This Family operates under the governance requirements defined in the Unified Governance Manual (QMS-GOV), including the Quality Manual, Risk Management Program (RMP), Internal Audit Program (IAP), and Material Review Board (MRB) governance administered by QA. All QA responsibilities and Work Instructions must align with these enterprise governance authorities.
The Quality Assurance (QA) Process Family executes and administers enterprise Quality Management System processes across all GMP activities under the governance of the QMS and the authority of the Quality Unit. QA ensures that systems, processes, and products are controlled, compliant, validated, traceable, and continuously improving.
The Quality Unit retains ownership of the Quality Management System (QMS). Quality Assurance administers defined QMS processes under delegated authority but does not hold ultimate system ownership or non-delegable quality authority.
QA administers quality oversight of outsourced manufacturers and critical suppliers under the governance of the Quality Unit. This includes qualification, audit oversight, performance monitoring, material disposition controls, and risk-based surveillance to ensure compliance with applicable GMP and regulatory requirements.
The Quality Unit holds non-delegable quality authority as required under 21 CFR Part 111 Subpart F. This authority protects product safety, regulatory compliance, and independence from operational influence.
Quality Assurance executes Quality Management System processes under formally delegated authority from the Quality Unit. QA may finalize routine quality system determinations when outcomes are fully defined by approved specifications, established acceptance criteria, and controlled procedures.
The following authorities are retained exclusively by the Quality Unit and may not be delegated:
Delegation of execution does not transfer final Quality Unit authority. The Quality Unit retains the right to review, intervene, or assume direct authority in any quality-impacting matter.
QA maintains independence from Production, Packaging, Warehouse, and other operational Process Families to ensure unbiased execution of quality system controls and oversight activities.
QA administers WHAT-level enterprise quality system controls, including:
Regulatory frameworks including 21 CFR Part 111, 21 CFR Part 11, and NSF/ANSI 455-2 require manufacturers to maintain independent quality oversight functions that ensure:
Key QA risk themes include:
QA interfaces with all Process Familiesβincluding QCL, QCP, TAL, IT, WH, PROD, PKG, SAN, MNT, PROC, and othersβby providing:
Risk Tier Classification: VERY HIGH. QA system controls form the foundation of GMP compliance. Failure in QA execution or oversight can compromise the entire Quality Management System, expose the organization to regulatory enforcement, and jeopardize product safety.
| SOP ID | SOP Title | Purpose (Control Intent) | Scope (Operational Boundary) | Regulatory Anchors |
|---|---|---|---|---|
| SOP-QA-RELEASE | Product Release & Disposition | Establishes WHAT-level controls for batch release, material disposition, and QA authorization prior to use or distribution. | Applies to finished goods, components, labels, packaging materials, and intermediates requiring QA approval. | 21 CFR 111.123, 111.165; NSF/ANSI 455-2 Β§4.1.1. |
| SOP-QA-NCMR | Nonconforming Material Review | Defines controls for identifying, segregating, evaluating, and dispositioning nonconforming materials. | Applies to materials or product deemed unsuitable or out of specification. | 21 CFR 111.113, 111.165; NSF/ANSI 455-2 Β§4.4.1. |
| SOP-QA-RETURNS | Returned Product, Salvage & Reprocessing | Establishes controls for evaluation and disposition of returned product, including salvage and reprocessing pathways. | Applies to all returned product and associated investigations. | 21 CFR 111.525, 111.530; NSF/ANSI 455-2 Β§4.2.3. |
| SOP ID | SOP Title | Purpose | Scope | Regulatory Anchors |
|---|---|---|---|---|
| SOP-QA-DEVIATION | Deviation Management | Defines documentation, investigation, evaluation, and closure controls for deviations and abnormal events. | Applies to all unplanned events impacting GMP operations. | 21 CFR 111.113, 111.503. |
| SOP-QA-CAPA | Corrective & Preventive Action | Establishes controls for root cause analysis, corrective actions, and effectiveness verification. | Applies to systemic issues arising from deviations, audits, complaints, or trend analysis. | 21 CFR 111.75, 111.503; NSF Β§4.4.2. |
| SOP-QA-CHANGE | Change Control | Defines evaluation, approval, implementation, and verification of quality-impacting changes. | Applies to changes affecting product, systems, documents, equipment, or facilities. | 21 CFR 111.103; NSF Β§4.4.3. |
Specifications and acceptance criteria are established under Quality Unit authority within the Quality Control (QC) Control Framework. QA administers the controlled lifecycle management of approved specifications but does not independently establish acceptance criteria.
| SOP ID | SOP Title | Purpose | Scope | Regulatory Anchors |
|---|---|---|---|---|
| SOP-QA-DOCCTRL | Document Control | Establishes lifecycle controls for creation, revision, approval, distribution, archival, and retirement. | Applies to all controlled QMS documents. | 21 CFR 111.605, 111.610; NSF Β§4.7.1. |
| SOP-QA-SPEC | Specification Management | Establishes controls for authoring, approving, issuing, and revising product and material specifications. | Applies to specifications for raw materials, packaging, intermediates, and finished goods. | 21 CFR 111.70, 111.75; NSF Β§4.2.1. |
| SOP ID | SOP Title | Purpose | Scope | Regulatory Anchors |
|---|---|---|---|---|
| SOP-QA-COMPLAINT | Complaint Handling | Establishes controls for receiving, evaluating, investigating, and trending complaints. | Applies to all consumer, customer, and regulatory complaints. | 21 CFR 111.560, 111.570; NSF Β§4.2.4. |
| SOP-QA-RECALL | Recall Management | Defines requirements for recall initiation, coordination, execution, and closure. | Applies to voluntary and mandatory recalls. | 21 CFR 111.535; NSF Β§4.2.5. |
| SOP ID | SOP Title | Purpose | Scope | Regulatory Anchors |
|---|---|---|---|---|
| SOP-QA-AUDIT | Internal Audit Program | Establishes planning, execution, documentation, and follow-up of internal audits. | Applies to all GMP process audits. | 21 CFR 111.503; NSF Β§4.6.1. |
| SOP-QA-MGMTREV | Management Review | Defines formal review of QMS performance, risks, metrics, and corrective actions. | Applies to executive leadership oversight. | NSF Β§4.1.1, 4.6.1. |
| SOP ID | SOP Title | Purpose | Scope | Regulatory Anchors |
|---|---|---|---|---|
| SOP-QA-SAMPLING | Sampling Program | Establishes controls for defining and maintaining sampling plans and methodologies. | Applies to all GMP sampling activities. | 21 CFR 111.80, 111.160. |
| SOP-QA-STABILITY | Stability Program | Defines stability study design, monitoring, and evaluation controls. | Applies to finished goods stability programs. | 21 CFR 111.75, 111.85. |
| SOP-QA-RESERVE | Reserve Sample Program | Establishes controls for collection, storage, and management of reserve samples. | Applies to all finished goods requiring retains. | 21 CFR 111.83. |
Citations above support WHAT requirements; compliance traceability is maintained at the L0 level.
The following WHAT-level training requirements apply to all personnel who work within or support the Quality Assurance (QA) Process Family. Training expectations are grouped by governing SOP and aligned to the domain structure defined in Section 2 to improve traceability, audit clarity, and architectural consistency.
Personnel must complete initial qualification training prior to independent execution of QA-controlled activities and must complete annual refresher training thereafter. Retraining is required upon significant procedural revision, regulatory update, or identified performance gap.
This section defines organizational roles within the Sawgrass Nutra Labs Quality Management System (QMS) and the governance responsibilities assigned to each role.
A Role represents a defined structural position within the
quality governance architecture (Authority, System Administration,
Technical Execution, Operational Execution, or Cross-Functional Governance).
Responsibilities define the outcome-based accountabilities
assigned to that role. Responsibilities do not confer authority beyond that
defined by the Quality Unit.
| Architectural Tier | Role | Primary Responsibilities (WHAT) | Authority & Escalation Boundaries |
|---|---|---|---|
| Authority | Quality Unit (QU) |
β’ Holds final, non-delegable authority for quality-related decisions. β’ Approves or rejects materials, components, and finished products. β’ Authorizes rework, reprocessing, or destruction activities. β’ Determines regulatory reporting and stop-work decisions. |
β’ Authority cannot be overridden by operational, financial, or commercial interests. β’ Retains right to assume direct authority in any quality-impacting matter. |
| System Administration | Quality Assurance (QA) |
β’ Executes and administers the Quality Management System under delegated authority of the Quality Unit. β’ Performs batch record review and prepares disposition determinations within predefined acceptance criteria. β’ Administers deviations, CAPA, change control, document control, audits, complaints, stability, and specification programs. β’ Maintains system effectiveness, traceability, and regulatory compliance. |
β’ May finalize decisions only when outcomes are fully defined by approved specifications and procedures. β’ Must escalate discretionary decisions, deviations from limits, or regulatory-impacting matters to the Quality Unit. β’ Maintains independence from operational execution. |
| Technical Data Generation | Laboratory & Analytical Function |
β’ Generate laboratory data, analytical results, and sampling evidence in accordance with approved methods and specifications. β’ Coordinate third-party laboratory testing as required. β’ Provide scientific input to investigations and CAPA. |
β’ Execute strictly within validated methods and approved specifications. β’ Escalate out-of-specification, out-of-trend, or atypical results immediately to QA. β’ Do not determine final material or product disposition. |
| Operational Execution | Operations (Production, Packaging, Warehouse, Sanitation, Maintenance) |
β’ Execute GMP activities in accordance with approved batch records, SOPs, and specifications. β’ Maintain accurate, complete, and contemporaneous documentation. β’ Support investigations and implement approved corrective actions. |
β’ Escalate deviations, abnormal conditions, or quality risks immediately to QA. β’ Do not independently authorize release, rework, or disposition decisions. β’ Operate strictly within predefined acceptance criteria. |
| Cross-Functional Governance | Business Risk Manager (BRM) |
β’ Identify and evaluate systemic and cross-process risks affecting quality and compliance. β’ Support enterprise risk integration and management review processes. |
β’ Escalate systemic quality risks to QA and the Quality Unit. β’ Does not hold product release or disposition authority. |
| Cross-Functional Governance | System Operations Manager (SOM) |
β’ Ensure consistent operational adoption of QA-controlled processes. β’ Monitor execution alignment across Process Families. β’ Support implementation of approved system changes. |
β’ Escalate execution gaps impacting quality system effectiveness. β’ Does not override Quality Unit authority or QC requirements. |
| Support Functions | IT, Document Control, Training & Competency |
β’ Maintain validated electronic systems, controlled documents, and training records. β’ Provide infrastructure supporting QA-controlled activities. |
β’ Ensure compliance with Part 11, ALCOA+, and document lifecycle controls. β’ Escalate system or data integrity risks to QA. |
Architectural Clarification: Quality Control (QC) represents the Control Framework β acceptance criteria, specifications, and release rules β established under Quality Unit authority. QC is not an organizational role.
This section defines the complete and authoritative set of Auditable Artifacts (AAs) required to demonstrate effective control of the Quality Assurance (QA) Process Family.
Each AA supports one governing SOP listed in Section 2 and is generated through execution of the corresponding WIN listed in Section 7. SOPs define WHAT-level controls. WINs define HOW-level execution.
QA executes review, verification, and documentation activities under delegated authority of the Quality Unit (Quality Control Operations β QCO). Final regulatory authority and non-delegable quality decisions remain with the Quality Unit in accordance with enterprise governance.
The AA structure is risk-based and consolidated. Each AA has one primary owning SOP and one defined control intent. Individual executions are distinguished through operational metadata (e.g., batch number, event ID, date, system reference), not by AA numbering variations.
| # | SOP | WIN | AA Doc ID | Frequency | Description (Purpose, Control Intent & Auditor Focus) |
|---|---|---|---|---|---|
| Product Disposition & Nonconformance | |||||
| 1 | SOP-QA-RELEASE | WIN-QA-RELEASE | AA-REC-QA-RELEASE-REL | Per Batch |
Purpose: Document independent QA batch record review and
disposition decision executed under delegated Quality Unit authority. Control Intent: Ensure only product meeting predefined specifications and acceptance criteria is released. Auditor Focus: Independence, completeness of review, specification alignment, and documented authority. |
| 2 | SOP-QA-NCMR | WIN-QA-NCMR | AA-REC-QA-NCMR-EVT | Per Event |
Purpose: Document evaluation and disposition of
nonconforming material under QA-controlled workflow. Control Intent: Prevent use or distribution of material not meeting acceptance criteria. Auditor Focus: Disposition rationale, authority traceability, segregation controls, and linkage to specifications. |
| 3 | SOP-QA-RETURNS | WIN-QA-RETURNS | AA-REC-QA-RETURNS-EVT | Per Return |
Purpose: Document QA evaluation and final disposition
of returned product. Control Intent: Prevent reintroduction of potentially compromised product into distribution. Auditor Focus: Traceability, investigation linkage, and documented disposition authority. |
| Deviations, CAPA & Change Control | |||||
| 4 | SOP-QA-DEVIATION | WIN-QA-DEVIATION | AA-REC-QA-DEVIATION-EVT | Per Event |
Purpose: Document identification, investigation,
assessment, and closure of deviations. Control Intent: Detect, assess, and correct quality failures or compliance gaps. Auditor Focus: Timeliness, root cause analysis, risk assessment, and escalation documentation. |
| 5 | SOP-QA-CAPA | WIN-QA-CAPA | AA-REC-QA-CAPA-EVT | As Required |
Purpose: Document corrective and preventive actions,
including effectiveness verification. Control Intent: Prevent recurrence of systemic or repeated quality failures. Auditor Focus: Root cause linkage, effectiveness checks, and documented QA approval. |
| 6 | SOP-QA-CHANGE | WIN-QA-CHANGE | AA-REC-QA-CHANGE-EVT | Per Change |
Purpose: Document evaluation and approval of
quality-impacting changes. Control Intent: Prevent uncontrolled or unassessed changes affecting validated state or regulatory compliance. Auditor Focus: Risk assessment, impact analysis, and documented approval authority. |
| Document & Specification Control | |||||
| 7 | SOP-QA-DOCCTRL | WIN-QA-DOCCTRL | AA-LOG-QA-DOCCTRL-APR | Per Action |
Purpose: Document approval, revision, issuance,
and retirement of controlled documents. Control Intent: Ensure only current, approved documents are available for GMP execution. Auditor Focus: Version control, approval traceability, and lifecycle governance. |
| 8 | SOP-QA-SPEC | WIN-QA-SPEC | AA-REC-QA-SPEC-APR | Change-Driven |
Purpose: Approve and maintain quality specifications
defining acceptance criteria. Control Intent: Ensure specifications support product safety, identity, purity, strength, and composition. Auditor Focus: Approval authority and linkage to testing and release criteria. |
| Complaints, Recalls & Market Actions | |||||
| 9 | SOP-QA-COMPLAINT | WIN-QA-COMPLAINT | AA-REC-QA-COMPLAINT-EVT | Per Complaint |
Purpose: Document complaint intake, investigation,
evaluation, and closure. Control Intent: Detect and address post-market quality risks. Auditor Focus: Timeliness, classification, escalation, and CAPA linkage. |
| 10 | SOP-QA-RECALL | WIN-QA-RECALL | AA-CHK-QA-RECALL-EVT | As Required |
Purpose: Verify execution and effectiveness of recall
or mock recall activities. Control Intent: Ensure rapid and traceable market removal capability. Auditor Focus: Traceability, reconciliation accuracy, and documented oversight. |
| Audit, Management Review & Oversight | |||||
| 11 | SOP-QA-AUDIT | WIN-QA-AUDIT | AA-REC-QA-AUDIT-APR | Planned |
Purpose: Document internal audit execution,
findings, and follow-up actions. Control Intent: Verify QMS conformance and effectiveness. Auditor Focus: Independence, coverage, and corrective action tracking. |
| 12 | SOP-QA-MGMTREV | WIN-QA-MGMTREV | AA-REC-QA-MGMTREV-APR | Periodic |
Purpose: Capture management review inputs,
decisions, and actions. Control Intent: Ensure leadership oversight of QMS performance and risk management. Auditor Focus: Inputs, outputs, decision traceability, and action follow-up. |
| Sampling, Stability & Retention | |||||
| 13 | SOP-QA-SAMPLING | WIN-QA-SAMPLING | AA-TMP-QA-SAMPLING-APR | Change-Driven |
Purpose: Define and approve sampling plans. Control Intent: Ensure representative and statistically appropriate sampling aligned to specifications. Auditor Focus: Plan approval and execution linkage. |
| 14 | SOP-QA-STABILITY | WIN-QA-STABILITY | AA-LOG-QA-STABILITY-APR | Ongoing |
Purpose: Monitor stability study execution and trend results. Control Intent: Detect quality changes over declared shelf life. Auditor Focus: Trend review, excursion handling, and escalation. |
| 15 | SOP-QA-RESERVE | WIN-QA-RESERVE | AA-LOG-QA-RESERVE-APR | Per Batch |
Purpose: Track reserve sample retention and controlled retrieval. Control Intent: Maintain evidence for investigation and regulatory support. Auditor Focus: Retention compliance and traceability. |
All Auditable Artifacts leverage the centralized QA Quality Event escalation process. Deviations, complaints, excursions, specification failures, or risk indicators are escalated through WIN-QA-DEVIATION or the applicable QA event pathway.
Domain-specific SOPs and WINs define event identification triggers only. They do not establish independent investigation, escalation, or final disposition authority. Final regulatory authority remains under the Quality Unit governance framework.
This section defines the minimum required content elements for each Auditable Artifact (AA) identified in Section 5. These requirements establish documentation completeness, traceability, authority verification, and regulatory defensibility.
All AAs must comply with ALCOA+, Good Documentation Practices (GDP), and 21 CFR Part 11 (where electronic). Approval authority must align with delegated Quality Unit governance.
All risk assessments performed within Deviations, CAPA, Change Control, Specification evaluation, and Complaint investigations must follow the enterprise Risk Management Program (RMP) methodology to ensure consistent, documented, and risk-based decision-making.
This section identifies the operational Work Instructions (WINs) that execute the WHAT-level controls defined in Section 2 (SOP Layer).
WINs define controlled execution steps, sequencing, system interaction, and documentation workflows. They do not establish regulatory authority. Final quality authority and non-delegable decisions remain under the Quality Unit governance framework.
Each WIN produces one primary Auditable Artifact (AA) defined in Section 5 and governed by the completeness requirements of Section 6.
Associated AA: AA-REC-QA-RELEASE-REL
Associated AA: AA-REC-QA-NCMR-EVT
Associated AA: AA-REC-QA-RETURNS-EVT
Associated AA: AA-REC-QA-DEVIATION-EVT
Associated AA: AA-REC-QA-CAPA-EVT
Associated AA: AA-REC-QA-CHANGE-EVT
Associated AA: AA-LOG-QA-DOCCTRL-APR
Associated AA: AA-REC-QA-SPEC-APR
Associated AA: AA-REC-QA-COMPLAINT-EVT
Associated AA: AA-CHK-QA-RECALL-EVT
Associated AA: AA-REC-QA-AUDIT-APR
Associated AA: AA-REC-QA-MGMTREV-APR
Associated AA: AA-TMP-QA-SAMPLING-APR
Associated AA: AA-LOG-QA-STABILITY-APR
Associated AA: AA-LOG-QA-RESERVE-APR
This Family Pack inherits all enterprise-level governance defined in the L0 Unified Governance Document (L0-QMS-UGD), which serves as the authoritative source for quality, documentation, data integrity, and system requirements. All SOPs, WINs, and FORMs within this Family must be created, maintained, and executed in alignment with L0 rules, including:
L0 requirements apply uniformly and supersede all Family-level content. This Family Pack does not replace or modify L0 governance and operates fully within the enterprise-wide QMS architecture.
Version: 1.0 | Effective Date: [Insert Date] | Controlled Copy
Linked SOPs: SOP-QC-2 β Finished Goods Testing; SOP-QA-9 β Product Release Authorization
Linked Forms: QA-SSF-001, QA-COC-001, QA-RA-001, QA-TRI-003, MDR Form
This Work Instruction defines the standardized process for microbiological data review, risk evaluation, and disposition of finished dietary supplement products manufactured or packaged at Sawgrass Nutra Labs (SNL). It ensures that all results from microbiological testing are scientifically valid, accurately interpreted, and dispositioned according to validated limits and regulatory expectations.
The purpose of this WI is to operationalize the requirements of SOP-QC-2 (Finished Goods Testing) and SOP-QA-9 (Product Release Authorization), ensuring compliance with 21 CFR 111.70 β 111.95, 21 CFR Part 11, and NSF/ANSI 455-2 §§ 4.6.8 β 4.6.10.
This instruction provides QA personnel with a decision framework for classifying microbiological findings as acceptable, alert, action, or escalation events and defines the criteria for release, conditional release, rejection, or third-party review.
This Work Instruction applies to all finished-goods lots produced or packaged under SNL control, including:
The scope includes sampling verification, analytical data review, trend evaluation, microbiological risk assessment (MRA), and escalation (QA β QA Director β 3rd Party Expert β QASC).
It does not describe test execution; testing procedures are defined in SOP-QC-2 §§ 5.1β5.2 and associated laboratory work instructions.
This WI also covers QA review of non-objectionable organism classifications, Microbiological Deviation Reports (MDRs), and Microbiological Risk Assessments (MRAs) prior to release authorization.
| Department / Role | Primary Responsibilities | Records Generated | Linked SOPs |
|---|---|---|---|
| Quality Assurance (QA) |
|
MRA Report, QA-RA-001, MDR Form | SOP-QA-9, SOP-QA-8, SOP-CAPA-1 |
| Quality Control (QC) |
|
QA-SSF-001, QA-COC-001 | SOP-QC-1, SOP-QC-2, SOP-QC-5 |
| Warehouse / Production |
|
Sampling Log, COC | SOP-QC-1, WI-020-01 |
| Third-Party Laboratories |
|
COA / Lab Report Package | SOP-QC-2 |
| QASC (Quality & Science Council) |
|
QASC Minutes, MRA Summary | SOP-QA-5, SOP-QA-9 |
The following definitions apply to microbiological review and disposition of finished dietary supplements. They ensure consistent QA interpretation per 21 CFR 111, USP <61>, <62>, <1111>, and NSF/ANSI 455-2 §§4.6.8β4.6.10.
| Term | Definition / Basis |
|---|---|
| Alert Level | Early-warning threshold (β€ 50% above specification) requiring trending or monitoring, but not automatic hold. |
| Action Level | Defined microbial limit exceedance that triggers a formal Microbiological Risk Assessment (MRA) but may still be scientifically justified for release. |
| Absolute Limit | Maximum permissible microbiological result. Values above require external expert review or rejection. |
| Non-Objectionable Organism | Environmental or benign species consistent with product type (e.g., B. subtilis, S. cerevisiae), not pathogenic or toxigenic per USP <1111>. |
| Objectionable Organism | Any microorganism that may cause illness, spoilage, or stability risk, including Salmonella spp., E. coli, S. aureus, P. aeruginosa. |
| Conditional Release | QA-approved release of a lot that marginally exceeds limits but is scientifically justified safe following MRA and QA Director sign-off. |
| Microbiological Risk Assessment (MRA) | Structured QA review of microbiological data to determine if exceedance is objectionable or acceptable based on organism ID, product type, and risk. |
| Microbiological Deviation Report (MDR) | Record documenting deviations, investigation, corrective actions, and final QA disposition. |
| 3rd-Party Escalation Limit | Threshold requiring escalation to an external qualified microbiologist (e.g., β₯ 10β΅ CFU/g or unusual flora) even when pathogens are absent. |
| QASC | Executive Quality & Science Council β multi-disciplinary group that reviews high-impact or uncertain microbial disposition cases. |
Note: Definitions shall be reviewed annually by QA Microbiology to ensure alignment with current USP, NSF, and CFR requirements. Changes to these definitions trigger a controlled document update under SOP-QA-6 (Management of Change).
The following stepwise procedures outline the review, assessment, and disposition of microbiological data for finished goods. Each process ensures that microbiological limits are validated, test data are verified, and disposition decisions are justified, documented, and compliant with 21 CFR 111.70β111.95 and NSF/ANSI 455-2 §§ 4.6.8β4.6.10.
Representative finished-goods samples shall be collected under controlled conditions to ensure validity, traceability, and prevention of contamination during transfer to approved third-party laboratories. This procedure satisfies 21 CFR 111.80(c), 111.95, and NSF/ANSI 455-2 Β§ 4.7.
No internal retesting of retained bottles is performed at SNL unless specifically authorized under a Microbiological Risk Assessment (MRA) and documented in a CAPA.
In exceptional circumstances where a confirmatory investigation or regulatory inquiry requires retention testing at SNL, the QA Director may authorize the selection of one (1) retained finished-goods unit to be released for third-party laboratory analysis. This override shall be documented in writing and recorded in the QMS as follows:
All Executive Override events must be reviewed during Management Review per SOP-QA-5. Unauthorized or undocumented removal of retains for testing is strictly prohibited.
Purpose: Define the standardized process for evaluating presumptive or confirmed pathogen detections (e.g., Salmonella spp., E. coli O157:H7, Staphylococcus aureus, Pseudomonas aeruginosa) in finished goods per USP <62>, 21 CFR 111.70 (b), and NSF/ANSI 455-2 Β§ 4.6.10.
| Target Organism | Specification (Scientific) | Numeric Limit | Basis |
|---|---|---|---|
| Salmonella spp. | Absence in 1 g | 0 CFU / 1 g | USP <62>; 21 CFR 111.70(b) |
| Escherichia coli O157:H7 | Absence in 1 g | 0 CFU / 1 g | USP <62>; FDA BAM |
| Staphylococcus aureus | Absence in 1 g | 0 CFU / 1 g | USP <62> |
| Level | Status / Type | Condition / Result | QA Action | Default Disposition |
|---|---|---|---|---|
| 1 | Presumptive Positive (Lot-Specific) | Initial screen indicates potential pathogen detection. | Quarantine lot; verify method, media, analyst, and COC documentation. | Hold pending confirmation |
| 2 | Confirmed Negative (Lot-Specific) | Confirmatory USP <62> testing shows pathogen absent. | Document as false positive; issue CAPA if cause identified; release lot. | Release |
| 3 | Confirmed Positive (Lot-Specific) | Compendial confirmation identifies pathogen in finished lot. | Initiate MDR + MRA; reject or reprocess using validated kill step; retest before release. | Reject / Reprocess & Retest |
| 4 | Absolute Escalation (Systemic / Adverse Trend) | Repeated positives, unidentified flora β₯ 10β΅ CFU/g, or any event suggesting process or supplier contamination. | Escalate to external microbiology expert and QASC; open CAPA and include in APQR review. | QASC Review / CAPA |
Pathogen screen β
Presumptive positive? YES β
Hold lot β Confirm via USP <62>
Confirmed?
YES β Initiate MDR + MRA β Reject / Reprocess
NO β False positive β CAPA β Release
NO β Within spec β Release
QA Documentation: All pathogen triage events must be documented in MDR, MRA, and APQR trending records.
Purpose: Define the review process for quantitative microbial count results (CFU/g) in finished goods to distinguish quality indicator trends from microbiological risks.
| Category | Typical Matrix | Specification (Scientific) | Numeric Limit |
|---|---|---|---|
| Cat 1 | Vitamins, minerals, tablets | β€ 1 Γ 10Β³ CFU/g | β€ 1,000 CFU/g |
| Cat 2 | Botanical or herbal blends | β€ 1 Γ 10β΄ CFU/g | β€ 10,000 CFU/g |
| Cat 3 | Fermented or probiotic formulations | β€ 1 Γ 10βΆ CFU/g | β€ 1,000,000 CFU/g |
| Category | Action Level (Trigger MRA) | Absolute Escalation Limit | Disposition Path |
|---|---|---|---|
| Cat 1 | > 1 Γ 10Β³ (1,000) CFU/g | > 1 Γ 10β΄ (10,000) CFU/g | MRA β Escalate if confirmed |
| Cat 2 | > 1 Γ 10β΄ (10,000) CFU/g | > 1 Γ 10β΅ (100,000) CFU/g | MRA β Escalate if confirmed |
| Cat 3 | > 1 Γ 10βΆ (1,000,000) CFU/g | > 1 Γ 10βΈ (100,000,000) CFU/g | MRA β Escalate to external expert |
TPC result received β
Verify test validity (COA, controls, lab method)
Within spec? β YES β QA review β Release
NO β
Exceeds Action Level? β YES β Initiate MRA
Organism objectionable? YES β Reject
NO β Conditional Release (QA Director)
Exceeds Absolute Limit? β Escalate to Expert / Reject
Purpose: Establish risk-based thresholds for evaluating yeast and mold counts in finished goods and define actions for trending, MRAs, and rejections. These limits align with USP <61>/<1111>, 21 CFR 111.70 (b), and NSF/ANSI 455-2 §§ 4.6.8 β 4.6.10.
| Category | Typical Matrix | Scientific Limit (CFU/g) | Numeric Limit (CFU/g) |
|---|---|---|---|
| Cat 1 | Vitamins / Minerals / Tablets | β€ 1 Γ 10Β² | β€ 100 |
| Cat 2 | Botanical / Herbal Blends | β€ 1 Γ 10Β³ | β€ 1,000 |
| Cat 3 | Fermented / Probiotic Formulations | β€ 1 Γ 10β΄ | β€ 10,000 |
| Category | Action Level (Trigger MRA) | Absolute Escalation Limit | Default Disposition Path |
|---|---|---|---|
| Cat 1 | > 1 Γ 10Β² (100) | > 1 Γ 10Β³ (1,000) | MRA β Conditional Release / Escalate if confirmed |
| Cat 2 | > 1 Γ 10Β³ (1,000) | > 1 Γ 10β΄ (10,000) | MRA β Conditional Release / Escalate if confirmed |
| Cat 3 | > 1 Γ 10β΄ (10,000) | > 1 Γ 10β΅ (100,000) | MRA β External Expert / Escalate to QA Director |
Action / Escalation Guidance: Results β€ Action Level β Trend only. Results > Action Level β Initiate MRA. Results β₯ Absolute Limit or toxigenic species β Escalate to QA Director / External Expert per SOP-CAPA-1.
Y/M result received β
Within spec? β Release
β€ Action Level? β Verify β Trend β Conditional Release (if safe)
> Action Level? β Identify species β MRA
Objectionable / toxigenic? YES β Reject / Escalate
NO β Conditional Release
β₯ Absolute Limit β Escalate to QA Director / External Expert
Persistent trend β CAPA β APQR review
Purpose: Define the structured QA evaluation to determine whether microbial exceedances are objectionable, non-objectionable, or acceptable for conditional release.
Exceedance detected β
Verify lab data integrity β
Identify organism (MALDI-TOF / sequencing) β
Objectionable? YES β Reject / CAPA
NO β Justify via literature β Conditional Release
QA Director approval β Record in MRA file
Purpose: Define QA decision-making, verification, and escalation structure for finished goods lot release. This workflow integrates microbiological review, label verification, and QA disposition authorization per 21 CFR 111.12(a), 111.70(b), 111.123(a)(3), and NSF/ANSI 455-2 §§ 4.6.8β4.6.10.
| Disposition | Criteria | Authority | Required Documentation |
|---|---|---|---|
| Release | All microbial, label, and specification results within limits; no open deviations or CAPA. | QA Supervisor / QA Manager | QA-RA-001 (Release Authorization Form) |
| Conditional Release | Quality indicator exceeded but non-objectionable flora per approved MRA and label verified accurate. | QA Director | MRA + QA-RA-001 |
| Reject | Confirmed pathogen, objectionable organism, or labeling deviation affecting compliance. | QA Director | MDR + QA-RA-001 |
| Escalate | β₯ 3rd-Party Escalation Limit, unresolved MRA, or significant labeling/regulatory risk. | QA Director β QASC (Quality Assurance Steering Committee) | MRA + QASC Meeting Minutes |
Microbiological review complete β
All results within specification?
YES β Verify Label Accuracy β QA Release β Record on QA-RA-001
NO β
Action Level Exceeded β Perform MRA β Conditional Release (if justified)
Pathogen / Objectionable β Reject (MDR)
β₯ 3rd-Party Escalation Limit β External Expert Review β QASC Escalation
Label Verification β Completed? YES β Final QA Sign-off β Release
NO β Hold until compliant
Note: Final release approval remains solely under QA authority per 21 CFR 111.12(a). Electronic approvals are Part 11 compliant within the QMS.
All records generated under this Work Instruction must be maintained within the controlled Quality Management System (QMS) and retained according to 21 CFR 111.605 and NSF/ANSI 455-2 §§ 4.4.41β4.4.42. Electronic records must comply with 21 CFR Part 11 and SOP-IT-2 (Electronic Record Management).
Finished-goods test samples submitted to third-party laboratories are not retained by SNL. Custody and disposal of test materials are managed by the contracted laboratory per the Quality Technical Agreement (QTA). SNL maintains only digital and signed copies of QA-SSF-001, QA-COC-001, and all associated COAs within the QMS.
QA shall ensure that all MRA and MDR records are linked to the relevant batch record and that microbial data are trended semi-annually within the Annual Product Quality Review (APQR) per SOP-QA-8.
This appendix provides representative examples of non-objectionable microorganisms that may be considered acceptable in finished dietary supplement products when supported by a validated Microbiological Risk Assessment (MRA).
| Organism | Classification | Basis for Acceptance | Reference |
|---|---|---|---|
| Bacillus subtilis | Environmental / Commensal | Common soil organism, non-toxigenic strains acceptable under USP <1111> | USP <1111>, NSF 173 |
| Micrococcus luteus | Environmental / Commensal | Non-pathogenic, common in air and dust, acceptable as incidental flora | USP <1111> |
| Saccharomyces cerevisiae | Yeast / Process Flora | Benign fermentative yeast frequently present in natural ingredients | USP <1111>, NNHPD |
| Lactobacillus plantarum | Probiotic / Functional | Recognized beneficial microbe; expected in probiotic formulations | USP <2022>, NNHPD |
| Bacillus coagulans | Probiotic / Spore-former | GRAS and acceptable for probiotic blends under validated control | USP <2022>, NSF 173 |
The complete, controlled list of acceptable non-objectionable organisms is maintained in QA-APP-002 (Microbiology Reference List) and reviewed annually by QA Microbiology. Any organism classification change must undergo formal review and approval under SOP-QA-6 (Management of Change).
End of WI-QA-2A β Finished Goods Microbiological Data Review & Disposition