Soapbox
Supplier Quality Considerations For Quality and Regulatory Service Providers

Outsourcing quality and regulatory functions can reduce your personnel overhead and allow the use of competent staff on an as-needed basis. Such suppliers include quality consultants providing guidance on quality management systems, regulatory affairs consultants managing regulatory strategy and submissions, outsourced quality management system functions, or contract supplier and internal auditors. Contract staff brings a new perspective, along with unique and eclectic experience to your organization. However, this approach is not without risk. By applying quality system best practices to outsourced quality and regulatory functions and performing a risk-based business assessment, you can minimize these risks. This article focuses on selection and management of quality and regulatory suppliers according to ISO 13485:2016, the European Union Medical Devices Regulation (2017/745) and FDA Regulation 21 CFR 820.

Checks and Balances

You’ve decided to outsource quality or regulatory activities to a consultant or third-party firm. While they claim relevant experience and suitable qualification, how do you, as the legal manufacturer, ensure they meet the regulatory requirements for a supplier? These organizations meet the criteria of a supplier and must be managed by your organization as such. To avoid conflict of interest, you must manage them as a supplier. You cannot allow a supplier to conduct its own selection and evaluation or even a portion thereof. This is a frequent conundrum for outsourced quality processes and one that auditors are increasingly identifying as a nonconformance. Outsourcing these, or any critical functions, carries a business risk. Therefore, I recommend leveraging the requirements for supplier controls to ensure quality, compliance and minimization of business risks.

Quality and Compliance Risk

Regardless of the type of activities you outsource to a quality or regulatory consultant, you must ensure they are qualified to provide the service and are able to meet any associated regulatory requirements. You’ve likely addressed these same concerns with other suppliers; the following are some recommendations to help you apply common supplier control measures to these unique suppliers:

Business Risk

Outsourcing quality and regulatory functions minimizes your HR burden and allows access to experienced staff when you may not have the requirements to warrant a full-time employee. However, without the proper due diligence, there are hazards. When selecting quality and regulatory contractors, don’t let your eagerness or their self-promotion rush your decision to partner with them. When selecting a regulatory or quality consultant, I recommend the following to minimize business risk:

In summary, consider applying the same resources, assessment and focus for suppliers providing quality and regulatory services as you do for contract manufacturers and other critical suppliers. The criticality of such services and growing regulations affecting supplier controls warrant the additional time and resources to do so. For more information, refer to supplier and purchasing requirements outlined in Section 7.4 of ISO 13485:2016, US Code of Federal Regulation 21 CFR 820.50, and Article 10 & Annex IX of the EU MDR.

About The Author

Exit mobile version