The follow on to the vendor audit check list, whether it pertains to in-house or out-house audits is the Gap Analysis. This quantifies the the scope of work involved in attaining regulatory compliant status. As a consultant, the most often asked for service as soon as you arrived in a clients office is, a gap analysis. It is what everyone wants, a searching look into at all aspects of your current systems, to determine compliance and adequacy of current procedures. A gap analysis involves comparing regulatory requirements against current procedures and facilities in your facility. Differences are referred to as "gaps." It gives tremendous reassurance that the ship is water tight and under command.
The Gap Analysis tool allows you to systematically challenge the company’s cGMP policies and procedures, comparing them with the regulatory expected standards and allowing you to draw up a list all delinquencies. Until you can highlight the company’s deficiencies, you are not able to scope the task of becoming compliant. This is where the Vendor Audit Check List makes It possible for you to know what resources are required for the task.
| A. | Vendor Audit Check List from Validation-Online Company Overview | Done | Notes |
| A.1 | Audit details (address, audit team, supplier representatives) |
|
|
| A.2 | Company size, structure and summary of history (number of sites, staff, organizational charts, company history) |
|
|
| A.3 | Product/service history (main markets, how many sold, use in healthcare sector) |
|
|
| A.4 | Summary of product/service under audit (product literature) |
|
|
| A.5 | Product/service development plans |
|
|
| A.6 | Tour of facility (to verify housekeeping, general working environment, working conditions) |
|
|
| B. | Vendor Audit Check List from Validation-Online Organization and Quality Management |
|
|
| B.1 | Management structure (roles, responsibilities) |
|
|
| B.2 | Method of assuring quality in product/service (quality system, responsibilities for quality) |
|
|
| B.3 | Use of a documented Quality Management System (QMS) e.g., existence of a quality policy and objectives, quality manual, process definitions/procedures, standards |
|
|
| B.4 | Maturity of QMS (relevance to product/service under audit) |
|
|
| B.5 | Control of QMS documentation (reviews, approvals, distribution, updates) |
|
|
| B.6 | Maintenance of QMS documentation (regularly reviewed and updated when appropriate) |
|
|
| B.7 | QMS certified to a recognized standard (e.g., ISO9001) |
|
|
| B.8 | Method of checking compliance with QMS (internal audits, management reviews) |
|
|
| B.9 | Qualification and suitability of staff |
|
|
| B.10 | Independence of auditors, inspectors, testers, reviewers |
|
|
| B.11 | Staff training (general, QMS, product/service related, new staff, changes to QMS, regulatory issues, training records) |
|
|
| B.12 | Use of sub-contractors (individuals, companies): |
|
|
|
| Method of selection |
|
|
| Sub-contractor qualifications and training records |
|
|
| Specification of technical and quality requirements in orders placed |
|
|
| Method of accepting product delivered by sub-contractor |
|
|
| B.13 | Experience of validation process (with other customers, previous Supplier Audits, services provided by supplier, involvement in regulatory inspections) |
|
|
| B.14 | Awareness of healthcare regulatory requirements (knowledge of regulations, subscription to publications, attendance of relevant events, involvement in industry groups) |
|
|
| B.15 | Continuous improvement programme (use of metrics to evaluate and improve effectiveness of QMS) |
|
|
| C. | Vendor Audit Check List from Validation-Online Planning and Product/Project Management |
|
|
| C.1 | Use of quality and project plans (per project/product, defining activities, process definitions/procedures, responsibilities, timescales) |
|
|
| C.2 | Status of planning documentation (reviews, approvals, distribution, maintenance, and update) |
|
|
| C.3 | Documentation of user/supplier responsibilities |
|
|
| C.4 | Use of Validation Plan where supplied by user company |
|
|
| C.5 | Project management and monitoring (mechanism, tools, progress reports) |
|
|
| C.6 | Accuracy of, and conformance to, planning and management process definitions/procedures |
|
|
| C.7 | Use of formal development life cycle |
|
|
| C.8 | Evidence of formal contract reviews where applicable |
|
|
| D. | Vendor Audit Check List from Validation-Online Specifications |
|
|
| D.1 | User Requirements Specifications |
|
|
| D.2 | Functional Specifications |
|
|
| D.3 | Software Design Specifications |
|
|
| D.4 | Hardware Design Specifications |
|
|
| D.5 | Relationship between specifications (together forming a complete specification of the system which can be tested objectively) |
|
|
| D.6 | |