhering to the New Guidance? Contact Us Now →

FDA submission data

FDA Guidance

The final FDA guidance goes into detail about each post-approval change in the product, including production process, quality controls, equipment and facilities, responsible employees, and established labeling. Expanded submission data will potentially provide greater detail about the the risk profile related to the changes, and how revised changes impact the intended safety or efficacy of the product.

Assessing and implementing manufacturing changes is laid out in great detail in the FDA guidance. Comparability data will be used to show variations of the product pre- and post- changes. The comparability analysis is necessary to help gauge possible effects of the product changes. Data from the analysis will be represented through a variety of sources, including a combination of testing, validation studies, and non-clinical or clinical studies.

FDA submission procedure

More importantly, the guidance provides a greater amount of detail about the updated FDA submission procedure. A significant focus of the guidance acknowledges the opportunity for adverse effects and how to measure and minimize based on data about the revised formulation. The biologic submission must show reference information that considers the new identity, strength of the product, quality of the product, and purity or potency of the product.

The three unique types of Biologics reporting includes Prior Approval Supplement, Changes Being Effected in 30 Days/Changes Being Effected (CBE30/CBE) and an Annual Report:

Prior Approval Support (PAS)

This includes changes that have significant potential for an adverse effect on product quality. The PAS must be approved by the FDA before a Biologics company can distribute any updated BLA approved product to the market involving the changes.

Guidance Changes Being Effected in 30 Days/Changes Being Effected (CBE30/CBE)

This includes changes that have a moderate potential to have an adverse effect on product quality. The CBE30/CBE requires an applicant to report the change to the FDA in a supplement at least 30 days before distribution of the product to the market.

Annual Report (AR)

This includes changes that have a minimal potential to have an adverse effect on product quality.

FDA process validation

Assessing the impact of the change on product quality is critically important in the reporting submission. Reporting data should include prior knowledge and findings from product development activity. Documentation surrounding process validation activities and manufacturing expertise of the approved BLA product are also requested.

Quality risk management activities or pre-commercial studies that provide expanded awareness of the effects of the changes can also be very valuable for FDA decision makers. Finally, a cumulative impact assessment of multiple changes on the updated BLA product can help ensure post-market surveillance activities are aligned between the FDA and Biologics company.

Quality Management System

References to a robust quality culture appear throughout the guidance, including developing of robust manufacturing processes and process controls. Innovative process validation techniques and analytical testing are listed as critical drivers Biologics companies should practice to help mitigate risks associated with manufacturing changes.

Having an effective quality risk management system allows Biologics industry executives to make knowledgeable choices regarding manufacturing variations. The quality system data increases the confidence of product quality and process consistency for both executives and the FDA. Formal and informal risk assessments to support of post-approval manufacturing changes increases the accuracy of a more effective assessment of the change, which can increase the speed of the FDA’s decision.

About RCA’s Biologics & Biotech Consulting Services

Regulatory Compliance Associates^® can assist you in ensuring the quality of your biologics or biosimilar product during its entire lifecycle. From pre-market to post-market reviews, inspection, and compliance, our Biotech consulting experts can shepherd your biologics through design, labeling, promotion, production, and testing. Our Biologics consultants & consulting services include:

Regulatory Affairs

Regulatory affairs is Regulatory Compliance Associates^® backbone and we fully understand the complexities of the biologics industry. Our biotech consulting expertise spans all facets and levels of Regulatory Affairs, from early phase & bioanalytical sciences through late phase and post approval.

Preclinical & CMC Consulting
- FDA Meetings & Briefing Package Assistance
- Clinical Trial Applications
- Marketing Applications
- Medical Writing
Lifecycle Management
Submission Planning & Strategic Support
- eCTD Publishing & Submissions
Strategic Consulting & Intelligence
US Agent
Project Management Support
Clinical Development Support
- Clinical Research Organization (CRO) Sourcing

Analytical Development Support
- Bioassay Design & Validation
- Immunoassay Support
- Statistical Analysis & Specification Setting

Compliance Assurance

Increasingly, life science companies are feeling the pressure of greater scrutiny by regulators, and responding by developing sustainable compliance strategies. Whether it’s biologics consultants preparing for an audit, developing a response to an FDA finding, or remediation to an adverse event, Regulatory Compliance Associates^® biotech consulting global team can help.

Assessments
- Current Good Manufacturing Practice (cGMP)
- Corrective & Preventive Action (CAPA), Investigations & Deviations
- Facility & Maintenance
- Data Integrity
- Quality System Gap Assessment

Audits
- Supplier Audits
- CRO Audits
- cGMP Compliance Audits: Manufacturing, Pilot Plant, Laboratory
- cGLP Audits
- Good Clinical Practices

Preparation, Training & Inspection Readiness
- cGMP Fundamentals (Annual Training Required by Regulations)
- Quality System Regulation
- Risk Management
- Investigations, Deviations & CAPA & Root Cause Analysis
- Validation & Technology Transfer
- Purchasing Controls & Supplier Management
- Document Management & Change Control
- Audit Readiness
- Quality Culture & Management Responsibility
- Data Integrity & Good Documentation Practices (GDP) Centered on How the Data is Recorded, How to Correct an Error, and How to Document the Reason(s) for the Error

Quality Assurance

Regulatory Compliance Associates^® Quality consulting services include assessments, strategy, implementations, staff augmentations, and identification of quality metrics. Our biologics consultants goal is to ensure continuous improvement, aligning with your business needs and goals. Our biotech consulting subject matter experts have experience spanning major corporations and start-ups.

We know firsthand how to achieve, maintain, and improve quality, and we excel in transferring this knowledge to your organization.

Quality Management System Implementation
SOP Development
Document Control Systems
Change Control
Laboratory Operations & Control

Remediation Strategy & Response

Regulatory Compliance Associates^® is widely recognized within the life science industry and global regulatory agencies for its ability to help companies successfully resolve complex regulatory challenges, including remediation. With a proven track record of success, Regulatory Compliance Associates^® biologics consultants have significant experience with the development of responses to 483 Observations, Warning Letters, Untitled Letters and Consent Decrees.

Regulatory Action
- 483 Response & Remediation
- Warning Letter Response & Remediation
- Consent Decree Response & Remediation
- Oversight Services

Consulting
- Comprehensive Audits
- Remediation Plan Development & Implementation

Manufacturing Support
- Re-validation of Existing Equipment & Processes
- Remediation of System Deficiencies Related to, Manufacturing Process, Equipment, or Facility
- Facility Improvements (Aging Facilities)

Strategic Consulting

Whether it’s a corporate needs analysis, corporate growth / transformation strategy or due diligence / acquisition, Regulatory Compliance Associates^® worldwide biotech consulting experience can help ensure a successful mix of top-notch advice and people so your engagement is on time, on budget, and you’re never embroiled in a costly mistake.

Portfolio Management
Mergers & Acquisitions / Due Diligence
Staffing Support

About RCA

Regulatory Compliance Associates^® (RCA) provides biologics consulting & biotech consulting to the following industries for resolution of life science challenges:

Founded in 2000
Headquartered in Wisconsin (USA)
Expertise backed by over 500 industry subject matter experts
Acquired by Sotera Health in 2021

About Sotera Health

The name Sotera Health was inspired by Soteria, the Greek goddess of safety, and reflects the Company’s unwavering commitment to its mission, Safeguarding Global Health^®.

We are a trusted partner to more than 5,800 customers in over 50 countries, including 40 of the top 50 medical device companies and 8 of the top 10 pharmaceutical companies.

To begin the Regulatory Compliance Associates^® scoping process today, please enter your information in the blue form below and click the submit button at the bottom of the webpage.

How Quality Culture Is Changing Because of the Pandemic

Posted on by Brandon Miller

Among the emerging topics of interest to the life science industry, quality culture, quality metrics, and data integrity are in the spotlight due to changes from the COVID-19 pandemic. Regulatory authorities strive to stay on top of the latest challenges in quality assurance and compliance facing medical device and pharmaceutical firms.

Regulatory Compliance Associates® understands that data integrity is important for keeping and maintaining accurate data to protect your data’s trustworthiness. This ensures everything else built on that data is trustworthy as well. We’ll explore why quality culture and data integrity are important and what permanent changes have occurred in the wake of the pandemic.

Need help improving your Quality Culture? Contact Us Now →

How Quality Culture Is Linked to Data Integrity

It’s essential to understand the ways quality culture is linked to data integrity. Regulators have delineated a clear link between the veracity of data generated by a company and its culture. Future regulatory audits to determine an organization’s health may focus on obtaining information about the company’s quality culture and subsequent data. It’s vital to for companies to acknowledge this relationship so they can identify vulnerabilities, perform necessary risk assessments and remediate risks before an inspection.

An Increased Emphasis on the Importance of Data Integrity and Quality Culture

It’s easier to keep a vigilant eye on data when everyone works from the same locations. However, with more people working from home, maintaining quality culture practices to control data integrity is imperative and challenging. The Food and Drug Administration (FDA) is drawing parallels between compliance with data integrity regulations and an organization’s overall culture.

The FDA wants companies to maintain a quality culture that is integrated throughout the organization. The more developed and established an organization’s quality culture, the more reliable the data.

Ensuring data integrity compliance can benefit a company in the following ways:

Fewer supply chain interruptions
Less rework needed
Reduced financial risk
Increased compliance
Improved operational performance and productivity

Transitions to Electronic Systems

As a result of the pandemic, more companies are switching from paper-based to electronic systems. This migration to electronic data systems poses certain challenges to any organization.

Companies need to have the necessary resources and technical expertise to make sure the electronic systems maintain data integrity concepts. Organizations must be able to provide proof of their compliance supported by an audit trail of their work.

Auditing Process Changes Resulting from the COVID-19 Pandemic

The auditing process may change in many ways as a result of the pandemic:

Virtual audits are likely to become more common.
Companies will need to ensure systems are secure and files are organized.
Companies will have to maintain data integrity in their electronic systems so they can use those systems to transfer data to regulatory auditors.

About RCA

pharmaceutical consultants Regulatory Compliance Associates^® (RCA) provides worldwide services to the following industries for resolution of compliance and regulatory challenges:

As your partners, we can negotiate the potential minefield of regulatory compliance and private equity due diligence with insight, hindsight, and the clear advantage of our unique expertise and experience.

Founded in 2000
Headquartered in Wisconsin (USA)
- Regional offices in Florida, Colorado and Europe
Expertise backed by over 500 industry subject matter experts
Acquired by Sotera Health in 2021

To begin the Regulatory Compliance Associates^® scoping process today, please enter your information in the blue form below and click the submit button at the bottom of the webpage.

Tag: Risk Management

Click now to watch Regulatory Compliance Associates® Dr. Stephen Coulter explain how design controls and risk management play an intricate role in the Waterfall methodology:

Waterfall Method

Waterfall Development

Input Requirements

Risk Management

Waterfall Approach

Risk Analysis

FMEA

Risk Tolerance

Risk Management Summary

About RCA’s Medical Device Consulting Services

About RCA®

About Sotera Health®

To begin the Regulatory Compliance Associates® scoping process today, please enter your information in the blue form below and click the submit button at the bottom of the webpage.

Click to watch Regulatory Compliance Associates medical device consultant, Dr. Stephen Coulter, discuss the common tools & processes used during product development. Early stages of new product development include analyzing user needs & translating design benefits into long-term patient efficacy.

Product Development Strategy

Product Development Cycle

Product Research

Market Development Strategy

Product Design and Development

Product Planning Process

Software Product Design

Software as a Medical Device

Agile Product Development

Digital Product Development

MVP Agile

Regulatory Compliance

Regulatory Pathway

About Regulatory Compliance Associates

About Sotera Health

To begin the Regulatory Compliance Associates scoping process today, please enter your information in the blue form below and click the submit button at the bottom of the webpage.

Click now to hear from Jordan Elder, RCA’s Director of Regulatory Affairs, regarding the latest info on Quality System Regulation (QSR) regulations and FDA harmonization efforts:

Do you need ISO13485 compliance support? Talk to our Experts.

QMS Harmonization

Quality Management System

Risk Management

ISO Standard

Are you ready for this Change? RCA can Help!

About RCA’s Medical Device Consulting Services

About RCA

To begin the Regulatory Compliance Associates scoping process today, please enter your information in the blue form below and click the submit button at the bottom of the webpage.

Regulatory Compliance

Global Harmonization

Product Life Cycle (PLC)

Product Design

Development Stage (Stage 1)

Support Stage (Stage 2)

Limited Support Stage (Stage 3)

End of Support Stage (Stage 4)

Risk Management

Data Integrity

Security Updates

Product Security Documentation

Product Life Cycle Documentation

Vulnerability & Patching Information

Proactive Communications for Third-Party Components

About RCA’s Medical Device Consulting Services

About RCA

About Sotera Health

To begin the Regulatory Compliance Associates® scoping process today, please enter your information in the blue form below and click the submit button at the bottom of the webpage.

Need help adhering to the New Guidance? Contact Us Now →

FDA submission data

FDA submission procedure

Prior Approval Support (PAS)

Guidance Changes Being Effected in 30 Days/Changes Being Effected (CBE30/CBE)

Annual Report (AR)

FDA process validation

Quality Management System

About RCA’s Biologics & Biotech Consulting Services

Regulatory Affairs

Compliance Assurance

Quality Assurance

Remediation Strategy & Response

Strategic Consulting

About RCA

About Sotera Health

To begin the Regulatory Compliance Associates® scoping process today, please enter your information in the blue form below and click the submit button at the bottom of the webpage.

Need help improving your Quality Culture? Contact Us Now →

How Quality Culture Is Linked to Data Integrity

Click now to watch Regulatory Compliance Associates^® Dr. Stephen Coulter explain how design controls and risk management play an intricate role in the Waterfall methodology:

About RCA^®

About Sotera Health^®

To begin the Regulatory Compliance Associates^® scoping process today, please enter your information in the blue form below and click the submit button at the bottom of the webpage.

To begin the Regulatory Compliance Associates^® scoping process today, please enter your information in the blue form below and click the submit button at the bottom of the webpage.

To begin the Regulatory Compliance Associates^® scoping process today, please enter your information in the blue form below and click the submit button at the bottom of the webpage.

To begin the Regulatory Compliance Associates^® scoping process today, please enter your information in the blue form below and click the submit button at the bottom of the webpage.