Products Services Information About Contact
Products
Ofni Systems provides your FDA-regulated business with software and products to assist with 21 CFR 11, Annex 11, HIPAA, and other regulatory requirements for electronic data and signatures.
ExcelSafe
Part 11 Compliance For
MS Excel® Spreadsheets Simple To Use
Get spreadsheet control in a matter of hours Full Part 11 Compliance
Audit trails, electronic signatures and user security Spreadsheet Validation
We are FDA experts on spreadsheet validation Free Trial
Get a copy of Excelsafe to test today
FastVal
A Complete Validation Management Solution Create Documents
Fastval creates all your validation documents Electronic Execution
Execute validation protocols electronically Deviation Tracking
Deviation generation, tracking and management Project Management
Tools and reports to help manage people & projects
Ofni Clinical
eCRF Data Collection Database For Clinical Trials Case Report Forms
Converts your paper CRF's into eCRF's Edit Checks
Ensure data integrity with validation rules MedWatch Reporting
Automatically generates MedWatch FDA Form 3500A Rapid Implementation
Ready to use in days, not weeks or months
Part 11 Toolkit
Makes Any MS Access® Database Part 11 Compliant Audit Trails
Track all changes made in a database Electronic Signatures
Secure data with electronic signatures Database Validation
Let us validate your database for you Free Trial
Try the Part 11 Toolkit in your own database
Part 11 Advisor
Part 11 Auditing, Remediation and Training Tool Starting Gap Analysis
Facilitates the process of starting gap analysis Assessments
Collect and review data to identify Part 11 gaps Long-Term Tracking
Track the completion of your corrective action plan On-site Implementation
Hands on training on 21 CFR Part 11
Services
Ofni Systems provides your business with the highest quality consulting services to meet all of your compliance and quality needs.
Validation Services Software Validation
 Method Validation
 Process Validation
 Equipment Validation
21 CFR Part 11 Part 11 Training
 Part 11 Auditing
 Compliance Testing
 Software Assesments
Clinical Trials Custom Databases
 Database Testing
 Statistical Analysis
 Statistical Reporting
Other Services Data Migration
 SOP Writing
 Process Automation
 Mock Audits
Information
Ofni Systems is committed to assisting organizations with electronic records compliance, such as 21 CFR Part 11 and Annex 11. Let Ofni Systems make knowledge management simple for you.
21 CFR Part 11
A complete set of resources for 21 CFR Part 11 21 CFR 11.10(a)
Validation of computer systems 21 CFR 11.10(b)
Accurate Generation of Records 21 CFR 11.10(c)
Protection of Records 21 CFR 11.10(d)
Limited System Access 21 CFR 11.10(e)
Audit Trails 21 CFR 11.10(f)
Operational System Checks 21 CFR 11.10(g)
Authority Checks 21 CFR 11.10(h)
Input Checks 21 CFR 11.10(i)
Education, Training and Experience 21 CFR 11.10(j)
Policies for Electronic Signatures 21 CFR 11.10(k)
Document Control Part 11 FAQ
Validation of computer systems
Validation Resources
On selected validation documents Validation Planning
Define the scope and goals of a validation project. Requirement Gathering
Operations and activities that a system must be able to perform. Design Specification
Design Specifications describe how a system performs the requirements Installation Qualification
Verifies the proper installation and configuration of a System. Summary Report
Provides an overview of the entire validation project.
Other Resources
More information on FDA compliance FDA Warning Letters
Sample FDA 483 and Warning Letters Part 11 Publications
Useful 21 CFR 11 resources. Clinical Data Management
Best practices in handling data from clinical trials. Ofni Compliance Blog
Resources and information straight from the Ofni team.
About Ofni Systems
Ofni Systems is dedicated to helping companies address the requirements of 21 CFR Part 11, Electronic Records and Electronic Signatures.
Clients
Alliances
Employment
Customer Support

Failure to Validate Software


Page 4 of 512345

Warning Letter: Software not validated (ucm165771)

Tags: | |

Some system components on the part lists were not depicted on the [redacted] drawings of the water purification systems installed at the [redacted] dialysis sites. Your computer software used to perform the [redacted] calculations has not been validated.

View the original warning letter.


Warning Letter: Failure to provide documentation for validation (ucm181430)

Tags: | |

Purchase software specific to contact lens firms, which has quality system modules. You stated that you had purchased the software and planned to have it installed by January 2009, with implementation and validation within 5 to 6 months. However, you did not provide any documentation regarding the software system, the validation plan, or your firm’s plan to train personnel on the use of the system.

View the original warning letter.


Warning Letter: Failure to validate computer system (s7045c)

Tags: | |

Failure to establish written procedures for production and process control designed to assure that the drug products have the identity, strength, quality, and purity they purport or are represented to possess [21 CFR § 211.100(a)]. For example, your firm’s automated packaging line processes and their respective software systems have not been validated .

View the original warning letter.


Warning Letter: Failure to maintain validation documentation (s6847c)

Tags: | |

“Specifically, your firm has not conducted quality audits and established adequate procedures for … acceptance activities and computer software validation … your firm has not established written procedures describing how it evaluates, verifies or validates, documents, and approves design changes. Failure to validate software used as part of production and quality system for its intended use according to an established protocol, and failure to document the results of the software validation, as required by 21 C.F.R. § 820.70(i). FDA 483 Item 8. Specifically, your firm has not maintained documentation of the validation of the computer software used to (a) receive encrypted patient treatment data and decrypt/encrypt it; (b) convert decrypted patient treatment data into […] codes that are converted into […] codes that are then sent to your contract manufacturer’s […] milling machine to produce the compensators.”

View the original warning letter.


Warning Letter: Failure to validate/Insufficient Controls (s6630c)

Tags: | |

Failure to have a validated and secure computerized system. Additionally, there were no written protocols to assign levels of responsibilities for the system. It was noted that the [redacted] instrument model [redacted] used for the analysis of [redacted] failed to have password control for the analysts and the supervisor. It was observed that the data stored on the computer can be deleted, removed, transferred, renamed or altered. While your firm’s management stated that they would like to implement certain improvements in order to establish a security system, no documentation or commitment has been provided. Please note that computerized systems should have sufficient controls to prevent unauthorized access or changes to data. There should be controls to prevent data omissions and assure back-up. There should be a record of any data change made, the previous entry, who made the change, and when the change was made.

View the original warning letter.


Warning Letter: Computer systems not validated (s6381c)

Tags: | | |

 
"Software used as part of the production quality system
was not validated
for its intended use according to an established protocol [21 C.F.R. 820.70(i)]. Specifically,
 
(a)
Spreadsheets
intended to check for outliers and calculate mean, SC, % CV, value assignments for finished devices.
(b) Complaint handling software
(c) Quantrol database program"

 

View the original warning letter.


Warning Letter: Failure to validate software (s6357c)

Tags: | |

Appropriate controls are not exercised over computers or related systems to assure that changes in analytical methods or other control records are instituted only by authorized personnel [21 CFR 211.68(b)]. Specifically,

  • There was a failure to validate the [redacted] software to assure that all data generated by the system was secure. This software runs the laboratory HPLC equipment, generates and stores data, and performs calculations during testing of raw materials, in-process materials, finished products, and stability samples.
  • User access levels for the [redacted] software were not established and documented. Currently, laboratory personnel use a common password to gain access to the system and there are no user access level restrictions for deleting or modifying data. Furthermore, your system does not have an audit trail to document changes.

View the original warning letter.


Warning Letter: Lack of procedures and instructions (g6173d)

Tags: | | |
  • Failure to have production and process controls for automated processes, as required by 21 CFR 820.70(i). when computers or automated data processing systems are used as part of production or the quality system. A manufacturer is required to validate computer software for its intended use according to an established protocol. For example, databases that are maintained for data analysis and other tracking and trending functions, including complaint and services access databases, have riot [sic] been validated for their intended use.
  • Failure to establish and maintain instructions and procedures for performing and verifying that servicing meets the specified requirements, as required by 21 CFR 820.200(b). Each manufacturer must analyze service reports with appropriate: statistical methodology in accordance with Section 820. 100. For example, your quality group reviews narrative summaries of service reports every two weeks, but the data is not tracked and trended according to a statistical method.

View the original warning letter.


Warning Letter: Failure to Create Validation and CAPA Procedures (g4452d)

Tags: | | | |

Failure to establish and maintain adequate procedures for implementing corrective and preventive action, as required by 21 CFR 820.100(a) and (b). For-example:

a. The procedure titled corrective Action Handling [redacted] was not approved and implemented to address corrective and preventive action and no established procedure was found to have been in place.

b. Microsoft 2000 Excel spreadsheet software used manufacturing has not been validated for the purpose of generating a worksheet for formulation of reagents. No documentation was found to establish or verify corrections made to the program.

A report dated November 11, 2002 on non-conforming material on [redacted] was filed and a possible cause for the [redacted] was given; however no documentation was provided to verify or validate the adequacy of the corrective and preventive actions.

Problems were recorded relating to the use of the new dosing/dispensing machine [redacted]; however no documentation/evidence was provided
to verify or validate the adequacy of the corrective and preventive actions.”

View the original warning letter.


Warning Letter: Failure to validate computer software (g3667d)

Tags: | |

Failure to validate computer software for its intended use according to an established protocol, as required by 21 CFR 820-70(i). For example:

  • [redacted]software validation has not been completed.
  • [redacted] software validation plan does not address the user requirements of inputting data into the [redacted] spreadsheet used as a tool for trending.
  • [redacted] software used for trending has not been validated for its intended uses.

View the original warning letter.




Page 4 of 512345
Ofni Systems Logo
Products Services Information About Contact Privacy Terms Of Use |   (919) 844-2494 Google+