fbpx
1-888-310-4540 (main) / 1-888-707-6150 (support) info@spkaa.com
Select Page

PLM in the Cloud: Computer System Validation in FDA Regulated Industries

cloud for engineering image of buildings
Published by Mike Solinap
on July 29, 2013

Product lifecycle management (PLM) systems have evolved from being custom-built, on-premise applications to cloud-based, off-the-shelf solutions. As adoption for PLM in the cloud increases, system validation approaches in FDA/GXP regulated industries have had to adapt as well.

PLM Evolution

The FDA and Computer System Validation

Computer system validation is mandated by the Quality System regulation (FDA, 21 CFR Part 820) which requires that “when computers or automated data processing systems are used as part of production or the quality system, the manufacturer shall validate computer software for its intended use according to an established protocol.”

Furthermore, computer systems that implement part of a manufacturer’s production processes or quality system are subject to the Electronic Records and Signatures regulation (FDA, 21 CFR Part 11).

The  classical V-Model is typically applied for Software Verification and Validation for enterprise systems:

V-model

Applying the V-Model to Cloud Based Service Models

There are three basic service models in the cloud (source: David Chou, http://blogs.msdn.com/b/dachou/):

Cloud deployment models source - david chou

The V-Model may be applied to systems in the cloud as follows:

v model applied to the cloud

While the IQ, OQ responsibilities are shifted to the cloud service provider, as the regulated company you are still accountable for compliant quality systems. As the regulated company, you must verify that the service provider has appropriate controls in place.

Before you select a cloud service provider for your PLM solution:

  • Conduct  a supplier audit and perform a risk assessment
  • Document risks related to roles and responsibilities, processes controls and technology  used
  • Formally document the responsibilities of the cloud service provider

After going live with cloud based solution continue periodic performing periodic audits of the cloud service provider.

Next Steps:

Latest White Papers

Total Economic Impact for Atlassian Open DevOps

Total Economic Impact for Atlassian Open DevOps

Forrester's Total Economic Impact Study found that Atlassian Open DevOps could net your organization a potential ROI of 358%. Discover an overview of this Forrester research paper below and download your free copy. Forrester Research Into Atlassian Open DevOps Agile...

Related Resources

LastPass Business For Corporate and Client Security

LastPass Business For Corporate and Client Security

At SPK, we want to empower employees to safely manage their own passwords. Additionally, for organizations, we want to enable the enforcement of password standards. Businesses that follow good password standards, such as increased complexity, non-duplicate passwords ...

Why You Should Be Using PTC Windchill As Your PLM Software

Why You Should Be Using PTC Windchill As Your PLM Software

As a manufacturer, you have to be both structured and agile to constantly stay in line or ahead of the industry. You have to deliver quality products that meet the customer’s needs today whilst being future-proofed for tomorrow.  Aside from that, you also need to...

SMBs: Big Data Analytics Drive Profit

SMBs: Big Data Analytics Drive Profit

Data analytics and visualization tools like Microsoft Power BI are synonymous with making big data simple. And that’s critical in today’s market. Making data-driven decisions give businesses a competitive advantage. Traditionally, data-driven intelligence was reserved...