What is the main reason 21 CFR Part 11 requires that EDC systems maintain an audit trail?
Correct Answer: A
The primary purpose of maintaining an audit trail as required under 21 CFR Part 11 is to preserve data integrity. According to the U.S. FDA's regulation on electronic records and signatures, every change to electronic data must be traceable, including information about who made the change, when it was made, and what the change entailed.
The Good Clinical Data Management Practices (GCDMP) outlines that an audit trail provides a permanent, chronological record of all modifications to clinical data. This ensures transparency and allows the reconstruction of the course of data entry and modification. The regulation aims to prevent unauthorized or undocumented data manipulation, thereby maintaining the accuracy, reliability, and validity of electronic records.
The FDA 21 CFR Part 11, Section 11.10(e) explicitly mandates that systems must use secure, computer-generated, time-stamped audit trails to independently record the date and time of operator entries and actions that create, modify, or delete electronic records. This ensures the data remains trustworthy and defensible in regulatory reviews or inspections.
Therefore, the main reason for requiring an audit trail is to preserve data integrity - ensuring that all data captured, modified, or transmitted is authentic, accurate, and complete throughout the study lifecycle.
Reference (CCDM-Verified Sources):
SCDM Good Clinical Data Management Practices (GCDMP), Chapter: Regulatory Compliance and Data Integrity FDA 21 CFR Part 11 - Electronic Records; Electronic Signatures, Section 11.10(e) ICH E6 (R2) Good Clinical Practice, Section 5.5.3 - Data Integrity and System Validation