regulations. In the EU, the EMA and MHRA provide guidance that aligns closely with ISO standards.

Objectives

• Identify applicable regulations and standards.
• Understand the implications of non-compliance.
• Establish a foundation for your QMS.

Documentation

Key documents include:

• FDA 21 CFR Part 820 (Quality System Regulation)
• ISO 9001:2015 (Quality Management Systems)
• ISO 13485:2016 (Quality Management Systems for Medical Devices)

Roles

Quality managers and regulatory affairs professionals should lead this phase, ensuring that all team members are aware of the regulatory requirements that affect their operations.

Inspection Expectations

During inspections, regulators will expect to see documented evidence of compliance with applicable regulations. This includes risk assessments and supplier evaluations that demonstrate an understanding of regulatory requirements.

Step 2: Supplier Selection and Evaluation

Once regulatory requirements are understood, the next step is supplier selection and evaluation. This process is critical for ensuring that suppliers meet quality standards and regulatory expectations.

Objectives

• Identify potential suppliers.
• Evaluate suppliers based on quality, compliance, and performance metrics.
• Establish criteria for selection.

Documentation

Documentation should include:

• Supplier qualification questionnaires.
• Performance metrics and evaluation criteria.
• Audit reports and findings.

Roles

Quality managers are responsible for developing evaluation criteria, while procurement teams should assist in identifying potential suppliers. Regulatory affairs professionals should ensure that selected suppliers comply with relevant regulations.

Inspection Expectations

Inspectors will look for documented evidence of supplier evaluations, including audit results and performance metrics. Companies should be prepared to demonstrate how they ensure supplier compliance with regulatory standards.

Step 3: Establishing Supplier Agreements

After selecting suppliers, establishing clear agreements is essential. These agreements should outline the expectations for quality, compliance, and performance.

Objectives

• Define terms and conditions of the supplier relationship.
• Ensure clarity on quality and compliance expectations.
• Establish mechanisms for monitoring supplier performance.

Documentation

Key documents include:

• Supplier contracts and agreements.
• Service level agreements (SLAs).
• Quality agreements outlining specific quality requirements.

Roles

Legal and procurement teams should collaborate with quality managers to draft agreements that meet regulatory requirements. Regulatory affairs professionals should review these agreements to ensure compliance.

Inspection Expectations

Regulatory inspectors will expect to see signed agreements that clearly outline the responsibilities of both parties. Companies should be able to demonstrate how they monitor compliance with these agreements.

Step 4: Monitoring Supplier Performance

Monitoring supplier performance is a continuous process that ensures ongoing compliance and quality. This step is vital for maintaining product integrity and regulatory compliance.

Objectives

• Establish key performance indicators (KPIs) for suppliers.
• Implement a system for regular performance reviews.
• Identify and address performance issues promptly.

Documentation

Documentation should include:

• Performance review reports.
• Corrective action plans for non-compliance.
• Records of communications with suppliers regarding performance issues.

Roles

Quality managers should lead the performance monitoring process, while procurement teams should assist in gathering data. Regulatory affairs professionals should ensure that monitoring processes align with regulatory expectations.

Inspection Expectations

Inspectors will look for evidence of ongoing performance monitoring, including documented reviews and corrective actions taken in response to performance issues. Companies should be prepared to demonstrate how they maintain supplier quality over time.

Step 5: Conducting Supplier Audits

Regular supplier audits are essential for ensuring compliance with quality standards and regulatory requirements. Audits provide an opportunity to assess supplier capabilities and identify areas for improvement.

Objectives

• Evaluate supplier compliance with quality standards.
• Identify potential risks in the supply chain.
• Ensure continuous improvement in supplier performance.

Documentation

Key documents include:

• Audit plans and schedules.
• Audit reports and findings.
• Follow-up action plans for addressing audit findings.

Roles

Quality managers should lead the audit process, while cross-functional teams may assist in conducting audits. Regulatory affairs professionals should ensure that audit processes comply with regulatory standards.

Inspection Expectations

Inspectors will expect to see documented evidence of supplier audits, including findings and corrective actions taken. Companies should be prepared to demonstrate how they address audit findings and implement improvements.

Step 6: Managing Non-Conformances and Corrective Actions

Non-conformances can arise at any stage of the supplier management process. Effectively managing these issues is critical for maintaining compliance and ensuring product quality.

Objectives

• Identify and document non-conformances.
• Implement corrective actions to address issues.
• Prevent recurrence of non-conformances.

Documentation

Documentation should include:

• Non-conformance reports.
• Corrective action plans.
• Records of follow-up actions and effectiveness checks.

Roles

Quality managers should lead the non-conformance management process, while cross-functional teams may assist in implementing corrective actions. Regulatory affairs professionals should ensure that corrective actions align with regulatory requirements.

Inspection Expectations

Inspectors will look for documented evidence of non-conformance management, including reports and corrective actions taken. Companies should be prepared to demonstrate how they prevent recurrence of issues.

Step 7: Continuous Improvement and Training

The final step in establishing a compliant supplier and third-party quality management system is to foster a culture of continuous improvement and training. This ensures that the organization remains compliant and responsive to changing regulations and market needs.

Objectives

• Promote a culture of quality and compliance.
• Provide ongoing training for employees on supplier management processes.
• Continuously evaluate and improve supplier management practices.

Documentation

Key documents include:

• Training materials and records.
• Continuous improvement plans.
• Feedback mechanisms for employees and suppliers.

Roles

Quality managers should lead the continuous improvement initiatives, while all employees should be encouraged to participate in training and feedback processes. Regulatory affairs professionals should ensure that training aligns with regulatory expectations.

Inspection Expectations

Inspectors will expect to see evidence of a culture of continuous improvement, including training records and documented feedback mechanisms. Companies should be prepared to demonstrate how they adapt their processes in response to feedback and regulatory changes.

Conclusion

Establishing a lean but compliant supplier and third-party quality management system is essential for small and mid-sized companies operating in regulated industries. By following these steps, organizations can ensure that they meet regulatory requirements while maintaining high standards of quality and compliance. Continuous monitoring, evaluation, and improvement of supplier relationships will not only enhance product quality but also foster trust and collaboration with suppliers.