Hello,
I agree with Victor on the approach to alternatives beyond yourself going out to visit a supplier that is considered a higher risk supplier for your organisation.
- Require them to have certification to ISO 13485:2016 by an accredited Registrar - this may not be ideal because this is a general QMS audit and not specific to your product or processes
- Have a consulting company (third party) conduct the supplier audit for you - this does have a cost though will not take your time away from the office
- Conduct a remote audit such as a desktop audit reviewing their documentation and records - this may not be ideal especially if they are doing manufacturing with special processes or key processes or making a finished medical device for you (Contract Manufacturer)
- Have them conduct a "self-audit" by completing a questionnaire that you have (this is a type of remote audit that they complete and then you review) or request records of their own internal audits - you would have to "trust" them on the information
You can always not perform audits of your crucial (higher risk) suppliers with a documented rationale. However, an FDA investigator or Notified Body auditor may decide that is not sufficient control and they will go audit/inspect your supplier for you (with a Notified Body at your expense as well).
------------------------------
Richard Vincins RAC
Vice President Global Regulatory Affairs
------------------------------
Original Message:
Sent: 11-Sep-2018 01:58
From: Evangelos Tavandzis
Subject: Supplier Audits
I think the on site audit for high risk MD is the best way, I don´t recommend no other option .
Based upon EU rules (MDD) the EU Notified Bodies can may perform unannounced audit at the suppliers premises as well.
------------------------------
Evangelos Tavandzis
Praha
Czech Republic
Original Message:
Sent: 10-Sep-2018 12:46
From: Anonymous Member
Subject: Supplier Audits
This message was posted by a user wishing to remain anonymous
Hi All,
I'm curious if anyone has used an alternate approach to on-site supplier audits for high risk suppliers. Although the manufacturer is responsible for having procedures in place for purchasing controls and supplier evaluations, higher risk suppliers may not require on-site audits if that's not what your procedures state. There may be a difference between this requirement for EU vs. US, but this question is aimed at US FDA purchasing control regulations only. On-site audits may be the easiest method to evaluate a high risk suppliers, but requires more resources. Are there other methods to evaluate high risk suppliers differently than low risk suppliers besides an on-site audit?
Thanks