Risk assessment vs GMP

Updated: Jun 26

Just a quick thought here.

Risk management, compiling risk assessments are with us for a while now. The first version of ICH Q9 was issued in 2005.

Almost all our processes are (or should be) established based on risk assessment, that can be either simple (like a classification of a deviation or a complaint) or complex (FMEA-analysis of a manufacturing process). However, let's not forget one simple, but very important element:

You cannot assess any risk of GMP requirement to omit it. GMP requirements are unavoidable if your process is in scope.

Recent Posts

See All

Deviation management - how to capture our event the best way?

Several different guidelines, laws are mentioning requirements about deviation management, but mostly about the essence of classification, identifying the true root cause, etc. But it's not described

Periodic reviews - what to use them for?

PQR, QMR, CPV, VMP/VMR, Computerized systems' periodic reviews, who knows what else...we manufacture these summaries, but exactly what for? Sometimes we spend so much time compiling these documents th

Retest period or shelf-life?

I just received a question that looked easy at first, but the laws and guidelines are surprisingly vague on this topic. The question is: how to choose between retest period and shelf-life for an API (