A question of trust: Data integrity for IVDs
Why aren’t enough people talking about data integrity for IVDs, ask Robyn Meurant & Howard Broadbridge, NSF International
Whether as a sophisticated test to identify cancer markers or a cost-effective method of detecting malaria in a low or middle-income country, in-vitro diagnostic devices (IVDs) are an essential component of making a diagnosis and choosing a safe and effective treatment. They represent a key platform in the delivery of health care and disease prevention globally.
An often-overlooked issue with these important products is data integrity. Many misconceptions are held, especially by IVD manufacturers who have often missed the ongoing scrutiny of premarket assessment for CE marking. The new EU IVD Regulation 2017/746 emphasizes comprehensive and competent notified body premarket assessment that will require approximately 80% of all IVDs to be CE marked. It will also require notified bodies to carry out annual inspections of manufacturing sites. The quality and integrity of your technical data is what will bring conformity. Many IVD manufacturing sites and technical files will be facing tough scrutiny for the first time - so make sure the culture of quality is strong, and your data is attributable, legible, contemporaneous, original and accurate.
Definition of data integrity and the ALCOA principles
According to the WHO, “Data integrity is the degree to which data are complete, consistent, accurate, trustworthy and reliable and that these characteristics of the data are maintained throughout the data lifecycle. The data should be collected and maintained in a secure manner, such that they are attributable, legible, contemporaneously recorded, original or a true copy and accurate.”
ALCOA is the commonly used acronym for “attributable, legible, contemporaneous, original and accurate.” The ALCOA principles have been acknowledged as fundamental for maintaining data integrity. Implicit in these principles is the need that data are also complete, consistent, enduring and available.
Here are some common attitudes to data integrity. Fact or myth? What do you think?
Data integrity refers to falsified data in the pharma industry.
When we talk about data integrity, people tend to think about falsified data associated with the pharma industry. This of course is a criminal activity, but it is not the only way in which data integrity can be compromised. Data integrity is more frequently inadvertently breached in day-to-day activities. So, the statement is true, but the issue is not exclusive to the pharma industry or to the falsification of data.
Data integrity is a new requirement.
False. Data integrity is a requirement of the quality management system standard ISO 13485. Section 4.2.5 describes the need to have records that remain legible, identifiable and retrievable. Likewise, similar emphasis is placed on documents in Section 4.2.4.
Data integrity issues are found primarily in certain jurisdictions.
False. Intentional and accidental breaches to data integrity are discovered internationally. Incidents in high-income countries are reported by every regulator, for all types of products assessed, and in every country inspected.
What do I need to do to maintain data integrity?
According to the WHO guidance, “Assuring data integrity requires appropriate quality and risk management systems, including adherence to sound scientific principles and good documentation practices.” As with many quality practices, it is important that senior management are engaged and ensure that an effective data management system is in place. Data integrity principles apply throughout the whole product lifecycle, impacting both paper and electronic records. It is normal to think that strong scientific principles will ensure data integrity, but these also are insufficient. The onus falls again on senior management to create a culture of quality that embraces the ALCOA principles.
Data integrity is a very important part of doing business, and the most important step is getting ready now. Be aware, do what is required and remain vigilant!