Company: Sunrise Pharmaceutical, Inc
Your firm has not exercised appropriate controls over computer or related systems to assure that changes in master production and control records or other records are instituted only by authorized personnel [21 CFR 211.68(b)].
For example, your firm lacks systems to ensure that all electronic data generated in your Quality Control laboratory is secure and remains unaltered. All analysts have system administrator privileges that allow them to modify, overwrite, and delete original raw data files on the (b)(4) used (b)(4) in the High Performance Liquid Chromatography (HPLC) units. There are no procedures that address the security measures in place for generation and modification of electronic data files for these instruments used for raw material, in-process, finished product and stability testing. In addition, your firm’s review of laboratory data does not include a review of an audit trail or revision history to determine if unapproved changes have been made.
Your September 17, 2009 response states that you replaced the (b)(4) HPLC systems operating on (b)(4) software with (b)(4) new qualified HPLC units from (b)(4) software. This validation information will be reviewed at the next inspection. In addition, your response is inadequate because it lacks a retrospective evaluation of the data from the former HPLC units. This will prevent an alteration of data prior to implementation of your corrective actions. Further, your response does not address security procedures to ensure that the data generated using the new HPLC units is secure and remains unaltered.
This is a repeat observation from the February and August 2007 inspections.
FDA District: New Jersey District Office