Blog | The FDA Group

Data Integrity Remediation: A Quick-Guide to Investigating & Resolving Root Cause

Written by The FDA Group | November 10, 2021

As data integrity issues increasingly find their way into FDA Warning Letters and Form 483s, regulators are demanding companies determine the root cause of these problems by conducting in-depth, objective employee interviews.

This typically appears in FDA Inspectional Observations with the statement below.

“Interviews of current and former employees to identify the nature, scope, and root cause of data inaccuracies. We recommend that these interviews be conducted by a qualified third party.”

In many cases, regulators expect the scope of these investigations to encompass laboratory and production areas in order to fully explain data irregularities and the causes for them, wherever they originated.

Because of the obvious challenge of encouraging personnel to divulge information about their work environments, colleagues, and practices for fear of their jobs (or those of their peers), FDA very often states that these investigations should be performed by an independent, qualified third party.

To ensure you're selecting a genuinely qualified third party professional and are well-prepared to help them plan and conduct an effective data integrity investigation, we've laid out the essential initial steps below.

Free White Paper: Ensuring Enterprise-Wide Data Integrity in FDA-Regulated Industries

Criteria for Ensuring a Qualified Third Party Data Integrity Expert

In general, outside consultants are considered "qualified" if they meet three general conditions, which we've outlined below. Keep in mind that, like many things, each situation is different, so this is by no means a universal set of criteria. Rather, treat this as a starting point for evaluating the specific needs of your project.

1. They're independent of your organization.

The individual or team of consultants selected to conduct data integrity interviews must not be associated with your company.

  • They must also be able to assure interviewees that any statements made will be kept confidential and not shared with the company. In cases where a translator is necessary, this person must also not be associated with your company in any way, nor to any current or former employee.
  • In general, companies should dive as deep as they need to in order to ensure the individuals tasked with an investigation do not impose a conflict of interest in any way.

2. They're trained to conduct such an interview.

The person or people conducting interviews must be trained data gatherers.

  • When determining the level of training for a prospective consultant, they should have experience in interviewing and be able to make inferences from subtle cues such as body language, facial expressions, and tone.
  • They should also have experience dealing with contentious situations.

3. They're knowledgeable and aware.

In addition to demonstrating technical expertise, qualified professionals should be brought up to speed with the relevant operations of your company as well as its organizational structure.

  • This ensures interactions can be made with the appropriate sensitivities while no key people are missed in the shuffle.
  • Lastly, make sure that any issues that have previously been identified through past inspections or audits have clearly been brought to the consultant's attention and enter into the investigation appropriately.

Planning and Conducting Data Integrity Interviews

As with nearly every kind of deviation investigation, interviews need to accomplish two central goals. The first is to find discrepancies between standard processes (and expected outcomes), and those that are actually observed. The second is to reveal necessary areas for improvement across impacted processes and procedures.

In achieving these broad goals, your interview process should focus specifically on gathering relevant data and revealing unknown facts as well as the systems actually used for data capture (both official and unofficial).

In addition, a successful interview will determine whether problems were due to management pressures, inappropriate actions, or genuine lapses in procedure.

Read Also: An Ethical Framework for Enterprise-Wide Data Integrity

Use and adapt the following step-by-step guide when planning your data integrity interviews.

1. Develop a checklist of questions.

Develop separate, standard checklists of questions for identifying the nature, scope, and root cause of data inaccuracies. When done well, this goes a long way in ensuring consistency and completeness. These should include multiple types of questions (not just yes or no) and be further supplemented with any documents that can be used to support or draw issue with the matters discussed.

Specifically, the interview questions themselves should address the following subjects. (This is not an exhaustive list):

Length of employment and supervisor assignment Prior work history Current position summary Involvement in generating, reviewing, and/or influencing data
Verification of process and documentation practice knowledge and ability Training in GxP and Data Integrity specifically Employee perspective into workplace culture Routine review details
Processes by which problems are brought to, and handled by supervisors Supervisors' perceived receptiveness of reported problems Data transfer practices Employee awareness of data manipulation or deletion
Existence and use of audit trails Employee ability to manipulate/delete data or affect audit trails Knowledge and use of specific lab practices Password or login sharing
Official and unofficial documentation practices Workload amounts Awareness of incentives Management pressures

2. Set aside sufficient time and find a suitable location.

In most cases, a thorough interview should take anywhere from 30 minutes to an hour. These should be conducted in a private room where both parties feel they can have a completely confidential discussion.

Employees being interviewed should be clearly informed of the reason for the interview, as well as the assurance of confidentiality from the start.

3. Structure your sequence of questions to foster comfort and trust.

All interviews should begin with simple, easy questions to confirm the basics, such as demographic information, work history, and responsibilities, while also building rapport early on. This trust-building is critical to enabling to a more honest and open conversation about contentious subjects as the discussion progresses.

Read Also: Conducting Data Integrity Audits: A Quick Guide

Questions where details and employee observations are of significant importance should be left open-ended. A skilled interviewer will be able to naturally move to unscripted follow-up questions when necessary and pace their conversations slowly to avoid adding unneeded pressure.

In order to accurately determine a root cause, investigators must be able to understand which individuals hold the power of influence and how much influence executives and department leaders have over the actions of supervisors and frontline staff. This should be a core component of your interview.

4. Be aware of common root causes.

While this should in no way influence decisions specific to your investigation (confirmation bias can be a huge, silent problem), the following issues often lie at the heart of many data integrity problems:

  • Insufficient resources
  • A lack of robust checks and balances on systems
  • The inappropriate influence of company leaders
  • Rogue employees

Following any data integrity investigation, all responses should be stripped of personally identifiable information and analyzed into a report summarizing the key takeaways of the investigation and the root causes identified.

 

 
Ensuring Enterprise-Wide Data Integrity in FDA-Regulated Industries
 
Learn how to ensure data integrity throughout your entire organization. This free 24-page guide is filled with solutions to common compliance problems and a step-by-step process for integrating an effective control framework for data integrity.