Electronic records--theircreation, modification, maintenance, retrieval, and archiving--can create ongoing challenges for all organizations. For industries regulated by the U.S. Food and Drug Administration (FDA), such as pharmaceutical companies, medical device manufacturers, food processing plants, and biotech companies, the FDA’s Code of Federal Regulations Title 21 Part 11 applies to the specifications, use, and control of electronic records and electronic signatures.
The requirements of FDA 21 CFR Part 11 for electronic records are based on good practices, organization, and, most of all, common sense to ensure the efficient and secure handling of these records. In general, these requirements state that:
• All information is complete, and all records can be tracked to their originator and corresponding records.
• Appropriate securities are in place to ensure that tampering that would alter the record from its original intent does not take place.
• Only the appropriate parties can access the records, and only those so identified can create, modify, or review those records.
• Authorizing parties are identified, and dates of those authorizations are recorded.
• Information can be viewed in a timely fashion either electronically or in a paper format.
• Records are maintained by personnel who are experienced and/or trained in the workings of the electronic systems in use.
For most small to midsize companies, creating a custom quality solution to manage these requirements is not feasible. They instead look for software to automate and simplify the process.
Vistek Precision Machine Co. of Ivyland, Pennsylvania, is a medical device manufacturer producing precision, CNC-machined components such as bone screws; implants for the spine, neck, hip, and knee; and high-performance surgical tools such as laparoscopic devices.
Early in 2008, Vistek was looking to purchase software to accomplish three primary objectives: first, to organize its quality system in pursuit of ISO 13485 registration; second, to maintain visibility over audits and cost tracking of the quality system that would enable it to be cost-competitive; and third, to enable it to be compliant under FDA 21 CFR Part 11.
“We had seen peers within our industry struggle to maintain their quality system at a high cost, just to hold their registration,” says Vince Visco, the company’s founder and president. “We didn’t want to travel down that road, so we weighed different options to prevent us from running into those same challenges.”
Vistek needed to electronically control about 700 documents. It also wanted to evolve toward a paperless quality system. The company’s senior management team compiled a wish list of what it wanted from a quality system. This is what it envisioned:
• The quality system would capture various production costs, costs of quality, and the costs of poor quality, and provide a series of metrics for trend analysis.
• The system would help Vistek comply with ISO 13485 and several articles under FDA 21 CFR Part 11.
• The quality system would enhance Vistek’s long-term strategic plan.
These goals made good sense. The catch? Vistek management had to accomplish them with no additional staff.
“The solution to the challenges set before us was to find tools that would offer metrics, maintain security, provide work flow, and capture the elements we defined in our quality system,” says Visco.
Vistek’s first challenge in meeting the requirements of FDA 21 CFR Part 11 was dealing with security and access to its systems and documentation. It needed the flexibility to alter security and access on both closed- and open-loop documentation.
Using software from uniPoint Software Inc., of Winnipeg, Manitoba, Vistek was able to capture digital signatures from authors, collaborators, reviewers, and approvers with their corresponding date and time stamps that harmonized document flow and met FDA 21 CFR Part 11 requirements. The security features guard against tampering by requiring encrypted passwords--thereby ensuring that someone’s unattended computer could not be the source of a false sign-off. The system also ensures that document sign-offs cannot be revoked. Document check-ins and checkouts similar to a paper system prevent staff from mistakenly using procedures or documents under development or review. All of this is done electronically, and the document revisions are complete in less than half the time it takes using the company’s paper-based method.
“The software gives us a huge advantage for organizing the storage of our documentation in a safe and secure part of the server, which we know is backed up on a regular basis,” says Visco. “We use the software as a gatekeeper, giving us a new level of security that we have complete control of.”
Vistek also needed to ensure that all documents and records were organized in a manner that would save time and effort and be compliant to both ISO 13485 and FDA 21 CFR Part 11.
Vistek now categorizes its documents and records into a library and then efficiently maintains, sorts, modifies, retrieves, and archives them. All of the parameters of a document are captured, including the document number; name; type;the creation, revision, and release dates; and the department and manager owning the document. With these fields defined, users can search for a document by any parameter and organize thousands of documents in any number of ways. Managers can track a document through all stages of the process and view its status (e.g., active, pending, or obsolete). In addition, review schedules are set up to ensure that the document is verified at a later date. Cumbersome log files are things of the past.
Document templates now automate the creation of new document records. Unlimited templates, with predefined sign-off and distribution routings and specific document securities, can be employed to quickly create new document records in the database. Documents of any file format are managed and can be viewed either in their original format or using a document viewer.
Another function--key indicator panels--has helped managers to maintain the timely flow of documents. The user-definable panels resemble a common executive dashboard and allow managers to easily track any outstanding sign-offs, documents that are overdue for review, and new documents entering the system. This has allayed fears of document-user task assignments entering the system and getting lost.
As part of the sign-off process, Vistek is now able to define the signing authorities associated with the document and the order of the approval process. The software allows the company to notify the appropriate personnel via e-mail that sign-off is pending their review, and it also places a task in the user’s “to do” list to help reviews progress in a timely manner. In the past this was accomplished by sending the paper copy with a cover sign-off sheet to all the people on the approval list.
“This was formerly a long and tiresome process that at times yielded no results, due to lost documents and edits, which meant we had to start the entire process again from the beginning,” says Visco. “The simultaneous sign-offs in the software allow all signing authorities to view, accept, reject, and comment on the document at the same time, which is very efficient.” The managers of specific documents can now track documents through the process without leaving their desks, and verify their digital signatures on document-control reports.
With security, tracking, and sign-offs now under control, the company embarked on training the appropriate people to use the software. An education and training module enabled Vistek to manage these functions. Training records, company occupations, and employee master files have been set up, cross-referenced, and attached to the appropriate documents inside Vistek’s document library. The attachment feature allows documents to be linked to any quality event in the system. It also ensures that changes made to the document’s revision level will automatically inform, by e-mail, all employees who require that document for training.
“The challenge is ensuring that people continue to be trained with the latest reference materials as documents, procedures, and policies change,” says Visco. “The software can associate a document to a training record and notify staff automatically, so we remain compliant.
“This module helps us manage all aspects of our training requirements, and it captures the costs associated with training and the lack thereof. The days of the old paper training matrix have come to an end, further reducing our costs and satisfying the Part 11 requirement regarding trained and experienced personnel.”
Vistek, like most companies, has a variety of hard-copy documents on the floor, such as policies, procedures, forms, and work instructions that all need to be controlled. Each controlled document now has a complete routing destination showing where the document has been distributed, who is managing it, and who has copies of it. The software also requires each recipient of the document to acknowledge receipt and understanding--bringing an added element of control to a closed-loop environment.
Vistek was pleasantly surprised that the software was also able to track the history of each document or record. The history function shows who has accessed the document, what that person did with it, and exactly when he or she did it. “At first we used this function to track important projects on the go here at Vistek, but we have also come to use this tool to track who is accessing procedures and work instructions,” says Visco. “We feel that there is value in allowing people to access, review, and link these documents in their day-to-day activities.”
It took just 60 days for Vistek to incorporate uniPoint software into its process and meet the requirements of FDA 21 CFR Part 11. In doing so, it increased efficiencies across the board, saving time and effort with the added benefit of going paperless.
The company has dramatically simplified the document management process required for compliance and reduced errors by using predefined document templates. Organizationally, it has encouraged compliant document-management practices by deploying the user-specific programs with to-do lists, e-mail reminders, and metrics--without increasing staff levels. Vistek has reduced compliance and infrastructure costs by quickly leveraging its existing documents into a comprehensive and secure library, without disrupting the organization.
“When everything is integrated, it makes sense that the whole process becomes more streamlined from start to finish,” says Visco. “We are able to capture routine functions and also track the costs relating to those activities, something we could not do easily in the past. We can set quality goals and benchmarks, monitor them, and review corporate trends. Staff can work independently and collaboratively, leveraging the collective wisdom of the company.
“By meeting the standard we are now more efficient, while maintaining versatility.”
Brenda Boughton is a writer living in Winnipeg, Manitoba. During the past 20 years, she has created communications for private industry, government, and nonprofit organizations on a wide variety of topics, including science and technology, education, sport, culture, and economic development. She is currently a communications manager with one of Canada’s largest financial service firms, where she oversees the information architecture and content of a sizable intranet.
© 2023 Quality Digest. Copyright on content held by Quality Digest or by individual authors. Contact Quality Digest for reprint information.
“Quality Digest" is a trademark owned by Quality Circle Institute, Inc.
