This week in the Guardrail, we look at mastering the FDA’s toughest safety oversight protocols -REMS.  As scrutiny intensifies, your team must move beyond simple checkboxes to build a truly resilient system.

Written by Michael Bronfman

Risk Evaluation and Mitigation Strategies, or REMS, are required by the FDA for certain drugs with serious safety concerns. The goal of a REMS program is to ensure that the benefits of a drug outweigh its risks. REMS programs can be complex and highly visible to regulators. Companies must be prepared not only to design and implement a REMS but also to demonstrate that it works.

REMS inspections are increasing in depth and frequency. Being prepared requires a clear understanding of regulatory expectations, strong operational controls, and a culture of compliance.

When a REMS Is Required

The FDA may require a REMS at the time of approval or after a drug is on the market. This decision is based on known or potential risks associated with the product.

REMS may be required when labeling alone is not enough to manage risk. Examples include drugs with serious side effects, high misuse potential, or risks related to pregnancy or long-term use Understanding when and why a REMS is required helps sponsors plan early and avoid delays.

FDA information on REMS

Key Components of a REMS Program

Not all REMS programs are the same. Some are simple, while others are complex and involve multiple stakeholders.

Common REMS components include:

• Medication guide – information provided to patients about risks
  

• Communication plan – educational outreach to healthcare providers
  

• Elements to assure safe use – such as prescriber certification, pharmacy certification, patient enrollment, or monitoring requirements
  
  

Each component must be clearly defined and supported by procedures and training.

The FDA provides REMS guidance .

Regulatory Expectations for REMS Inspections

During a REMS inspection, FDA investigators focus on whether the program is implemented as approved and whether it effectively manages risk.

Inspectors will review policies, procedures, training records, and systems used to support the REMS. They may also interview staff responsible for REMS operations.

Key expectations include clear role definitions, documented processes, and evidence of oversight. Sponsors must show that they monitor compliance and address issues promptly.

Failure to meet REMS requirements can lead to warning letters, fines, or other regulatory actions.

Documentation Is Critical

Documentation is one of the most important aspects of REMS readiness. Every part of the program must be supported by written procedures.

This includes how prescribers are certified, how patients are enrolled, how data is collected, and how compliance is monitored.

Inspectors often ask to see examples of records. Missing or inconsistent documentation is a common inspection finding.

Companies should ensure that records are complete, accurate, and easy to retrieve.

Training and Accountability

Training is a core regulatory expectation for REMS programs. Staff involved in REMS activities must understand their responsibilities.

Training records should show who was trained, when training occurred, and what content was covered. Refresher training should be provided when procedures change.

Accountability is equally important. Roles should be clearly assigned, and oversight should be documented.

Strong training programs reduce the risk of errors and inspection findings.

Monitoring and Auditing REMS Performance

Sponsors are expected to monitor REMS performance on an ongoing basis. This includes tracking compliance with program requirements and identifying trends.

Regular audits help identify gaps before they become regulatory issues. Audit findings should be documented, and corrective actions should be implemented and tracked.

FDA guidance emphasizes the importance of continuous evaluation of REMS effectiveness

Inspection Readiness Best Practices

REMS inspection readiness should be built into daily operations. Waiting for an inspection notice is too late.

Best practices include:

• Maintaining up-to-date procedures
  

• Conducting mock inspections
  

• Ensuring staff can confidently explain the program
  

Centralized documentation systems help ensure consistency and access. Leadership involvement reinforces the importance of REMS compliance.

Evolving REMS Inspection Trends

REMS inspections are becoming more detailed. Inspectors increasingly focus on how data is used to evaluate effectiveness.

They may ask how the sponsor determines whether the REMS is meeting its goals. They may also review how changes to the program are assessed and implemented.

Technology systems used to support REMS are also under greater scrutiny. Data accuracy, security, and access controls are key areas of focus.

Sponsors should be prepared to explain system validation and oversight.

Managing Third-Party Vendors

Many REMS programs rely on third-party vendors. These vendors may manage call centers, data systems, or training.

While vendors perform the work, the sponsor remains responsible. Inspectors will review vendor oversight and contracts.

Clear agreements, regular performance reviews, and documented oversight are essential. Vendor issues are a common source of REMS inspection findings.

REMS Modifications and Updates

REMS programs may need to be modified over time. Changes may be driven by new safety information or operational challenges.

Regulatory expectations for REMS modifications are strict. Changes must be reviewed and approved by the FDA before implementation unless otherwise permitted.

Sponsors should maintain clear change control processes and documentation.

Preparing for the Inspection Day

On the day of a REMS inspection, preparation makes a difference. Staff should know who will interact with inspectors and where documents are stored.

Responses should be clear and factual. If information is not immediately available, it is better to follow up than to speculate.

A calm and organized approach supports a positive inspection outcome.

Looking Ahead

REMS programs are a critical tool for managing drug safety. Regulatory scrutiny in this area will continue to increase.

Companies that invest in strong REMS design, clear documentation, and continuous monitoring are better positioned to meet expectations.

REMS compliance is not just a regulatory requirement. It is a commitment to patient safety and public trust.

Is your safety strategy ready for the spotlight? Don’t wait for a knock at the door—Contact  Metis Consulting Services to sharpen your oversight and secure your path to market

Written by Li-Anne Rowswell Mufson

This month we will discuss Audit and Inspection Readiness

Last month, we talked a little bit about People’s perception of Quality teams, inspectors, auditors, and “the police” and how that isn’t what our goals should be with Internal and External Audits. This month we are going to talk about how to get the most out of “mock Inspections” Practice Interviews and how to be ready for Audits and Inspections

Why are inspections and audits important?

Inspections and audits allow the pharmaceutical sponsor to improve its processes and demonstrate continual improvement in every department and phase of the process.

While Inspectors may come in with a stated focus—for example, they may focus on GCP—depending on what they discover, they may “Pivot” and talk extensively with another department. For example, the organization may expect them to stay in manufacturing, but they wind up focusing on Pharmacovigilance.  

So the organization needs to plan ahead so all departments are ready. 

Steps in Performing an Audit

• First step you need an Audit Calendar

• Internal, Vendors, Suppliers, and Partners: This should not necessarily be every year, but there should be training and audits on the calendar every year. Determined by the Quality Department. This Ensures compliance with regulations and objectives and shows how good you are at what you do.

• Doing actual run-throughs of interviews and inspections

• Identifying the right “Key people”

• Performing the due diligence and auditing your vendors actually ensures that they are qualified to do the job they are contracted to do. The Sponsor is the responsible party.

• Don’t just check the box.

Identifying the Right Key People

• Identifying the Right Key People—Who will be selected to be in front of an inspector? It is very important to choose key people to represent for a “mock” inspection. The same personnel who are chosen need to present for a “mock” inspection as well. If folks cannot answer questions in their immediate remit, they shouldn’t be there. But staff should understand that this is an opportunity to show how good you are at your job. 

• Key people from every department who know the documents and systems of their department. Choose people who will answer all questions honestly and directly without guessing or speculating. They should refer any questions that can't be answered to someone who can. Regulatory agencies expect employees to be trained to do this. Don't "hide the truth" because it will make you look bad. Don't state your opinion, don't volunteer information that was not asked for. "Shine"

• Such a person might be asked, “Do you know what problems exist?”

• If that person can say, “Yes, and this is how we are working on it,” you’re golden.

If the auditor has to tell you what the problem is, you are in trouble. It is an uncomfortable conversation. A 483 because the health authority had to tell you what the problem is means that communication within the organization is probably an issue as well.  

An Internal Audit should be used to identify and address problems or concerns that exist in the systems. Again, you don't want the Health Authority to be the one to let you know about any issues.  

Communication issues—Listen to your team Members if they tell you about an issue. Put it on a project plan so you’ve at least acknowledged a difficulty and put it on the “to-do List.” Sometimes, the people on the ground who are doing the work may request to have issues included in an internal audit. It may serve to open communication with the folks at the top.  

The Sponsors Responsibilities

The Sponsor is the ultimate responsible party for all activity related to their product. Often, a client will say, “My vendor does that.” And while that may be true, the Sponsor can’t abdicate that responsibility. This is when having an external body to do those kinds of audits can be really beneficial.  It promotes the relationship between the functional area or contract owner and the Quality Organization. Because the Quality Organization is now supporting the function in the preparation.  An objective 3rd party doesn’t share the organization’s bias.

Regulatory agencies prefer independent third-party audits so that the potential for conflict of interest can be eliminated. When you use the in-house team for auditing a vendor, it is like having the fox watch the hen house. If you use the same company as the vendor, you are essentially outsourcing the bias.  We do need to trust the vendors and have a collaborative attitude, BUT the oversight is also the responsibility of the Sponsor. So bringing in a 3rd party to audit vendors and even internally. This means you have a neutral Auditor. And your Quality team can be even more helpful to you. In preparation and response. 

Avoid common 483 observations like "FIRM FAILED TO FOLLOW ITS OWN SOP." Don’t let this happen in your organization. Train everyone to be familiar with all SOPs and documents relevant to the department's work. Get revisions done in a timely manner. 

Get your Documentation in order

• List all Documents relating to the audit.  Batch manufacturing records Master formula records, SOP's Method of Analysis deviations, change controls testing data, etc..

• Qualification Documents for equipment, water systems, Instruments for Quality control, Instruments for production, process validation, method validation, etc., must be reviewed before the audit. 

• Check for correctness, overwriting, and updating. Include supporting data, analytical data, and data generated from production and warehouse equipment.

• Do not throw away our original data. Print Clearly in logs and fill out all documents completely. Record data directly in the appropriate form or notebook (no napkins, scrap paper, etc.. and then transfer. if you do accidently record your data on a piece of scrap you need to staple it to the notebook or form because THAT scrap is original data. Always attach labels or printouts where indicated. Record all requested info and fill in all the blanks, If it isn't documented, it doesn't exist. 

• Use black indelible ink and write corrections clearly above or beside the line-through with an initial and date. 

• NEVER average OUT-OF-SPEC results to obtain a passing result.  Don't continue testing samples until you get enough that pass. (See Barr Case?)

• Have another person perform double checks where indicated in the batch record. These are required for critical steps, such as adding and weighing raw materials, which are historically problematic points in the process. 

• Record ID, part, lot, document, revision, and other control numbers.  If something should go wrong these numbers permit traceability. 

• NEVER Backdate or falsify records. 

Check for Calibration on Equipment

• Avoid the most Common errors

• If you are a supervisor or manager, report mistakes and encourage people to report them. Then, figure out how to correct and prevent the issue. 

• Wear your Protective gear

• Know where safety "Stop" buttons, First aid kits, eye wash, and other 

• Read your MSDS- Safety Data Sheets

• Be especially careful around Breaks when tired or when someone interrupts you. Be vigilant

• Wear appropriate clothing, sterile gowns, lab coats, hair coverings, shoe coverings, etc...

• Don't wear a lab coat or uniform while outside the building i.e. smoking

• Keep it clean

• Use validated procedures on Surfaces and equipment, keep tags, and logbook current

WASH YOUR HANDS

• Report illnesses

• Check expirations on materials

• Remove, segregate and destroy all expired materials

• Record ID, part, lot, document, revision, and other control numbers.  If something should go wrong these numbers permit traceability. 

• DO NOT bring food, drinks, gum, tobacco, or house plants into production and lab areas

Check Pest Control Devices frequently

Keep shipping and receiving and any other doors closed. Check the bottoms of outside doors for gaps. Rodents only need a 1/4-inch gap to get in.

Quality organizations are starting to become more collaborative in style rather than adversarial. So that the opportunity to outsource the audit to help the internal quality organization.  It is possible to have “practice Interviews as well.  You can work through the interview piece together without the intensity of a “mock Inspection” Coaching the interviewees is another valuable tool that an outside consultant.

Risks vs. Non-compliance of outsourcing: They may be able to demonstrate compliance, but the risks are still there. 

The biggest Risk is “You don’t know what you don’t know”

Listen to team members

Audit calendar—Internal, Vendors, Suppliers, and Partners. Not necessarily every year, but there should be training and audits on the Calendar every year. Determined by the Quality Department. This is to ensure compliance with regulations and objectives and to show them how good you are at what you do.

Importance of having an audit plan or program

[11:28] Why an external audit is important

[17:19] New trends in auditing and inspection 

[20:02] Things you should not say in an audit interview

[23:16] How do you perform an audit of your vendors?

[24:49] Risk vs non-compliances