| Field | Value |
|---|---|
| Effective Date | 03/01/2026 |
| Status | Implemented |
| Document ID | QMS-FP-PROC |
| Version | v1.0 |
| Owner | Quality Unit (QU) |
| Approver | Quality Unit Director |
| Controlled System of Record | GitHub |
| Change Control | QMS-1348 |
| Last Review Due | 03/01/2026 |
| Next Review Due | 03/01/2027 |
This Family Pack operates under the authority and governance of the Sawgrass Nutra Labs Quality Management System (QMS) and the Quality Unit (QU).
In accordance with 21 CFR Part 111, the Quality Unit (QU) retains final, non-delegable authority for all quality-impacting decisions, including but not limited to:
Quality Control (QC) represents the Control Framework established under Quality Unit authority (e.g., specifications, acceptance criteria, sampling/testing requirements, and release rules). QC is not an organizational role within this Family Pack unless explicitly defined as such in the enterprise governance model.
Quality Assurance (QA) administers QMS processes and executes QU-governed quality system activities through approved procedures, work instructions, and records under delegated authority. QA provides independent oversight of GMP operations; QA does not execute GMP operations.
Operational teams execute GMP activities defined by this Family Pack and generate GMP evidence. Deviations, excursions, nonconformances, and quality risks identified during execution are escalated through the standardized QA-owned escalation pathway (e.g., WIN-QA-EXCEPTION-ESCALATION).
All SOPs, WINs, and supporting documents contained within this Family Pack:
In the event of any conflict between execution instructions and Quality Unit authority, Quality Unit authority prevails in accordance with QMS governance rules.
This Family inherits the governance requirements defined in the Unified Governance Manual (SOP-QMS-GOV), including the Quality Manual, Risk Management Program (RMP), Internal Audit Program (IAP), and Material Review Board (MRB) governance (SOP-QA-MRB). All PROC responsibilities and WINs must align with these L2 authorities.
The Procurement (PROC) Process Family governs the controlled sourcing, qualification, evaluation, and ongoing oversight of suppliers providing components, ingredients, packaging, labels, and GMP-impacting services. PROC ensures that all purchased materials originate from qualified, approved, and verified suppliers and that procured materials meet GMP, regulatory, and internal specifications.
Outsourced Manufacturing & GMP-Impacting Service Provider Oversight: Procurement governance applies to suppliers that provide GMP-impacting services, including contract manufacturers, contract laboratories, packaging/labeling service providers, and other outsourced providers that may affect product quality, identity, purity, strength, composition, or regulatory compliance.
Such providers shall be treated as qualified suppliers and must meet the same governance expectations defined by this Family Pack, including:
PROC provides WHAT-level governance for:
Supplier Risk Classification and Tier Alignment:
Supplier risk classification outputs generated through qualification and ongoing performance monitoring shall be used as controlled inputs to Quality Unit (QU) supplier tier assignment under QC-MAT-003.
Supplier tier classification is not determined by risk level alone and shall reflect overall supplier reliability considering risk classification, performance history, verification status, and quality signals.
Final supplier tier assignment, modification, or reclassification remains under exclusive Quality Unit authority and shall be documented and controlled in accordance with QC-MAT-003.
Procurement is critical because 21 CFR 111 requires manufacturers to:
NSF/ANSI 455-2 strengthens these requirements by mandating:
Key PROC risk themes include:
PROC requires strong cross-functional interaction with:
Risk Tier Classification: HIGH. Procurement is classified as HIGH risk because supplier failures can directly lead to adulterated materials, misidentified components, contaminated ingredients, specification failures, and systemic supply-chain noncompliance. As the entry point for all components and materials, PROC plays a foundational role in GMP compliance, product quality, and material integrity.
The following table includes all Procurement (PROC) SOPs from the frozen L2 hierarchy. Each SOP is mapped to its WHAT-level purpose, operational scope, applicable regulatory anchors, and Quality Control (QC) requirement anchors that are enabled or supported by Procurement activities. Procurement operates as a QC-Enabling domain and does not perform QC testing, acceptance, release, or disposition activities.
| SOP ID | SOP Title | Purpose (Control Intent) | Scope (Operational Boundary) | QC Requirement Anchors (QC-Enabling) | Regulatory Anchors |
|---|---|---|---|---|---|
| SOP-PROC-SOURCE | Sourcing | Establishes the controlled process for identifying, evaluating, and selecting suppliers capable of providing components, packaging, and services that meet GMP, safety, and regulatory requirements. | Applies to sourcing decisions, preliminary supplier reviews, capability checks, risk screening, and documentation required before initiating qualification or first purchase. Excludes testing, receiving, and post-approval supplier performance monitoring. | QC-CHG-002 (Impact & risk assessment) |
21 CFR:
111.70(aβd), 111.75(a), 111.123(b)(2), 111.255(a). NSF/ANSI 455-2: 4.3.1β4.3.3, 4.4.1, 4.5.1. |
| SOP-PROC-QUAL | Supplier Qualification | Defines the structured system for evaluating, qualifying, and approving suppliers based on risk, compliance history, documentation, capability, and material quality performance. | Applies to initial and ongoing qualification, supplier audits, risk scoring, documentation review, and approval or disqualification decisions. Excludes sourcing activities and day-to-day purchasing. | QC-MAT-003 (Supplier Status & Tier Impact Specification) QC-CHG-002 (Impact & risk assessment) |
21 CFR:
111.75(aβc), 111.103β111.105, 111.255, 111.415. NSF/ANSI 455-2: 4.3.4, 4.2.1β4.2.4, 4.5.2. |
| SOP-PROC-ASL | Approved Supplier List | Establishes controls to maintain an accurate, traceable, and risk-based Approved Supplier List (ASL), ensuring only qualified suppliers are used for GMP materials and services. | Applies to creation, maintenance, modification, and periodic review of the ASL; includes tracking of supplier status, risk level, approved materials, and disqualification decisions. | QC-MAT-003 (Supplier Status & Tier Impact Specification) |
21 CFR:
111.75(a)(2)(ii), 111.123(b)(2), 111.255. NSF/ANSI 455-2: 4.3.4.1, 4.4.2, 4.10. |
| SOP-PROC-P2P | Procure to Pay | Defines the controlled purchasing process to ensure materials are ordered from approved suppliers, match specifications, and comply with all internal and regulatory requirements. | Applies to purchasing authorization, PO creation, approved supplier verification, specification checks, and alignment of purchasing activities with material requirements. Excludes warehouse receipt or QC testing activities. | QC-MAT-003 (Supplier Status & Tier Impact Specification) |
21 CFR:
111.70, 111.75(a)(2), 111.123(a)(2), 111.165. NSF/ANSI 455-2: 4.3.4, 4.1.2, 4.2.4, 4.5.1. |
| SOP-PROC-DOCS | Supplier Documentation | Establishes controls for collecting, reviewing, maintaining, and periodically updating supplier documentation required to verify component quality and compliance. | Applies to COAs, specifications, questionnaires, certifications, allergen statements, MDR documentation, and any supplier-provided information required to ensure GMP compliance. Excludes internal production or QC testing documentation. | QC-MAT-003 (Supplier Status & Tier Impact Specification) |
21 CFR:
111.70(aβd), 111.75(aβc), 111.255, 111.320. NSF/ANSI 455-2: 4.4.2β4.4.6, 4.3.4.2, 4.1.1β4.1.3. |
Procurement (PROC) operates as a QC-Enabling domain. QC requirement anchors listed in this section identify where Procurement activities provide prerequisite controls, inputs, or documentation required for Quality Control decision-making. Procurement does not execute QC testing, acceptance, release, or disposition decisions, which remain governed by Quality-owned procedures.
The following WHAT-level training requirements apply to all personnel who work within or support the Procurement (PROC) Process Family. Training expectations are grouped by governing SOP to improve clarity, traceability, and audit alignment. These requirements establish foundational GMP behaviors and do not include HOW-level task instructions or Work Instructions.
This section defines organizational roles that perform, supervise, review, trend, escalate, or own any Procurement (PROC) Family obligations, and the assigned governance responsibilities for each role. This section is intentionally WHAT-level and contains no procedural HOW, SOP, or WIN steps.
A Role represents a defined structural position within the enterprise governance architecture (Authority, System Administration, Operational Execution, Cross-Functional Governance, or Support). Responsibilities define outcome-based accountabilities and do not confer authority beyond that defined by the Quality Unit.
| Architectural Tier | Role | Primary Responsibilities (WHAT) | Authority & Escalation Boundaries |
|---|---|---|---|
| Authority | Quality Unit (QU) |
β’ Holds final, non-delegable authority for quality-related decisions impacting materials, components, and finished products. β’ Approves or rejects materials and components through approved acceptance criteria and disposition pathways. β’ Authorizes exceptions, rework/reprocessing, destruction, and stop-work decisions when quality risk exists. β’ Determines regulatory reporting and escalation severity when applicable. |
β’ Authority cannot be overridden by operational, financial, or commercial interests. β’ Retains the right to assume direct authority in any quality-impacting procurement or supplier matter. |
| System Administration | Quality Assurance (QA) |
β’ Executes and administers QMS governance processes under delegated authority of the Quality Unit. β’ Administers change control, deviations/quality events, CAPA, document control, audits, complaints, training effectiveness, and specification governance interfaces. β’ Provides independent oversight of PROC controls and verifies adherence to controlled supplier governance expectations. β’ Ensures traceability, data integrity, and regulatory compliance of quality system records supporting Procurement activities. |
β’ May finalize outcomes only when fully defined by approved specifications, procedures, and predefined acceptance criteria. β’ Must escalate discretionary decisions, deviations from limits, or regulatory-impacting matters to the Quality Unit. β’ Maintains independence from operational procurement execution and commercial sourcing pressures. |
| Operational Execution | Procurement Lead |
β’ Maintain oversight of sourcing and purchasing decisions aligned with Approved Supplier List (ASL) status and intended use. β’ Ensure material requirements, specifications, and supplier capabilities remain aligned prior to purchase and during supplier lifecycle changes. β’ Identify supplier risks, gaps, documentation deficiencies, and change triggers requiring escalation for quality impact and risk assessment (QC-CHG-002). β’ Ensure procurement records are accurate, complete, contemporaneous, and traceable (ALCOA+ intent). |
β’ Enforces supplier status gating to prevent sourcing/purchasing from unqualified, restricted, or non-permitted suppliers for intended use (QC-MAT-003). β’ Does not approve product/material disposition, exceptions, or release decisions; escalates to QA/QU per defined pathways. β’ Does not implement supplier/material/supply-condition changes when Quality impact/risk assessment is required until approved escalation outcomes are obtained (QC-CHG-002). |
| Operational Execution | BPO |
β’ Own operational governance of Procurement workflows and requirements within the enterprise process architecture. β’ Ensure supplier-related controls (sourcing, qualification linkage, ASL maintenance, documentation controls, purchasing gates) are implemented consistently. β’ Evaluate systemic impacts of supplier changes, risks, and recurring issues; ensure cross-functional alignment with QMS expectations. β’ Oversee resolution of procurement-driven gaps and ensure sustained control effectiveness. |
β’ Does not override Quality Unit authority or redefine QC acceptance criteria; ensures Procurement execution aligns with QMS governance. β’ Ensures procurement process changes are routed through controlled change mechanisms when required and escalated to QA/QU where applicable (QC-CHG-002). β’ Escalates systemic supplier governance risks to QA and the Quality Unit. |
| Cross-Functional Governance | BRM |
β’ Maintain cross-functional alignment on supplier requirements, material flows, and risk signals that may impact quality and compliance. β’ Identify systemic risks associated with sourcing, qualification outcomes, supplier performance, and supplier-driven change patterns. β’ Support enterprise risk integration, management review inputs, and cross-family alignment of supplier governance controls. β’ Support supplier-related change control, nonconformance review, and CAPA alignment as applicable. |
β’ Escalates systemic quality risks and cross-process control gaps to QA and the Quality Unit. β’ Does not hold product release, disposition, or exception-approval authority. |
| Support Functions | Regulatory Affairs |
β’ Confirm regulatory acceptability of ingredients, components, and supplier claims when applicable. β’ Support evaluation of certifications, statements, and regulatory documents received from suppliers. β’ Identify regulatory risks linked to supplier-provided information and supplier-driven changes. β’ Support alignment of supplier documentation with product claims and labeling requirements. |
β’ Does not approve supplier qualification status or purchasing gates; provides input to QA/QU decision pathways when regulatory risk exists. β’ Escalates regulatory-impacting supplier documentation gaps or changes to QA for controlled evaluation (QC-CHG-002 linkage where applicable). |
| Operational Execution (Partner Domain) | Warehouse Supervisor |
β’ Maintain control over material receipt, staging, and quarantine aligned with Procurement supplier governance inputs. β’ Identify material issues, documentation conflicts, or suspected supplier defects and support investigation inputs. β’ Maintain traceability of received materials to supplier identity, receiving records, and supplier documentation packages. |
β’ Does not determine final disposition; escalates deviations/abnormal receipt conditions to QA per standardized pathways. β’ Executes within approved receiving and status-control rules; does not override ASL/supplier status controls. |
| Support Functions | Document Control |
β’ Maintain controlled document lifecycle for supplier documentation and Procurement records supporting AAs. β’ Ensure controlled templates are used for Procurement-related records and supplier documentation packages. β’ Maintain traceability of revisions, approvals, and distribution of current documents. |
β’ Ensures document lifecycle integrity (version control, approvals, retention) and escalates document control risks to QA. β’ Does not approve supplier status or sourcing decisions; supports controlled evidence integrity and availability. |
| Support Functions | Training & Competency |
β’ Maintain competency requirements for personnel performing Procurement activities affecting GMP materials and suppliers. β’ Ensure training is completed prior to performance of controlled procurement tasks and following controlled changes to requirements. β’ Maintain traceable training records supporting supplier governance and documentation integrity. |
β’ Escalates training gaps affecting controlled procurement execution to QA for QMS action. β’ Does not approve supplier status, purchasing gates, or change decisions; ensures training enablement for compliant execution. |
| Support Functions | Information Technology (IT) |
β’ Maintain electronic systems supporting supplier governance controls (ASL status, purchasing authorization, audit trails) as applicable. β’ Support validated system operation, access control, audit trail retention, and data integrity for Procurement records. |
β’ Ensures compliance with electronic record and data integrity controls (e.g., Part 11 intent where applicable, ALCOA+). β’ Escalates system integrity risks, access control failures, or audit trail issues to QA; does not authorize supplier/purchasing decisions. |
Architectural Clarification: Quality Control (QC) represents the Control Framework β acceptance criteria, specifications, and release rules β established under Quality Unit authority. QC is not an organizational role.
Terminology Note: Where this Family Pack references βLaboratory Operationsβ or βQC function,β it refers to the operational laboratory capability performing testing and verification activities under Quality Unit (QU) authority and QC-defined requirements. This does not alter the governance model that QC represents the control framework and QU retains final decision authority.
| # | SOP | WIN | AA Doc ID | Type | Frequency | Description (Purpose, Scope, Control Intent & Auditor Focus) |
|---|---|---|---|---|---|---|
| Supplier Governance | ||||||
| 1 | SOP-PROC-SOURCE | WIN-PROC-SOURCE-VERIFY | AA-PROC-SOURCE-VERIFY | CHK + REC | Per Source Selection |
Purpose: Document risk-based sourcing decisions prior to supplier qualification or purchasing. Scope: New suppliers, new materials, or significant sourcing changes, including supplier/site/material specification/supply-condition changes that may impact GMP quality. Control Intent: Ensure sourcing risk is evaluated and approved before supplier use, and ensure sourcing-related changes are identified and escalated to enable required Quality impact and risk assessment prior to implementation (QC-CHG-002). Auditor Focus: Evidence of documented risk review and approval, defined change-trigger evaluation, and linkage to escalation and/or Change Control / QA review prior to execution. QC-REQ Anchor: QC-CHG-002 |
| 2 | SOP-PROC-QUAL | WIN-PROC-QUAL-APPROVE | AA-PROC-QUAL-APPROVE | CHK + REC | Per Qualification |
Purpose: Verify completion of supplier qualification and formally approve suppliers for GMP use. Scope: Initial qualification and periodic re-qualification. Control Intent: Prevent use of unqualified suppliers by ensuring supplier qualification is completed and QA approval is obtained prior to GMP use. Auditor Focus: QA approval, completeness, and system enablement supporting approved supplier status controls. QC-REQ Anchor: QC-MAT-003 (enabling) |
| 3 | SOP-PROC-ASL | WIN-PROC-ASL-MAINTAIN | AA-PROC-ASL-MAINTAIN | LOG | Ongoing |
Purpose: Maintain an authoritative record of approved suppliers and status changes. Scope: Supplier additions, removals, and status changes (e.g., Approved / Conditional / Restricted / Disqualified), including scope-of-approval where applicable. Control Intent: Ensure purchasing aligns with current supplier qualification status and prevents sourcing from unqualified or restricted suppliers (QC-MAT-003), and ensure supplier status changes are traceable to approval and (where applicable) controlled change evaluation prior to implementation (QC-CHG-002). Auditor Focus: Traceability of supplier status and status changes (effective date, approval linkage, and rationale), and linkage to qualification and/or Change Control records where applicable. QC-REQ Anchor: QC-MAT-003, QC-CHG-002 |
| Procurement Execution | ||||||
| 4 | SOP-PROC-P2P | WIN-PROC-P2P-AUTHORIZE | AA-PROC-P2P-AUTHORIZE | REC | Per Transaction |
Purpose: Document authorized procure-to-pay transactions. Scope: Purchasing with qualified, active suppliers for GMP-relevant materials and services, as applicable. Control Intent: Prevent purchasing from suppliers not approved for the intended use by verifying supplier qualification status at the time of transaction authorization (QC-MAT-003). Auditor Focus: Authorization evidence, supplier identity, supplier status at time of PO release (or equivalent control), and traceability to the authoritative Approved Supplier List and/or approval reference. Evidence that non-approved suppliers are blocked or escalated via the standardized QA exception pathway. QC-REQ Anchor: QC-MAT-003 |
| Supplier Documentation | ||||||
| 5 | SOP-PROC-DOCS | WIN-PROC-DOCS-VERIFY | AA-PROC-DOCS-VERIFY | CHK + REC | Periodic / Upon Change |
Purpose: Verify and approve supplier documentation required for continued use. Scope: Quality agreements, certifications, regulatory documents, and other supplier-controlled documentation required for continued supplier use; includes evaluation of documentation changes as potential change triggers requiring escalation where quality impact may exist. Control Intent: Maintain ongoing supplier compliance and ensure supplier documentation changes are reviewed, approved, and escalated when they indicate a change requiring quality impact and risk assessment prior to continued implementation (QC-CHG-002). Auditor Focus: Documentation completeness, approval evidence, timeliness of review upon change, and linkage to escalation and/or Change Control / QA review when applicable. QC-REQ Anchor: QC-CHG-002 (supporting) |
All Auditable Artifacts (AAs) defined in this section leverage a common, Quality Assurance (QA)βowned Quality Event escalation process. Deviations, excursions, or failures to meet defined acceptance criteria are identified within the executing domain and escalated using WIN-QA-EXCEPTION-ESCALATION.
This standardized escalation mechanism is applied consistently across Warehouse, Quality Control (QC), Manufacturing, and other GMP domains to ensure independent QA oversight, uniform investigation, and controlled disposition in accordance with Quality Assurance procedures.
Domain-specific SOPs and Work Instructions (WINs) define exception identification triggers only and do not establish independent escalation, investigation, or disposition pathways.
This section defines the minimum required content and evidentiary intent for each Auditable Artifact (AA) listed in Section 5. These requirements establish WHAT must be captured to demonstrate effective control of Procurement (PROC) activities.
The AA set is intentionally risk-based, consolidated, and sufficient. Each AA represents the authoritative GMP evidence for its associated procurement control domain. No additional PROC-specific records are required beyond those defined in Section 5.
Individual executions are distinguished through operational metadata (e.g., date, supplier, material, transaction ID, system user), not through creation of additional forms or document variants.
QC Enforcement Alignment: Where Procurement execution intersects with QC-defined trigger conditions (e.g., supplier invalid state, Tier restriction, change trigger, missing QU approval), the associated AA must contain objective evidence that the required QMS workflow entry (e.g., Deviation, Change Control, or QA exception pathway) was initiated prior to continuation of implementation or purchasing. Absence of required escalation linkage renders the execution record incomplete.
This artifact provides evidence that sourcing decisions are risk-based, documented, and approved prior to supplier qualification or purchasing, and that sourcing-related changes are identified and escalated to enable required Quality impact and risk assessment prior to implementation.
Minimum evidentiary expectations include:
Auditor focus: confirmation that suppliers are not engaged or advanced without documented, risk-based sourcing approval, and that sourcing-related changes are identified and escalated prior to implementation to enable appropriate impact and risk assessment.
QC-REQ Anchor: QC-CHG-002
This artifact provides evidence that supplier qualification requirements are fulfilled and formally approved prior to supplier use.
Minimum evidentiary expectations include:
Auditor focus: ability to reconstruct why a supplier is approved, restricted, or disqualified based on documented evidence.
QC-REQ Anchor: QC-MAT-003 (enabling)
This artifact provides continuous evidence that the Approved Supplier List (ASL) is accurately maintained, controlled, and traceable, and that supplier qualification status is current and suitable to constrain purchasing decisions.
Minimum evidentiary expectations include:
Auditor focus: confirmation that only qualified suppliers are authorized, that supplier status categories are clearly defined and controlled, and that ASL changes are justified, approved, and traceable (including to change evaluation where applicable).
QC-REQ Anchor: QC-MAT-003, QC-CHG-002
This artifact provides evidence that purchasing transactions are executed only with approved suppliers and for approved materials or services, and that supplier qualification status is verified at the time of transaction authorization.
Minimum evidentiary expectations include:
Auditor focus: verification that purchasing does not bypass supplier qualification, ASL status controls, or specification controls, and that supplier status effectively constrains purchasing decisions.
QC-REQ Anchor: QC-MAT-003
This artifact provides evidence that required supplier documentation is current, complete, reviewed, approved, and that documentation changes are evaluated as potential change triggers requiring escalation where quality impact may exist.
Minimum evidentiary expectations include:
Auditor focus: confirmation that material quality and compliance are supported by controlled and reviewed supplier documentation, and that supplier documentation changes are evaluated and escalated when they may impact quality.
QC-REQ Anchor: QC-CHG-002 (supporting)
This section defines the structured execution framework for Procurement (PROC). Execution of all WINs shall be performed under Procurement supervisory oversight, documented contemporaneously within the applicable Auditable Artifact (AA), and maintained within the approved controlled System of Record in accordance with ALCOA+ principles and enterprise documentation governance requirements.
Each WIN establishes:
Procurement operates as a QC-Enabling domain. Execution of procurement controls does not confer supplier approval, change authorization, or material release authority. When defined QC trigger conditions are met, entry into the applicable QA-governed QMS workflow (e.g., Change Control, Deviation) is mandatory prior to continuation. Final quality decisions remain under Quality Unit (QU) authority.
Trigger Event: Identification of a new supplier, material, service, or sourcing change.
Preconditions:
Execution Controls:
Mandatory Evidence:
Escalation Pathway:
Authority Gate:
Control Outcome: Only risk-evaluated and Quality-reviewed sourcing decisions proceed to qualification or purchasing.
Trigger Event: Initiation or periodic review of supplier qualification.
Preconditions:
Execution Controls:
Mandatory Evidence:
Escalation Pathway:
Authority Gate:
Control Outcome: Supplier qualification status is risk-based, documented, and authorized prior to use.
Trigger Event: Approved qualification outcome, status change, or periodic review update.
Preconditions:
Execution Controls:
Mandatory Evidence:
Escalation Pathway:
Authority Gate:
Control Outcome: ASL remains accurate, current, and authoritative for enforcing purchasing constraints.
Trigger Event: Initiation of procure-to-pay transaction.
Preconditions:
Execution Controls:
Mandatory Evidence:
Escalation Pathway:
Authority Gate:
Control Outcome: Purchasing is constrained by approved supplier status and Quality authorization.
Trigger Event: Receipt, update, or periodic review of supplier documentation.
Preconditions:
Execution Controls:
Mandatory Evidence:
Escalation Pathway:
Authority Gate:
Control Outcome: Supplier documentation supports regulatory compliance and change impact is escalated prior to continued implementation.
This Family Pack inherits all enterprise-level governance defined in the L0 Unified Governance Document (L0-QMS-UGD), which serves as the authoritative source for quality management, documentation control, data integrity, electronic systems governance, and enterprise-wide control architecture.
All SOPs, WINs, and Auditable Artifacts (AAs) within this Family shall be created, maintained, executed, and periodically reviewed in full alignment with L0 governance requirements, including:
The Quality Unit (QU) retains final, non-delegable authority over quality-related decisions affecting compliance, authorization, system controls, and escalation pathways.
L0 governance requirements apply uniformly and supersede all Family-level content. This Family Pack does not replace, dilute, or modify enterprise governance and operates fully within the enterprise-wide QMS architecture.