In February 2025 the FDA posted warning letters to two Indian API manufacturers, Tyche Industries and Jagsonpal Pharmaceuticals, citing pervasive questionable data integrity practices in QC laboratories and manufacturing.
Audit trails were turned off. Test injections were deleted. The same employee account logged in across analyst, reviewer, and approver roles. None of it would have survived a working Data Integrity Risk Assessment Template.
| Key Takeaways |
| A 2026 Data Integrity Risk Assessment Template scores every GxP record system against the nine ALCOA+ attributes (Attributable, Legible, Contemporaneous, Original, Accurate, Complete, Consistent, Enduring, Available) defined in PIC/S PI 041-1 and reinforced in FDA, MHRA, and WHO guidance. |
| FDA CDER warning letters jumped 50% in fiscal year 2025, hitting 327 letters. Roughly 60-66% cite data integrity findings such as missing audit trails, shared logins, deleted test injections, and uncontrolled data manipulation. India accounted for 60% of those data integrity citations, China 21%, and the United States 10%. |
| The four anchor references are FDA Guidance for Industry: Data Integrity and Compliance with Drug CGMP (Dec 2018), 21 CFR Part 11 Electronic Records and Signatures, PIC/S PI 041-1 Good Practices for Data Management and Integrity (effective July 1, 2021), and the MHRA GxP Data Integrity Guidance (March 2018). EU GMP Annex 11 covers computerised systems. |
| A working Data Integrity Risk Assessment Template covers six record-system layers: paper records, hybrid systems, standalone computerised systems, networked computerised systems, cloud and SaaS, and AI / machine learning models that consume or produce GxP data. |
| ICH Q9(R1) Quality Risk Management took effect on July 26, 2023. It introduced explicit guidance on subjectivity, formality, and risk-based decision making — three weaknesses MHRA inspectors cited as the root cause of nearly 40% of all critical and major GMP deficiencies between 2016 and 2023. |
| Score every system on inherent risk (before controls) and residual risk (after controls). The template should drive a remediation plan, an audit trail review schedule, and a quarterly report to the quality management review meeting. Without that closure loop, the template is paperwork. |
| Build the template around three risk-treatment tiers: prevent (validation, access control, system design), detect (audit trail review, periodic review, internal audit), and respond (deviation, CAPA, breach notification). Map each ALCOA+ attribute to at least one control in each tier. |
FDA Center for Drug Evaluation and Research warning letters jumped 50% in fiscal year 2025, hitting 327. Roughly 60-66% cite data integrity findings.
MHRA inspectors traced nearly 40% of all critical and major GMP deficiencies between 2016 and 2023 to data integrity lapses. The Data Integrity Risk Assessment Template is the single most asked-for artifact in US GxP quality systems for 2026.
PIC/S released PI 041-1, Good Practices for Data Management and Integrity in Regulated GMP/GDP Environments, on July 1, 2021. ICH brought Q9(R1) Quality Risk Management into force on July 26, 2023.
The FDA published its final Data Integrity and Compliance with Drug CGMP guidance in December 2018. A 2026 Data Integrity Risk Assessment Template has to align with all three or it will not survive an FDA pre-approval inspection.
This playbook walks the Data Integrity Risk Assessment Template end to end for US-regulated pharmaceutical, biotech, and medical-device quality teams.
It covers the ALCOA+ attribute set, the six record-system layers a US GxP program must score, the seven-step assessment methodology, the audit trail review schedule, and the pitfalls that show up in every recent warning letter we have read.
Figure 1. The nine ALCOA+ attributes the Data Integrity Risk Assessment Template must score on every GxP record system.
What a Data Integrity Risk Assessment Template Actually Is
A Data Integrity Risk Assessment Template is the structured worksheet a US GxP quality team uses to identify, score, and treat the risks to electronic and paper records that drive product quality and patient safety decisions.
It links the data integrity risk assessment methodology to the actual systems in scope and produces a remediation plan and a recurring control test schedule.
Three properties separate a working Data Integrity Risk Assessment Template from a checklist exercise. It scores every system against ALCOA+, not just against 21 CFR Part 11. It produces inherent and residual risk numbers that drive a remediation backlog.
It feeds the quality management review meeting on a defined cadence rather than living in a SharePoint folder. FDA, MHRA, EMA, and PIC/S inspectors all check the third property first.
Scope spans paper batch records, hybrid systems, standalone laboratory instruments, networked manufacturing execution systems, validated SaaS quality platforms, and AI or machine learning models that consume or produce GxP data.
The computer system validation risk assessment example library shows how the template fits inside the GAMP 5 second-edition lifecycle for each system class.
How a Data Integrity Risk Assessment Template Differs From a Validation Plan
| Attribute | GAMP 5 validation plan | Data Integrity Risk Assessment Template |
| Direction | Snapshot at qualification | Continuous program tied to ALCOA+ scoring and quality review |
| Frequency | At go-live and major change | Annual full refresh; triggered review at every change, deviation, or audit finding |
| Scope | Functional, design, installation, operational, performance qualification | Inherent and residual risk on all nine ALCOA+ attributes across the data lifecycle |
| Trigger | URS, FRS, change control | Audit trail anomaly, deviation, vendor breach, FDA observation, new system, cloud migration |
| Owner | Validation lead | Quality owner with named system stewards and audit trail review roles |
| Reference | GAMP 5 V-model, 21 CFR Part 11 sections | FDA Data Integrity Guidance 2018, PIC/S PI 041-1, MHRA GxP DI Guidance, EU Annex 11, ICH Q9(R1) |
The Nine ALCOA+ Attributes Inside a Data Integrity Risk Assessment Template
ALCOA originated as five attributes (Attributable, Legible, Contemporaneous, Original, Accurate) in FDA inspector training in the 1990s. PIC/S, MHRA, and WHO added four more (Complete, Consistent, Enduring, Available) to form ALCOA+.
Every Data Integrity Risk Assessment Template should score every record system against all nine. Skipping any attribute hides the most common warning-letter findings.
Attributable in the Data Integrity Risk Assessment Template
Attribution names the actor behind every action: the analyst who weighed, the QA who reviewed, the manager who released. Shared logins, generic admin accounts, and uncontrolled service accounts break the chain.
The FDA’s December 2018 Data Integrity guidance answers Question 7 with a flat prohibition on shared accounts. Inside the template, score unique credentials, password policy, account-lifecycle controls, and the privileged access review cycle.
Legible in the Data Integrity Risk Assessment Template
Anyone reading the record decades later still has to read it. For paper that means indelible ink and bound notebooks.
For electronic, it means human-readable audit trail rendering, exported PDFs that match the source on a byte-for-byte basis, and migration plans for retiring instrument software before its vendor exits the market.
The template scores rendering format, archive readability test cadence, and PDF export validation.
Contemporaneous in the Data Integrity Risk Assessment Template
Time-of-activity is the only acceptable time-of-record. Backdated weighings, post-hoc batch record entries, and analyst notebooks completed days after the test all fail.
The score column captures time-source synchronization (NTP), clock-drift monitoring, and the median delay between activity timestamp and entry timestamp during periodic review. A single backdated entry usually drags the whole system into amber.
Original in the Data Integrity Risk Assessment Template
The first capture of an observation is the original. For chromatography, that is the raw data file plus the audit trail. Photocopies, transcriptions, and re-injections after deletion are not originals. The PIC/S PI 041-1 raw-data definition is the working test.
Score the system on raw-data location, raw-data backup verification, and the prohibition on test injection deletion before the official run.
Accurate in the Data Integrity Risk Assessment Template
Records lie when calibration drifts and analysts close OOS investigations the inspector would have left open. Calibration drift, untrended analytical deviations, and ignored out-of-specification investigations all break accuracy.
Inside the template, scoring covers calibration interval compliance, OOS investigation closure rate, and the rate of corrected entries per 1,000 records (the GAMP 5 second-edition metric most US quality programs now adopt).
Complete in the Data Integrity Risk Assessment Template
All data, including repeats, failures, and metadata, must be retained. Deleting failed test injections is the single most common warning-letter finding in 2024 and 2025.
Score the system on retention rule coverage, deletion-prevention controls, and audit trail review for any deletion event in the last review cycle.
Consistent in the Data Integrity Risk Assessment Template
Sequence integrity is the second-order test inspectors apply when the metadata looks too clean.
Reordered chromatograms, renumbered batch records, and inconsistent date formats all flag inconsistency to anyone reading the audit trail. Sequence enforcement, datestamp standardization to ISO 8601, and the count of audit trail gaps detected during the last periodic review carry the score.
Enduring in the Data Integrity Risk Assessment Template
The retention clock starts on day one and runs through audit, distribution, and recall windows.
Thermal-paper printouts, expired magnetic backups, and orphaned vendor SaaS data are the failures we see most.
Storage medium, backup verification cadence, and the documented retention plan against the regulatory minimum drive the score (FDA: typically one year past expiry plus distribution; ICH: per submission requirements).
Available in the Data Integrity Risk Assessment Template
An inspector arrives with a list of batches and expects every record back inside 24 hours. Air-gapped archives, dead vendor systems, and undocumented restore procedures all fail.
Restore time test results, the inspection-readiness drill cadence, and the documented retrieval procedure with a named owner sit in the score column. The MHRA standard is a 24-hour retrieval window.
Figure 2. The CDER warning letter trend that pushed the Data Integrity Risk Assessment Template to the top of every 2026 quality plan.
Standards Stack Anchoring a Data Integrity Risk Assessment Template
A Data Integrity Risk Assessment Template that cites no standards is just a worksheet. Five references do most of the heavy lifting in 2026.
US GxP firms layer a sixth (GAMP 5 second edition) for computerised system specifics. The 2018 FDA guidance is the answer-key for what an inspector expects to see during a CGMP inspection.
FDA Data Integrity Guidance Inside the Data Integrity Risk Assessment Template
The FDA Guidance for Industry: Data Integrity and Compliance with Drug CGMP was finalized in December 2018 as a Q&A document covering 18 questions on shared accounts, audit trail review, hybrid systems, electronic copies, and CAPA.
Map each Q&A to a row in the template so the FDA inspector can see the alignment without prompting.
21 CFR Part 11 Inside the Data Integrity Risk Assessment Template
21 CFR Part 11 Electronic Records and Signatures sets the legal floor for electronic records used to satisfy a predicate rule under FDA jurisdiction.
The FDA’s 2003 Scope and Application guidance still narrows enforcement, but the underlying rule binds. Score the system on validation status, audit trail capability, electronic signature linkage, and copy generation. Most modern warning letters cite Part 11 indirectly through the predicate rule.
PIC/S PI 041-1 Inside the Data Integrity Risk Assessment Template
PIC/S PI 041-1 is the most prescriptive global guidance and the one MHRA, EMA, Health Canada, and TGA inspectors cite most often. Sixty-three pages cover paper, hybrid, and computerised systems with explicit examples and good and poor practice tables.
The Data Integrity Risk Assessment Template should pull risk-scoring criteria directly from PI 041-1 sections 8 (paper) and 9 (computerised).
MHRA GxP Data Integrity Guidance Inside the Data Integrity Risk Assessment Template
The MHRA GxP Data Integrity Guidance, Revision 1, March 2018 reads as a working-level companion to PI 041-1. It introduced the data lifecycle model (Generate, Process, Review, Reporting, Distribution, Archive, Retrieve, Destroy) most US GxP templates now use. Score every system on each lifecycle stage; that is where the MHRA inspectors look first.
EU GMP Annex 11 and ICH Q9(R1) Inside the Data Integrity Risk Assessment Template
EU GMP Annex 11 covers computerised systems and is the working baseline for any US firm shipping into the EU or partnering with EU CDMOs.
ICH Q9(R1) Quality Risk Management took effect on July 26, 2023, adding explicit sections on subjectivity, formality, and risk-based decision making. Pull the methodology language for the template directly from ICH Q9(R1).
The Six Record-System Layers a Data Integrity Risk Assessment Template Must Score
Group every GxP record system in scope into one of six layers. Each layer has a different inherent risk profile, a different control catalog, and a different inspection focus. The Data Integrity Risk Assessment Template needs a sub-worksheet per layer, with shared ALCOA+ scoring across all six.
| Layer | Examples | Inherent risk drivers | Anchor control |
| Paper records | Batch records, logbooks, lab notebooks | Backdating, missing pages, illegible entries, transcription errors | Bound, page-numbered, ink-only forms; second-person witness on critical entries |
| Hybrid systems | Paper printouts of HPLC/GC results signed and filed | Loss of audit trail, transcription errors, ambiguous originality | Retain electronic raw data; cross-reference paper with file ID and audit trail |
| Standalone computerised | QC instruments, lab balances, photometers | Clock manipulation, deletion of injections, shared logins | Unique logins, IT-managed time sync, two-stage data review with audit trail check |
| Networked computerised | LIMS, MES, ERP, eQMS, eBR systems | Configuration drift, segregation of duties, change control gaps | Validated change control, periodic review, role-based access matrix tested annually |
| Cloud and SaaS | Validated cloud LIMS, eTMF, document management | Vendor lock-in, data residency, breach response, data export | Vendor SOC 2 Type II + qualification; documented exit and data extraction plan |
| AI / ML on GxP data | Models for visual inspection, deviation triage, demand forecasting | Drift, training-data lineage, explainability, prompt-injection on LLMs | Model risk inventory, training-data audit trail, human-in-the-loop gating, ICH Q9(R1) formality scoring |
How to Run the Data Integrity Risk Assessment Template, Step by Step
The Data Integrity Risk Assessment Template runs as a seven-step cycle that mirrors ICH Q9(R1) Quality Risk Management and ISO 31000:2018.
Each step has an artifact, a named owner, and a defined input to the next step. The cycle is continuous; the steps below describe one full pass through one system.
Step 1 of the Data Integrity Risk Assessment Template: Establish Context
Set scope, regulatory perimeter (FDA, EMA, MHRA, PMDA, ANVISA), the system layer, the data lifecycle stages in scope, and the named owners.
The first step in the risk management process is always context. For the template, the context page lists the system steward, the QA approver, the IT system owner, and the regulatory predicate rules the system supports.
Step 2 of the Data Integrity Risk Assessment Template: Map the Data Flow
Document the data lifecycle in MHRA terms: Generate, Process, Review, Reporting, Distribution, Archive, Retrieve, Destroy. Mark every transition between systems, every human review, and every export.
Most data integrity gaps live at the transition points, not inside the application. Tools like a risk assessment flowchart make the diagram inspector-friendly.
Step 3 of the Data Integrity Risk Assessment Template: Identify Risks Against ALCOA+
For every transition, walk all nine ALCOA+ attributes and produce a candidate risk list. PIC/S PI 041-1 Annex 1 gives example failure modes. The MHRA blog post archive provides worked examples of each attribute breaking.
Approaches and tools for risk identification cover bowtie, FMEA, and structured what-if technique; FMEA is the most common in US GxP programs.
Step 4 of the Data Integrity Risk Assessment Template: Score Likelihood and Impact
Score each risk on likelihood and impact using a calibrated scale (5×5 or 3×3 per ICH Q9(R1) formality guidance).
Anchor impact bands to patient safety, product quality, and regulatory exposure. Qualitative and quantitative risk assessment both have a place; FMEA RPN scoring works for most computerised systems and a simple severity score works for paper.
Step 5 of the Data Integrity Risk Assessment Template: Evaluate Against Risk Appetite
Compare each scored risk to the documented quality risk appetite. Anything red goes to a remediation plan. Anything amber requires evidence of compensating controls. Anything green is monitored.
The risk appetite statements examples most pharma boards now adopt include explicit data integrity lines: zero tolerance for shared analyst logins, zero tolerance for deleted injections, defined tolerance for paper-only legacy systems pending migration.
Step 6 of the Data Integrity Risk Assessment Template: Treat Risks
Apply three treatment tiers in sequence: prevent (validation, access control, system design), detect (audit trail review, periodic review, internal audit), and respond (deviation, CAPA, breach notification).
The Data Integrity Risk Assessment Template treatment plan should reference 21 CFR Part 11 sections, PIC/S PI 041-1 paragraphs, or MHRA guidance pages so the audit trail is portable. How to mitigate risk lays out the decision sequence.
Step 7 of the Data Integrity Risk Assessment Template: Monitor and Recalibrate
Set key risk indicators for every red risk and every Tier 1 control. Report quarterly to the quality management review. Recalibrate after every material deviation, audit finding, or system change. The key risk indicators dashboard is the artifact the quality council sees; build it for them, not for the validation team.
Figure 3. The eight findings every Data Integrity Risk Assessment Template should be designed to catch before an inspector does.
Key Risk Indicators for a Data Integrity Risk Assessment Template
KRIs are the leading indicators that move before an FDA observation. A 2026 Data Integrity Risk Assessment Template should track at least one KRI per ALCOA+ attribute, refresh weekly or monthly, and report quarterly to the quality management review.
The KRI table below is the floor, not the ceiling. How to develop key risk indicators sets out the construction logic; thresholds come from internal loss history and regulator deficiency reports.
Sample KRI Table for a Data Integrity Risk Assessment Template
| ALCOA+ attribute | KRI | Frequency | Amber threshold |
| Attributable | Shared / generic logins detected (count) | Weekly | > 0 |
| Legible | Audit trail rendering test failures per quarter | Quarterly | > 0 |
| Contemporaneous | Median delay between activity and entry timestamp (minutes) | Monthly | > 60 minutes for critical steps |
| Original | Test injections deleted before run completion (count) | Weekly | > 0 |
| Accurate | Out-of-specification investigations open > 30 days | Monthly | > 0 |
| Complete | Audit trail deletion events in the last review cycle | Monthly | > 0 |
| Consistent | Audit trail sequence gaps detected per system per quarter | Quarterly | > 0 |
| Enduring | Backup restore test failures per quarter | Quarterly | > 0 |
| Available | Median electronic record retrieval time during inspection drill | Quarterly | > 24 hours |
| Cross-cutting | Days since last documented audit trail review per system | Monthly | > 90 days |
US Enforcement Landscape Driving the Data Integrity Risk Assessment Template
FDA enforcement now drives the timeline of the Data Integrity Risk Assessment Template. CDER warning letters jumped 50% in fiscal year 2025 to 327.
Roughly 60-66% cite data integrity findings such as missing audit trails, shared logins, and deleted laboratory injections. The FDA Warning Letters database is the standing reference.
A PubMed analysis of 1,766 FDA warning letters from 2016 to 2023 found India accounted for 60% of data integrity citations, China 21%, and the United States 10%. The geography matters because it shapes the audit-readiness expectations US sponsors place on offshore CDMOs and API suppliers.
Figure 4. Where US-bound drug sites get Data Integrity Risk Assessment findings — driving CDMO oversight scope.
FDA Inspection Focus Inside the Data Integrity Risk Assessment Template
FDA inspectors run a four-question test against any computerised system: who can change the data, what gets recorded when they do, who reviews the record, and how does the firm catch unauthorized changes.
The Data Integrity Risk Assessment Template should produce a one-page answer to each question per system. The 2018 FDA guidance Question 5 makes audit trail review a CGMP requirement under 21 CFR 211.180(c) and 211.194(a).
MHRA and PIC/S Focus Inside the Data Integrity Risk Assessment Template
MHRA inspectors lean on the data lifecycle model and the system intrinsic security tests. PI 041-1 inspectors look for evidence the firm itself catches its own integrity gaps, not just whether the inspector finds them.
Score the template’s own self-detection rate as a meta-KRI: how many findings did the template surface in the last 12 months that the firm closed before any inspector arrived?
CDMO and Vendor Oversight Inside the Data Integrity Risk Assessment Template
Most US sponsors now extend the Data Integrity Risk Assessment Template to every Tier 1 CDMO and software vendor. The how to manage third-party risk pattern translates directly: a sponsor questionnaire, a sample audit trail review, a documented quality agreement that cites ALCOA+, and an annual on-site or remote audit. CDMOs in India and China should be scored on ICH Q9(R1) formality given the geography of recent warning letters.
Where Data Integrity Risk Assessment Template Programs Stall (And the Fixes That Work)
Most US Data Integrity Risk Assessment Template programs do not fail on framework choice.
They fail on execution: stale system inventories, audit trails that are turned on but never reviewed, paper hybrids treated as low-risk because they are old, and KRIs that no one reads. The Challenges table below captures what we see across US client engagements and the fixes that worked.
| Challenge | Root cause | Remedy |
| System inventory missing the standalone instruments | QC managed locally, not entered in the eQMS | Run a physical walk-down of every QC bench and add every analytical instrument to the inventory; recertify quarterly |
| Audit trails turned on, never reviewed | No defined review owner or cadence | Assign a named system reviewer; set monthly cadence for critical systems; document each review in the eQMS |
| Hybrid systems scored low because paper looks safe | Familiarity bias from analysts who grew up on paper | Re-score hybrids on Original and Complete attributes; most fail; treat the printed copy as a derivative, not a record |
| Shared analyst logins on legacy instruments | Vendor software does not support unique users | Add an upstream sign-in workstation; raise the residual risk; build a vendor-pressure plan tied to the next instrument refresh |
| KRIs no one reads | Built for the validation team, not the quality council | Strip to 8-12 indicators with amber thresholds tied to patient-safety impact; show movement, not absolute level |
| No formality assessment under ICH Q9(R1) | Template predates the 2023 revision | Add a formality column: low / medium / high; document the rationale; tie to the size and complexity of each system |
| CDMO vendor audit trail review never happens | Sponsor relies on the CDMO self-assessment | Add a sample audit trail review to every annual CDMO audit; pull 5 random batches and walk the lifecycle |
| Cloud SaaS scored as networked computerised | Inventory predates cloud migration | Add a SaaS-specific worksheet covering data residency, vendor SOC 2 Type II, breach notification, exit and extraction plan |
Where the Data Integrity Risk Assessment Template Is Heading: 2026 to 2028
Three shifts will rewrite the Data Integrity Risk Assessment Template playbook over the next 24 months. Each is already visible in 2025 enforcement and in PIC/S, ISPE, and PDA technical reports. We expect each to land hard in 2026 and accelerate through 2027.
Shift One: AI / ML Models Become a First-Class Layer in the Data Integrity Risk Assessment Template
AI in pharma is no longer pilot territory. ISPE GAMP published the GAMP AI Concept Paper and the FDA released the Considerations for the Use of Artificial Intelligence to Support Regulatory Decision-Making for Drug and Biological Products draft guidance in January 2025. Both pull AI inside the existing GxP risk perimeter.
Every Tier 1 US Data Integrity Risk Assessment Template will score AI on its own dedicated worksheet by 2027.
Training-data lineage, model versioning, drift monitoring, prompt-injection defenses for LLMs, and human-in-the-loop gating belong on the worksheet as named controls. The 2018 FDA Q&A guidance does not yet cover any of those vectors directly.
Shift Two: Continuous Audit Trail Review Replaces Periodic Sampling in the Data Integrity Risk Assessment Template
Manual quarterly audit trail review cannot keep pace with the volume of events networked systems generate. Vendors are shipping continuous audit trail analytics with anomaly detection and exception alerting.
Expect the Data Integrity Risk Assessment Template to require a continuous review platform on every Tier 1 system by 2028, with the periodic manual review reserved for sampling and trend confirmation.
Shift Three: ICH Q9(R1) Formality Becomes the Methodology Default for the Data Integrity Risk Assessment Template
ICH Q9(R1) introduced explicit guidance on subjectivity, formality, and risk-based decision making. Inspectors are starting to ask for evidence that the template’s methodology matches the system’s complexity.
Expect every 2027 Data Integrity Risk Assessment Template to carry a formality column and a documented rationale per system. Low-formality scoring on a critical system will draw a 483 observation.
Frequently Asked Questions About the Data Integrity Risk Assessment Template
How does a Data Integrity Risk Assessment Template fit inside an existing GxP quality system?
It plugs into the same governance as deviation, CAPA, change control, and validation. Same approver pool, same management review cadence, same documentation hierarchy under the QMS.
Build the Data Integrity Risk Assessment Template as a structured input into the annual product quality review and the management review, not as a parallel artifact. The integrated risk management approach pattern keeps it inside one operating model.
What are the most common challenges in implementing a Data Integrity Risk Assessment Template?
Five recur across US engagements: a system inventory that misses standalone QC instruments, audit trails reviewed by no one, paper hybrids scored too low, KRIs nobody reads, and methodology that ignores the ICH Q9(R1) formality guidance. Each shows up across both FDA and MHRA deficiency reports.
The fix in every case is to name an owner, set a cadence, anchor scores to patient-safety impact, and report movement quarterly to the quality management review.
Treating the Data Integrity Risk Assessment Template as a continuous program rather than an annual artifact closes most of the gaps before an inspector arrives.
Where Does the Data Integrity Risk Assessment Template Align With FDA, MHRA, and PIC/S Expectations?
By scoring every system against the nine ALCOA+ attributes and citing the FDA Q&A 2018, PIC/S PI 041-1, and MHRA GxP DI Guidance 2018 in the methodology page. Inspectors from any of the three regulators read the same column headers and walk the same data lifecycle stages.
EU GMP Annex 11 covers the computerised-system specifics. ICH Q9(R1) sets the methodology language. 21 CFR Part 11 covers the electronic records and signatures floor under FDA jurisdiction. Cite all five in the Data Integrity Risk Assessment Template’s reference page.
What industry standards should a Data Integrity Risk Assessment Template cite?
Five baseline references for the Data Integrity Risk Assessment Template: FDA Data Integrity and Compliance with Drug CGMP Guidance (Dec 2018), 21 CFR Part 11, PIC/S PI 041-1 (Jul 2021), MHRA GxP Data Integrity Guidance (Mar 2018), and ICH Q9(R1) Quality Risk Management (Jul 2023). All five sit inside the inspection-readiness binder of any modern US program.
For computerised systems add EU GMP Annex 11 and ISPE GAMP 5 second edition. For analytical instruments add USP <1058> Analytical Instrument Qualification. WHO TRS 1033 Annex 4 covers good data and record management practices and translates well to CDMO oversight in emerging markets.
How often should a Data Integrity Risk Assessment Template be refreshed?
Treat it as continuous. Refresh the system inventory quarterly. Refresh KRIs weekly or monthly. Refresh the full risk register annually as part of the quality management review. Trigger an out-of-cycle refresh after any material deviation, regulatory finding, change control of high impact, vendor breach, or new AI deployment. The how often should risk assessments be conducted cadence menu translates to GxP without modification.
Hybrid Paper-and-Electronic Systems Inside the Data Integrity Risk Assessment Template
Treat the electronic raw data as the original and the printed sheet as a derivative. Score the system on the audit trail behind the printed result, the linkage between the paper and the file, and the retention plan for the electronic source.
Most US firms score hybrids too low because the process looks like legacy paper. MHRA inspectors have made the same point repeatedly: PI 041-1 makes clear the electronic capture sits inside scope and the paper alone is not enough. The 2018 FDA Q&A reinforces the same expectation under 21 CFR 211.180 and 211.194.
Applying the Data Integrity Risk Assessment Template to AI and Machine Learning Systems
Score AI systems on training-data lineage, model versioning, drift monitoring, output explainability, prompt-injection defenses for LLMs, and human-in-the-loop gating.
The FDA’s January 2025 AI guidance for regulatory decision-making and the ISPE GAMP AI Concept Paper give the working framework. Add an AI-specific worksheet to the Data Integrity Risk Assessment Template; do not try to force AI into the existing networked computerised worksheet.
Who owns the Data Integrity Risk Assessment Template inside a US pharma company?
The head of quality assurance typically owns the artifact. The validation lead and the IT system owner co-own the system-level worksheets. The site quality director signs off on the residual risk acceptance.
The quality management review committee receives the quarterly report. Single-throat-to-choke ownership at the QA leadership level is the structural pattern that separates working programs from stalled ones.
Where to Start Your Data Integrity Risk Assessment Template
If your last Data Integrity Risk Assessment Template is older than 12 months, missing the AI / ML layer, or built before ICH Q9(R1) took effect in July 2023, that is the place to start.
Pick the highest-patient-safety-impact system, run the seven-step cycle on it, prove the artifact moves the quality council conversation, then scale across the rest of the inventory. Inspectors notice the difference inside one quarter.
riskpublishing.com publishes practitioner playbooks, templates, and worked examples for US risk owners. See how to conduct a risk assessment, guide to quality risk management, and the risk assessment templates library. For advisory work on a specific Data Integrity Risk Assessment Template program, contact us or read more about the practice.
Chris Ekai is a Risk Management expert with over 10 years of experience in the field. He has a Master’s(MSc) degree in Risk Management from University of Portsmouth and is a CPA and Finance professional. He currently works as a Content Manager at Risk Publishing, writing about Enterprise Risk Management, Business Continuity Management and Project Management.