ICH GCP R3 is now in English & EU languages. Book Now
  • AI ClinicalAI ClinicalNewRight Arrow
  • Clinical PracticeClinical PracticeRight Arrow
  • PharmacovigilancePharmacovigilanceRight Arrow
  • ManufacturingManufacturingRight Arrow
  • Laboratory PracticeLaboratory PracticeRight Arrow
  • DistributionDistributionRight Arrow
  • Medical DevicesMedical DevicesRight Arrow
  • Compliance & EthicsCompliance & EthicsRight Arrow
  • All Bundles
  • Clinical Trials Development
  • GCP & GxP Standards
  • Pharmacovigilance
  • Role Based
  • Distribution
  • Medical Devices
  • Medical Writing
  • AI Clinical
View all 21 learning paths
  • Preclinical & Laboratory Foundations
  • Phase I – First-in-Human Trials
  • Phase II & III – Efficacy & Pivotal Trials
  • Clinical Trials Foundation PathNew
  • Regulatory Submission & Approval
Preclinical & Laboratory Foundations - courses at £229
  • Good Laboratory Practice (GLP)
  • 21 CFR Part 58 — Good Laboratory Practice (GLP) for Nonclinical Laboratories
  • OSHA Laboratory Safety Training
  • Laboratory Management Systems ISO/IEC 17025:2017
  • Computer System Validation - Validation, Data Integrity & Compliance (GAMP 5 & Annex 11)
  • Qualification Validation Training
  • Cleaning Validation
  • ISO 9001:2015 - Quality Management System for Pharmaceuticals

About

The Computer System Validation – Validation, Data Integrity & Compliance (GAMP 5 & Annex 11) Course & Certification is designed to provide a comprehensive understanding of validating computerized systems used in pharmaceutical, biotechnology, and life sciences environments. The course focuses on ensuring systems are fit for intended use, compliant with regulatory expectations, and capable of maintaining data integrity throughout the system lifecycle.
This course covers CSV lifecycle, risk-based approach, data integrity (ALCOA+), EU Annex 11 requirements, vendor management, change control, testing strategies, and audit readiness. It also emphasizes documentation practices, cloud system compliance, and real-world case studies in CSV implementation and compliance. Upon successful completion, learners receive a certification demonstrating competency in CSV, GAMP 5, and Annex 11 compliance.

Who Should Enrol?

  • Validation and CSV Professionals
  • Quality Assurance and Quality Control Teams
  • IT and Computer System Support Teams in Pharma
  • Regulatory Affairs and Compliance Professionals
  • Manufacturing and Engineering Professionals
  • Clinical Data Management and Clinical Operations Teams
  • Pharmaceutical, Biotechnology, and CRO Employees
  • Life Science, Pharmacy, Chemistry, IT, and Engineering Graduates

What you will learn

Understand the fundamentals of Computer System Validation (CSV) in GxP environments, including regulatory expectations under GAMP 5 and Annex 11.

Learn the risk-based validation approach across the system lifecycle, including requirements, design, testing, qualification, and release.

Gain knowledge of key compliance areas such as data integrity (ALCOA+), supplier and cloud system management, and change control processes.

Develop an understanding of audit readiness, ongoing system maintenance, and real-world case studies and failures in computerized system validation and compliance.

Course Syllabus

  1. Introduction to GxP Computerised Systems
  2. What You Will Learn in This Course
  3. Computer System Validation — An Introduction
  4. What Are GxP Computerised Systems?
  5. Common GxP Systems
  6. Why CSV and Compliance Matter
  7. The GxP Family of Practices
  8. Risks of Poor Computerised Systems Management
  9. Stakeholders in CSV
  10. Data Integrity at the Heart
  11. The Validation Lifecycle
  12. Risk-Based Approach
  13. Validation vs. Qualification
  14. GAMP 5 Software Categories
  15. FDA's Computer Software Assurance (CSA)
  16. 21 CFR Part 11 in Brief
  17. EU GMP Annex 11 in Brief

  1. Regulatory Framework
  2. The Regulatory Landscape
  3. Why This Matters
  4. 21 CFR Part 11 Overview
  5. Part 11 Subpart A General Provisions
  6. Part 11 Subpart B Electronic Records
  7. Part 11 Subpart C Electronic Signatures
  8. FDA Scope and Application Guidance (2003)
  9. EU GMP Annex 11 Overview
  10. Annex 11 Section 1 Risk Management
  11. Annex 11 Section 2 Personnel
  12. Annex 11 Section 3 Suppliers and Service Providers
  13. Annex 11 Section 4 Validation
  14. Annex 11 Sections 5-8 - Operations
  15. Annex 11 Sections 9-11 - Audit Trails and Change
  16. Annex 11 Sections 12-17 - Security and Continuity

  1. GAMP 5 and Risk-Based Approach
  2. Introduction to GAMP 5 Guidelines for CSV
  3. What Is GAMP 5?
  4. Core Principles of GAMP 5
  5. Why GAMP 5 Matters
  6. GAMP 5 Lifecycle Phases
  7. GAMP 5 Software Categories
  8. GAMP 5 Software Categories — Classification Framework
  9. Category 1 Infrastructure
  10. Category 3 Non-configured Products
  11. Category 4 Configured Products
  12. Category 5 Custom Applications
  13. GAMP 5 Risk Process Step 1 Initial Risk Assessment
  14. GAMP 5 Risk Process Step 2 Functional Risk Assessment
  15. GAMP 5 Risk Process Step 3 Risk Control
  16. GAMP 5 Risk Process Step 4 Risk Review
  17. Leveraging Supplier Involvement
  18. Critical Thinking in CSV
  19. FDA's CSA Alignment with GAMP 5

  1. Computerised System Lifecycle
  2. Why Lifecycle Thinking Matters
  3. The Four Lifecycle Phases
  4. Concept Phase Activities
  5. System Lifecycle with Quality Gates
  6. Phase 1 of CSV — The Concept Phase
  7. Phase 2 of CSV — The Project Phase
  8. Phase 3 of CSV — The Operation Phase
  9. Phase 4 of CSV — The Retirement Phase
  10. Multi-Phase Overview & CSV Checklist
  11. Concept Phase Deliverables
  12. Project Phase Overview
  13. User Requirements Specification (URS)
  14. Functional Specification (FS)
  15. Design Specification (DS)
  16. Traceability Matrix
  17. Configuration Management
  18. Build and Code Review
  19. Installation Qualification (IQ)
  20. Operational Qualification (OQ)
  21. Performance Qualification (PQ)
  22. Validation Summary Report
  23. Operation Phase Activities
  24. Periodic Review
  25. Change Control in Operation
  26. Incident and Problem Management
  27. Retirement Phase Overview
  28. Data Migration
  29. Data Archiving

  1. Validation: CSV and CSA Approaches
  2. What Validation Means in CSV
  3. CSV: Computer System Validation
  4. CSA: Computer Software Assurance
  5. CSV vs. CSA: Key Differences
  6. When to Use CSA Approaches
  7. When CSV-Heavy Is Still Right
  8. The Validation Process in CSV
  9. Validation Master Plan (VMP)
  10. Validation Plan (VP)
  11. Risk-Based Test Strategy
  12. Test Types in CSV
  13. Test Script Design
  14. Test Execution
  15. Defect Management
  16. Exploratory and Unscripted Testing
  17. Automated Testing
  18. Test Environments
  19. Validation Documentation Hierarchy

  1. User Requirements and System Design
  2. Why Requirements Matter
  3. Anatomy of a Good Requirement
  4. Categories of Requirements
  5. User Requirements Specification (URS)
  6. V-Model: Requirements to Qualification
  7. URS Structure
  8. Eliciting Requirements
  9. Requirements Prioritisation
  10. Functional Specification (FS)
  11. Design Specification (DS)
  12. Configuration Specification
  13. Traceability Matrix
  14. Design Reviews
  15. Regulatory Requirements in URS
  16. Security and Access Control Requirements
  17. Audit Trail Requirements
  18. Electronic Signature Requirements
  19. Data Lifecycle Requirements
  20. Integration Requirements
  21. Performance Requirements

  1. Testing, Qualification and Release
  2. Why Testing Matters
  3. The Testing Hierarchy
  4. IQ / OQ / PQ Qualification Flow
  5. Installation Qualification (IQ)
  6. IQ Protocol Structure
  7. Operational Qualification (OQ)
  8. OQ Test Types
  9. Performance Qualification (PQ)
  10. Test Script Design
  11. Test Data Management
  12. Test Environment Management
  13. Test Execution Discipline
  14. Defect Logging and Tracking
  15. Defect Severity Classification
  16. Test Reports
  17. Release Decision
  18. User Acceptance Testing (UAT)
  19. Performance and Load Testing
  20. Security Testing
  21. Audit Trail Testing
  22. Integration Testing
  23. Regression Testing

  1. Data Integrity (ALCOA+)
  2. What Is Data Integrity?
  3. Why Data Integrity Matters
  4. ALCOA Principles
  5. ALCOA+ Data Integrity Principles
  6. Data Integrity in CSV — ALCOA+ Principles
  7. ALCOA+ Extensions
  8. Attributable in Detail
  9. Legible in Detail
  10. Contemporaneous in Detail
  11. Original in Detail
  12. Accurate in Detail
  13. Data Lifecycle
  14. Audit Trails The Heart of Data Integrity
  15. Audit Trail Configuration
  16. Audit Trail Review
  17. Access Controls and Data Integrity
  18. Electronic Signatures
  19. Hybrid Systems
  20. Data Integrity Risks
  21. More Data Integrity Risks
  22. MHRA GxP Data Integrity Guidance
  23. FDA Data Integrity Guidance
  24. PIC/S PI 041 Data Integrity Guidance

  1. Supplier Management and Cloud Systems
  2. Why Supplier Management Matters
  3. Types of Suppliers
  4. Annex 11 Section 3 Requirements
  5. Quality Agreements
  6. Cloud Shared Responsibility Model
  7. Supplier Qualification
  8. Risk-Based Supplier Audits
  9. Cloud Computing in GxP
  10. Shared Responsibility Model
  11. SaaS-Specific Considerations
  12. Cloud Validation Approach
  13. Data Residency and Privacy
  14. Cloud Security Considerations
  15. Supplier Change Notifications
  16. Vendor Update Cycles

  1. Change Control and System Maintenance
  2. Why Change Control Matters
  3. Categories of Change
  4. Change Control Process
  5. Risk Assessment of Changes
  6. Like-for-Like Changes
  7. Emergency Changes
  8. Patches and Updates
  9. Configuration Changes
  10. Software Upgrades
  11. Periodic Review
  12. Periodic Review Scope
  13. System Performance Monitoring
  14. Backup and Recovery
  15. Business Continuity
  16. Incident Management

  1. Audit and Inspection Readiness
  2. Why Audit Readiness Matters
  3. Types of Audits and Inspections
  4. Self-Inspection Programme
  5. Inspection Findings Severity
  6. Audit Planning
  7. Audit Scope for CSV
  8. Pre-Audit Preparation
  9. Inspection Day Behaviour
  10. Documents Inspectors Request
  11. Inspection Response Workflow
  12. More Documents Inspectors Request
  13. Common Inspector Questions
  14. Findings Classification
  15. Responding to Findings
  16. FDA Form 483
  17. FDA Warning Letter
  18. EU GMP Inspection Outcomes

  1. Case Studies and Real Failures
  2. Why Case Studies Matter
  3. Sources of Industry Learning
  4. Patterns in Data Integrity Cases
  5. What Mature Organisations Do Differently
  6. Building a Learning Organisation
  7. Cultural Indicators of Maturity
  8. Cultural Warning Signs
  9. How to Use Case Studies Internally

Course Benefits

Benefits cpd_points icon
CPD Points

Gain Continuing Professional Development (CPD) Points, accredited by The Faculty of Pharmaceutical Medicine of the Royal College of Physicians of the United Kingdom. These can be used to count towards the distance learning element of any scheme that comes under the umbrella of The Academy of Medical Royal Colleges or any other scheme for which there is mutual recognition.

Benefits certification icon
Certification

Receive a personal certificate to show your subject knowledge on course completion.

Benefits affordable icon
Affordable

You get excellent value through our cost-effective prices. We can also offer you group discounts on larger purchases.

Benefits flexible icon
Flexibility

The course saves you time through the convenience of online availability. This lets you complete the interactive course at your own comfort.

Benefits up_to_date icon
Keep Up to Date

You will stay up to date with any changes to EU GMP Annex 11, FDA 21 CFR Part 11, GAMP 5, FDA CSA guidance, ICH Q9/Q10, and PIC/S PI 011/041 as our training courses are constantly monitored, reviewed and updated.

Benefits industry_experts icon
Learn from Industry Experts

The course content has been developed by industry practitioners and subject-matter experts to ensure that learners can apply the principles directly in their daily work. Every module follows a consistent rhythm — concept, regulatory context, real-world failure, audit perspective, preventive controls, and a knowledge check.


Our Certified Customers

novartis
NHS
takeda
roche
dhl

Learner Rating & Reviews

4.7
Average Rating
536 global ratings
87.0%
5.0%
3.0%
3.0%
2.0%
RC

Working with Whitehall training for the last two years of partnership has been a very successful experience – I have fast access to all the GCP course...

SM

I have finalised the demo for the ICH-GCP E6 R3 refresher course. Overall, I liked the content and the interface. I also want to thank Whitehall Train...

Recommended Courses

Regulatory Inspection Readiness

Regulatory Inspection Readiness

Professional
£592 hrs
10 Golden Rules of GMP

10 Golden Rules of GMP

Intermediate
£393 hrs
EU GMP Annex 22 Artificial Intelligence Compliance

EU GMP Annex 22 Artificial Intelligence Compliance

Intermediate
£393 hrs
Good Documentation Practices and Data Integrity

Good Documentation Practices and Data Integrity

Beginner
£493 hrs
GMP for Medical Devices (CFR 820)

GMP for Medical Devices (CFR 820)

Intermediate
£692 hrs