Home » FDA » Guideline » ALCOA to ALCOA Plus and Data integrity

ALCOA to ALCOA Plus and Data integrity

Data integrity is a key approach in the pharmaceutical quality control system. ALCOA is (Attributable, Legible, Contemporaneous, Original, and Accurate) was introduced in the 1990s for ensuring the pharma industry as a framework for data integrity and good documentation practice(GDP). Then further introduced ALCOA plus is (Complete, Consistent, Enduring and Available) Currently used by the FDA, WHO, PIC/S, and GAMP. So overtime periods, data integrity concepts expand from ALCOA to ALCOA plus for ensuring data security and integrity ( data protection) are observed and maintained.

What is data integrity?

Data integrity is the key element in pharmaceuticals to ensure products meet all the quality standard parameters up to the end of products. It is the process of maintaining and assurance of promise and consistency of data over its whole life cycle.

ALCOA and ALCOA plus are related to data, either on paper or electronic form, and defined by FDA guidance.

ALCOA in Pharmaceuticals:

ALCOA has five basic principles (Attributable, Legible, Contemporaneous, Original, and Accurate) to stop data integrity issues.

ALCOA to ALCOA plus chart


The collected data must be attributed, who performs the action and when, if a record is changed, who did it and why? For example, when during conducting of validation, the test result must be dated, and the initial should be done by the person involved in conducting the test. If any change in the monitoring system, the change detail should be in the audit trail and any correction made by the person should be recorded and dated. A signature log must be for the identification of initials and the person who completed the paper record.


Data must be recorded permanently in a durable record medium and easy to read. If data records are permanent and readable, they can be easily assessed through the entire product data lifecycle. It helps in the easy retrieval of all previous data if needed.


The data should be recorded at the time and date of work performed. The timestamp should we follow in order.

For example, when conducting validation protocol, the result of the test performed should be recorded in an online sequence. Recording the results should be dated with a timestamp then logged in the electronic system.


The information must be recorded as original or in a certified true or original copy; this may be an acceptable protocol or a database or a notebook.

For example validation test is being recorded on a given protocol because recording test results in a Notebook may be a chance of error. If the original data is handwritten, it must be stored in an electronic system.


No error or editing was performed without documented amendments to ensure the accuracy of the data and records. The data must be the following characteristics.

  • it should be complete
  • it should be free from error
  • it should be e reflective of the observation

Any change made to the recorded data should be documented to ensure the accuracy of the data collected. Follow security checkups in the electronic system. Ensure there is a witness to check for any critical data collection.



All data should be complete including, test repeat or re-analysis performed on the sample.


Consistent in a generation of record and application of date and time stamps in the expected sequence.


Data should be recorded in a controlled worksheet in laboratory notebooks or invalidated Electronic systems.


Data need to be available and accessible for review for audit and inspection over the lifetime of the record.

What is the common Data integrity issue?

Here we are discussing the common Data integrity issues:

  1. Intentional issue
  2. Non-intentional issue
  3. Intentional issue: To maintain the regulatory standard, faculty must have cGMP and a defined procedure. The person working in an organization who knowingly not following the cGMP and defined procedure and hiding wrong things is doing crimes intentionally. Such type of activity causes a huge impact on the organization, such as form 483 and warning letter in such cases facility or organization to terminate the person who is doing wrong with data.

Intentional data integrity issues are a violation of cGMP and regulatory compliance.

Non-Compliance such as manipulation alteration, falsification, deletion, and modification of the data to get the final result an acceptable level is not allowed in the pharmaceutical industry

2. Non-intentional issue

The non-intentional issue may happen when a lack of knowledge, training, and experience in such cases an organization can conduct root cause analysis on Data integrity issue if found any guilty organization must provide proper training to the person to avoid Data integrity issues.

Why is Data integrity important at that moment?

If any Data integrity issues are found, regulatory bodies take action because of violations. Action may be includes warning letters and holding of import. The recently large number of warning letters issued by regulatory is related to Data integrity issues.

The international regulatory authority is more concerned about Data integrity issues. So the FDA decides to give training to regulatory Agencies like MHRA to better recognizes Data integrity issues.

In March 2015, medicinal health product regulatory agency MHRA released a new guide on GMP Data integrity definition and guidance for industry” these regulatory set deadlines to comply with the Data integrity issue up to the end of 2017.

Later in April 2016, FDA has released “Data integrity and compliance with cGMP guidance for industry,” but surely there has been guidance for good manufacturing practice according to 21CFR (210 211and 212). Data integrity issues were mentioned, but because of the lots of regulatory issues and every new update, more focusing on it.


Recently data integrity issues are rising more and more on day by day basis. Because Regulatory bodies are more focusing on real data, by use of more and more tools and systems, it gets more complicated since the impact of data integrity is paying off high cost. It is something that has a high priority.

Related useful references

21 CFR Part 11, Electronic Records; Electronic Signatures:

MHRA GMP Data Integrity Definitions and Guidance for Industry, March 2015:

Data Integrity and Compliance With CGMP Guidance for Industry DRAFT GUIDANCE, April 2016:

FDA warning letters are public and can be found here:

Leave a Comment

Share via
Copy link
Powered by Social Snap