When working with data entry forms, good pharmaceutical data integrity requires that original values be moved from memory to a durable medium as soon as possible to preserve the integrity of the values and permit creation of a complete activity history for review and release of data. This concern is expressed in a recent draft FDA Data Integrity guidance(1):
“Similarly, it is not acceptable to store data electronically in temporary memory, in a manner that allows for manipulation, before creating a permanent record.”
One design that simplifies maintenance of enterprise-level applications is the layered approach. While there are variations, a common design has three layers:
Segregation permits each layer to be modified without forcing major changes in other layers. While there are maintenance advantages, this layered approach carries hidden data integrity risks: designers can use a database trigger to validate a value or perform a calculation for the information just entered by the user. This trigger is usually executed as the user attempts to move to the next form field. If the entry needs to be corrected, an error message can be displayed and the user is returned to correct the entry. Is this a problem? Perhaps. Why? Because no entry is stored until the entire form is complete—until storage, records are buffered in computer memory. As a result of these:
The impact to pharmaceutical data integrity could be moderate or significant, depending upon the calculations/validations/range checks performed by the form and the data entries involved. As an example, consider a form where a surface-area dose is calculated upon entry of patient weight and height. The study has a maximum allowable surface area, and the clinic is paid for each person enrolled. If the calculated surface area exceeds the maximum, a warning is raised on the form and the user is asked to re-enter values. This has all the ingredients for data manipulation: the user can keep picking weight/height combinations until an acceptable surface area is obtained to enroll the patient (and receive payment). Because the form immediately tells the user when values are unacceptable and nothing is written to media, the form leaves no record of user misbehavior in the system. The lack of an audit trail makes detection impossible without direct observation. The key to reducing the risk is changing the design so entries are first written to the database then calculated and validated. This design then permits the creation of an audit trail to capture entry changes, so reviewers can see the complete record and determine if the entry changes are proper.
Footnote:
(1) Data Integrity and Compliance With CGMP Guidance for Industry, Draft. April 2016. http://www.fda.gov/downloads/drugs/guidancecomplianceregulatoryinformation/guidances/ucm495891.pdf
The following blog post was provided by Peyton Myers, an undergraduate student at Appalachian State University. Myers attended the 2023 ISPE Annual Meeting & Expo in Las Vegas as an ISPE Foundation Professional Development Grant recipient.
The integration of data science in biopharmaceutical manufacturing, emphasizing data quality, tech transfer efficiency, and process optimization, is the heart of this track. Led by industry experts, discussions explore leveraging digital twins, predictive analytics, and continuous improvement initiatives. Additionally, interactive roundtable discussions provide attendees with a dynamic forum...
The pharmaceutical sector stands at a crossroads of immense possibilities. We are witnessing an unprecedented surge in innovation, fueled by a remarkable partnership between industry and regulatory authorities. For example, there are initiatives fostered by the US Food and Drug Administration (US FDA) to promote innovation with programs such as CATT (CBER Advanced Technologies Team) and ETP...