Data Integrity and Privacy: Compliance with 21 CFR Part 11, SaaS/Cloud, EU GDPR

Recorded Session
90 Minutes
DOWNLOAD BROCHURE
EMAIL REMINDER
REQUEST CALLBACK

In today's ever-changing landscape of technology, there are many new considerations for computer system validation (CSV) to ensure the nuances of each innovative component. For example, we now have more FDA-regulated companies starting to use cloud services and Software-as-a-Service (SaaS), Infrastructure-as-a-Service (IaaS), Platform-as-a-Service (PaaS), Software-as-a-Medical-Device (SaaMD), and the use of mobile devices.

We're seeing companies starting to move, as well, to an agile vs. waterfall approach for development and testing, and in some cases, they are using automated testing.

In addition, the FDA is encouraging companies to follow the principles of Computer Software Assurance (CSA) vs. the traditional CSV. There is a need to apply critical thinking and a discovery mindset as we do the validation activities. This means treating each requirement based on potential risk if it were to fail and doing testing for it accordingly.

In this webinar, we will review the current trends, including in technology and FDA compliance and enforcement. We'll look at Data Integrity, 21 CFR Part 11 (Electronic Records/Electronic Signatures), European Union (EU) Annex 11, General Data Protection Regulation (GDPR), and other regulatory requirements.

We'll walk through the validation process and provide a review of the potential pitfalls as well as best industry practices. This class will also cover the requirements for maintaining a computer system regulated by FDA in a validated state throughout its life cycle.

WHY SHOULD YOU ATTEND?

This webinar is intended for those involved in planning, execution, and support of computer system validation activities, working in the FDA-regulated industries, including pharmaceutical, medical device, biologics, tobacco, and tobacco-related products (e-liquids, e-cigarettes, pouch tobacco, cigars, etc.). Applicable functions include research and development, manufacturing, Quality Control, distribution, clinical testing and management, sample labeling, adverse events management, and post-marketing surveillance.

AREA COVERED

  • Learn how to identify “GxP” Systems and the appropriate type and level of validation
  • Discuss the Computer System Validation (CSV) approach based on FDA requirements
  • Learn about the System Development Life Cycle (SDLC) approach to validation and how to adapt it to alternative means of validating systems, such as 
  • Computer Software Assurance (CSA), FDA’s most recent draft guidance on the subject
  • Understand GAMP®5 guidance from ISPE and how to categorize software and test based on potential risk
  • Understand COTS, functionally configurable, and custom-coded systems and FDA requirements
  • Understand Cloud computing and Software-as-a-Service (SaaS) and the best approach for validation
  • Understand how to maintain a system in a validated state through the system’s entire life cycle
  • Learn about the policies and procedures needed to support your validation process and ongoing maintenance of your systems in a validated state
  • Understand the key components of 21 CFR Part 11 compliance for electronic records and signatures, and Annex 11
  • Know the regulatory influences that lead to FDA’s current thinking at any given time
  • Learn how to best prepare for an FDA inspection or audit of a GxP computer system
  • Understand the importance of performing a thorough vendor audit to ensure oversight of the products and services they deliver
  • Finally, understand the industry best practices that will enable you to optimize your approach to validation and compliance, based on risk assessment, to ensure data integrity is maintained throughout the entire data life cycle
  • Q&A

LEARNING OBJECTIVES

  • In this webinar, we will explore the best practices and strategic approach for evaluating computer systems used in the conduct of FDA-regulated activities and determining the level of potential risk, should they fail, on data integrity, process and product quality, and consumer/patient safety.
  • We will discuss traditional CSV vs. CSA, the draft guidance issued in September 2022 by FDA, indicating the differences and similarities, and how they align.
  • We will explore validation following the traditional waterfall, phased approach, and following an agile methodology, with 2–3-week sprints for completing work products.
  • We will walk through the System Development Life Cycle (SDLC) approach to validation, based on risk assessment.
  • We will also cover validation using Computer Off-the-Shelf (COTS), Cloud, and Software-as-a-Service (SaaS).
  • We will discuss the GAMP®5 guidance from ISPE and how to categorize software and test it thoroughly based on potential risk.
  • We will discuss the application of 21 CFR Part 11, FDA’s guidance for electronic records/signatures from 1997, and Annex 11, a similar guidance from the European Union (EU). We’ll also cover data integrity requirements from FDA’s December 2018 guidance document, including how to leverage the ALCOA+ principles (attributable, legible, contemporaneous, original or true copy, accurate, complete, consistent, enduring, and available) for FDA-regulated systems.
  • We will provide an overview of practices to prepare for an FDA inspection, and will also touch on the importance of auditing vendors of computer system hardware, software, tools and utilities, and services.
  • Finally, we will provide an overview of industry best practices, with a focus on data integrity and risk assessment that can be leveraged to assist in all your GxP work.

WHO WILL BENEFIT?

  • Information Technology Developers, Analysts, Testers, and Support Personnel
  • QC/QA Analysts, Supervisors, and Managers
  • Clinical Data Scientists, Supervisors, and Managers
  • Analytical Chemists, Supervisors, and Managers
  • Compliance Specialists and Managers
  • Laboratory Personnel, Managers, and Supervisors
  • Manufacturing Personnel Managers, and Supervisors
  • Supply Chain Specialists
  • Computer System Validation Specialists
  • GMP Training Specialists
  • Business Stakeholders responsible for computer system validation planning, execution, reporting, compliance, maintenance, and audit
  • Consultants working in the life sciences industry who are involved in computer system implementation, validation, and compliance
  • Auditors engaged in the internal inspection of labeling records and practices

This webinar is intended for those involved in planning, execution, and support of computer system validation activities, working in the FDA-regulated industries, including pharmaceutical, medical device, biologics, tobacco, and tobacco-related products (e-liquids, e-cigarettes, pouch tobacco, cigars, etc.). Applicable functions include research and development, manufacturing, Quality Control, distribution, clinical testing and management, sample labeling, adverse events management, and post-marketing surveillance.

  • Learn how to identify “GxP” Systems and the appropriate type and level of validation
  • Discuss the Computer System Validation (CSV) approach based on FDA requirements
  • Learn about the System Development Life Cycle (SDLC) approach to validation and how to adapt it to alternative means of validating systems, such as 
  • Computer Software Assurance (CSA), FDA’s most recent draft guidance on the subject
  • Understand GAMP®5 guidance from ISPE and how to categorize software and test based on potential risk
  • Understand COTS, functionally configurable, and custom-coded systems and FDA requirements
  • Understand Cloud computing and Software-as-a-Service (SaaS) and the best approach for validation
  • Understand how to maintain a system in a validated state through the system’s entire life cycle
  • Learn about the policies and procedures needed to support your validation process and ongoing maintenance of your systems in a validated state
  • Understand the key components of 21 CFR Part 11 compliance for electronic records and signatures, and Annex 11
  • Know the regulatory influences that lead to FDA’s current thinking at any given time
  • Learn how to best prepare for an FDA inspection or audit of a GxP computer system
  • Understand the importance of performing a thorough vendor audit to ensure oversight of the products and services they deliver
  • Finally, understand the industry best practices that will enable you to optimize your approach to validation and compliance, based on risk assessment, to ensure data integrity is maintained throughout the entire data life cycle
  • Q&A
  • In this webinar, we will explore the best practices and strategic approach for evaluating computer systems used in the conduct of FDA-regulated activities and determining the level of potential risk, should they fail, on data integrity, process and product quality, and consumer/patient safety.
  • We will discuss traditional CSV vs. CSA, the draft guidance issued in September 2022 by FDA, indicating the differences and similarities, and how they align.
  • We will explore validation following the traditional waterfall, phased approach, and following an agile methodology, with 2–3-week sprints for completing work products.
  • We will walk through the System Development Life Cycle (SDLC) approach to validation, based on risk assessment.
  • We will also cover validation using Computer Off-the-Shelf (COTS), Cloud, and Software-as-a-Service (SaaS).
  • We will discuss the GAMP®5 guidance from ISPE and how to categorize software and test it thoroughly based on potential risk.
  • We will discuss the application of 21 CFR Part 11, FDA’s guidance for electronic records/signatures from 1997, and Annex 11, a similar guidance from the European Union (EU). We’ll also cover data integrity requirements from FDA’s December 2018 guidance document, including how to leverage the ALCOA+ principles (attributable, legible, contemporaneous, original or true copy, accurate, complete, consistent, enduring, and available) for FDA-regulated systems.
  • We will provide an overview of practices to prepare for an FDA inspection, and will also touch on the importance of auditing vendors of computer system hardware, software, tools and utilities, and services.
  • Finally, we will provide an overview of industry best practices, with a focus on data integrity and risk assessment that can be leveraged to assist in all your GxP work.
  • Information Technology Developers, Analysts, Testers, and Support Personnel
  • QC/QA Analysts, Supervisors, and Managers
  • Clinical Data Scientists, Supervisors, and Managers
  • Analytical Chemists, Supervisors, and Managers
  • Compliance Specialists and Managers
  • Laboratory Personnel, Managers, and Supervisors
  • Manufacturing Personnel Managers, and Supervisors
  • Supply Chain Specialists
  • Computer System Validation Specialists
  • GMP Training Specialists
  • Business Stakeholders responsible for computer system validation planning, execution, reporting, compliance, maintenance, and audit
  • Consultants working in the life sciences industry who are involved in computer system implementation, validation, and compliance
  • Auditors engaged in the internal inspection of labeling records and practices
Currency:
Webinar Option
Transcript (PDF Transcript of the Training)
Downloadable Recorded Session
USB
 

Speaker Profile

ins_img Carolyn Troiano

Carolyn Troiano has more than 35 years of experience in computer system validation in the tobacco, pharmaceutical, medical device and other FDA-regulated industries. She has worked directly, or on a consulting basis, for many of the larger pharmaceutical and tobacco companies in the US and Europe. She is currently building an FDA computer system validation compliance strategy at a vapor company. Carolyn has participated in industry conferences, and is currently active in the Association of Information Technology Professionals (AITP), and Project Management Institute (PMI) chapters in the Richmond, VA area. Carolyn also volunteers for the PMI’s Educational Fund as a …

Upcoming Webinars

HIPAA Compliance in 2026 — Practical Strategies for Breach …

By:Ms. Michael Redmond
June 18, 2026
10:00 AM PDT | 01:00 PM EDT

Integrating AI Tools in Microsoft Office

By:Ritu Arora
June 18, 2026
10:00 AM PDT | 01:00 PM EDT

Launch Your Career: The Ultimate Guide for Emerging Profess…

By:Hulya Kurt
June 22, 2026
10:00 AM PDT | 01:00 PM EDT

Moving From an Operational Manager to a Strategic Leader

By:Pete Tosh
June 22, 2026
12:00 PM PDT | 03:00 PM EDT

Discover how Emotional Intelligence turns AI from a technic…

By:Lesley Crook
June 23, 2026
10:00 AM PDT | 01:00 PM EDT

Dealing With Difficult People: At Work & In Life

By:Paul J. Cline
June 23, 2026
10:00 AM PDT | 01:00 PM EDT

I-9 Audits: Strengthening Your Immigration Compliance Strat…

By:Diane L. Dee
June 23, 2026
12:00 PM PDT | 03:00 PM EDT

Empowering Conflict Resolution: Letting Go to Gain Control

By:Aimee Bernstein
June 24, 2026
12:00 PM PDT | 03:00 PM EDT

The 60 Minutes Introduction to DAX

By:Markus Ehrenmueller-Jensen
June 24, 2026
10:00 AM PDT | 01:00 PM EDT

The 6 Most Common Problems in FDA Software Validation and V…

By:David Nettleton
June 24, 2026
10:00 AM PDT | 01:00 PM EDT

High-Impact Performance Management: Tools, Tactics & Coachi…

By:Marcia Zidle
June 24, 2026
12:00 PM PDT | 03:00 PM EDT

AI Across the Business: Practical Use Cases for Founders an…

By:Kathryn E. Strachan
June 25, 2026
12:00 PM PDT | 03:00 PM EDT

Faster, Better Talent Acquisition: Leveraging AI & ChatGPT …

By:Marcia Zidle
June 25, 2026
12:00 PM PDT | 03:00 PM EDT

Using Copilot in Microsoft Excel

By:Craig Brody
June 25, 2026
12:00 PM PDT | 03:00 PM EDT

The Anti-Kickback Statute: Enforcement and Recent Updates

By: William Mack Copeland
June 26, 2026
12:00 PM PDT | 03:00 PM EDT

ChatGPT for Accountants

By:Richard E Cascarino
June 26, 2026
10:00 AM PDT | 01:00 PM EDT

Leveraging Microsoft Excel to Detect Fraud

By:Jay Carlson
June 27, 2026
10:00 AM PDT | 01:00 PM EDT

Do's and Don'ts of Giving Effective Feedback for Performanc…

By:Audrey Halpern
June 29, 2026
12:00 PM PDT | 03:00 PM EDT

Emotional Intelligence: Mastering the Emotions of Great Lea…

By:Don Phin
June 29, 2026
10:00 AM PDT | 01:00 PM EDT

ChatGPT: From Beginner to Next Steps

By:Richard Erschik
June 29, 2026
10:00 AM PDT | 01:00 PM EDT

Copilot and HR: An Introduction for HR Professionals

By:Deb Schaffer
June 30, 2026
10:00 AM PDT | 01:00 PM EDT

Moving from Peer to Boss: Supervisor 101

By:Tonia Morris
June 30, 2026
12:00 PM PDT | 03:00 PM EDT

Goal Mastery: From Resolutions to Results in 2026

By:Edlyn McGarity
June 30, 2026
10:00 AM PDT | 01:00 PM EDT

Your AI Advantage: How HR Professionals Can Use Claude to S…

By:Margie Faulk
July 1, 2026
10:00 AM PDT | 01:00 PM EDT

Copilot for Excel – Work Smarter with AI

By:Ritu Arora
July 1, 2026
12:00 PM PDT | 03:00 PM EDT

AI and ChatGPT for Beginners

By:Richard Erschik
July 2, 2026
10:00 AM PDT | 01:00 PM EDT

Human Error Reduction Techniques for Floor Supervisors

By:Ginette M. Collazo
July 2, 2026
12:00 PM PDT | 03:00 PM EDT

Validation of FDA-Regulated Medical Device and SaMD Product…

By: Carolyn Troiano
July 3, 2026
12:00 PM PDT | 03:00 PM EDT

Human Factors Usability Studies Following ISO 62366 and FDA…

By:Edwin Waldbusser
July 3, 2026
10:00 AM PDT | 01:00 PM EDT

Managing Toxic & Other Employees Who Have Attitude Issues

By:Pete Tosh
July 6, 2026
10:00 AM PDT | 01:00 PM EDT

ChatGPT for CPAs and Finance Professionals

By:Manish Gupta
July 6, 2026
12:00 PM PDT | 03:00 PM EDT

I-9 Enforcement & Compliance: A 5-Step Plan for Employers t…

By:Steven G. Meilleur
July 7, 2026
12:00 PM PDT | 03:00 PM EDT

Major cGMP Issues: FDA Concerns in 2026

By:Ms. Michael Redmond
July 7, 2026
10:00 AM PDT | 01:00 PM EDT

4-Hour Virtual Seminar on Transformational Leadership - The…

By:Paul J. Cline
July 7, 2026
10:00 AM PDT | 01:00 PM EDT

Understanding EBITDA – Definition, Formula & Calculation

By:Justin Muscolino
July 8, 2026
12:00 PM PDT | 03:00 PM EDT

DOL Reverses Course on Independent Contractor Rule for 2026…

By:Margie Faulk
July 8, 2026
10:00 AM PDT | 01:00 PM EDT

Managing Toxic Employees: Strategies For Leaders To Effecti…

By:Beverly Beuermann-King
July 8, 2026
10:00 AM PDT | 01:00 PM EDT

ChatGPT and Project Management: Leveraging AI for Project M…

By:Deb Schaffer
July 9, 2026
10:00 AM PDT | 01:00 PM EDT

Navigating HR Like A Pro: What Every Small Business & New H…

By:William J. Rothwell
July 9, 2026
12:00 PM PDT | 03:00 PM EDT

HPLC Analytical Method Development and Validation

By:Dr. John C. Fetzer
July 9, 2026
10:00 AM PDT | 01:00 PM EDT

Negotiating Skills For Professional Results - Winning Strat…

By:Bruce Lee
July 10, 2026
12:00 PM PDT | 03:00 PM EDT

Managing Projects When AI Joins the Team: Human Judgment, A…

By:Allen Evitts
July 10, 2026
10:00 AM PDT | 01:00 PM EDT

Excel Spreadsheets; Develop and Validate for 21 CFR Part 11…

By:David Nettleton
July 14, 2026
10:00 AM PDT | 01:00 PM EDT

Paying and Receiving Payments for Referrals: You Can Go to …

By: William Mack Copeland
July 14, 2026
12:00 PM PDT | 03:00 PM EDT

Transcend VLOOKUP in Microsoft Excel

By:Craig Brody
July 14, 2026
12:00 PM PDT | 03:00 PM EDT

Ten Red Flags that Signal Financial Distress in Business Cu…

By:Dev Strischek
July 15, 2026
10:00 AM PDT | 01:00 PM EDT

The Age-Inclusive Workplace: How to Lead and Work Across Ge…

By: Karla Brandau
July 15, 2026
10:00 AM PDT | 01:00 PM EDT

Tattoos, hijabs, piercings, and pink hair: The challenges …

By:Dr. Susan Strauss
July 15, 2026
12:00 PM PDT | 03:00 PM EDT

Fatal Errors Employers Make When Updating Employee Handbook…

By:Ronald L. Adler
July 20, 2026
12:00 PM PDT | 03:00 PM EDT

AI Fundamentals for All Leaders and Managers: How to Work S…

By:Marcia Zidle
July 30, 2026
12:00 PM PDT | 03:00 PM EDT