| Field | Value |
|---|---|
| Effective Date | 03/23/2026 |
| Status | Implemented |
| Document ID | QMS-FP-QA |
| Version | v1.0 |
| Owner | Quality Unit (QU) |
| Approver | Quality Unit Director |
| Controlled System of Record | GitHub |
| Change Control | QMS-1378 |
| Last Review Date | 03/23/2026 |
| Next Review Date | 03/23/2027 |
This Family operates under the governance requirements defined in the Unified Governance Manual (QMS-GOV), including the Quality Manual, Risk Management Program (RMP), Internal Audit Program (IAP), and Material Review Board (MRB) governance administered by QA. All QA responsibilities and Work Instructions must align with these enterprise governance authorities.
The Quality Assurance (QA) Process Family executes and administers enterprise Quality Management System processes across all GMP activities under the governance of the QMS and the authority of the Quality Unit. QA ensures that systems, processes, and products are controlled, compliant, validated, traceable, and continuously improving.
The Quality Unit retains ownership of the Quality Management System (QMS). Quality Assurance administers defined QMS processes under delegated authority but does not hold ultimate system ownership or non-delegable quality authority.
QA administers quality oversight of outsourced manufacturers and critical suppliers under the governance of the Quality Unit. This includes qualification, audit oversight, performance monitoring, material disposition controls, and risk-based surveillance to ensure compliance with applicable GMP and regulatory requirements.
The Quality Unit holds non-delegable quality authority as required under 21 CFR Part 111 Subpart F. This authority protects product safety, regulatory compliance, and independence from operational influence.
Quality Assurance executes Quality Management System processes under formally delegated authority from the Quality Unit. QA may finalize routine quality system determinations when outcomes are fully defined by approved specifications, established acceptance criteria, and controlled procedures.
The following authorities are retained exclusively by the Quality Unit and may not be delegated:
Delegation of execution does not transfer final Quality Unit authority. The Quality Unit retains the right to review, intervene, or assume direct authority in any quality-impacting matter.
QA maintains independence from Production, Packaging, Warehouse, and other operational Process Families to ensure unbiased execution of quality system controls and oversight activities.
QA administers WHAT-level enterprise quality system controls, including:
Regulatory frameworks including 21 CFR Part 111, 21 CFR Part 11, and NSF/ANSI 455-2 require manufacturers to maintain independent quality oversight functions that ensure:
Key QA risk themes include:
QA interfaces with all Process Families—including QCL, QCP, TAL, IT, WH, PROD, PKG, SAN, MNT, PROC, and others—by providing:
Risk Tier Classification: VERY HIGH. QA system controls form the foundation of GMP compliance. Failure in QA execution or oversight can compromise the entire Quality Management System, expose the organization to regulatory enforcement, and jeopardize product safety.
| SOP ID | SOP Title | Purpose (Control Intent) | Scope (Operational Boundary) | Regulatory Anchors |
|---|---|---|---|---|
| SOP-QA-RELEASE | Product Release & Disposition | Establishes WHAT-level controls for batch release, material disposition, and QA authorization prior to use or distribution. | Applies to finished goods, components, labels, packaging materials, and intermediates requiring QA approval. | 21 CFR 111.123, 111.165; NSF/ANSI 455-2 §4.1.1. |
| SOP-QA-NCMR | Nonconforming Material Review | Defines controls for identifying, segregating, evaluating, and dispositioning nonconforming materials. | Applies to materials or product deemed unsuitable or out of specification. | 21 CFR 111.113, 111.165; NSF/ANSI 455-2 §4.4.1. |
| SOP-QA-RETURNS | Returned Product, Salvage & Reprocessing | Establishes controls for evaluation and disposition of returned product, including salvage and reprocessing pathways. | Applies to all returned product and associated investigations. | 21 CFR 111.525, 111.530; NSF/ANSI 455-2 §4.2.3. |
| SOP ID | SOP Title | Purpose | Scope | Regulatory Anchors |
|---|---|---|---|---|
| SOP-QA-DEVIATION | Deviation Management | Defines documentation, investigation, evaluation, and closure controls for deviations and abnormal events. | Applies to all unplanned events impacting GMP operations. | 21 CFR 111.113, 111.503. |
| SOP-QA-CAPA | Corrective & Preventive Action | Establishes controls for root cause analysis, corrective actions, and effectiveness verification. | Applies to systemic issues arising from deviations, audits, complaints, or trend analysis. | 21 CFR 111.75, 111.503; NSF §4.4.2. |
| SOP-QA-CHANGE | Change Control | Defines evaluation, approval, implementation, and verification of quality-impacting changes. | Applies to changes affecting product, systems, documents, equipment, or facilities. | 21 CFR 111.103; NSF §4.4.3. |
Specifications and acceptance criteria are established under Quality Unit authority within the Quality Control (QC) Control Framework. QA administers the controlled lifecycle management of approved specifications but does not independently establish acceptance criteria.
| SOP ID | SOP Title | Purpose | Scope | Regulatory Anchors |
|---|---|---|---|---|
| SOP-QA-DOCCTRL | Document Control | Establishes lifecycle controls for creation, revision, approval, distribution, archival, and retirement. | Applies to all controlled QMS documents. | 21 CFR 111.605, 111.610; NSF §4.7.1. |
| SOP-QA-SPEC | Specification Management | Establishes controls for authoring, approving, issuing, and revising product and material specifications. | Applies to specifications for raw materials, packaging, intermediates, and finished goods. | 21 CFR 111.70, 111.75; NSF §4.2.1. |
| SOP ID | SOP Title | Purpose | Scope | Regulatory Anchors |
|---|---|---|---|---|
| SOP-QA-COMPLAINT | Complaint Handling | Establishes controls for receiving, evaluating, investigating, and trending complaints. | Includes adverse event and regulatory assessment where applicable. | 21 CFR 111.560, 111.570; NSF §4.2.4. |
| SOP-QA-RECALL | Recall Management | Defines requirements for recall initiation, coordination, execution, and closure. | Applies to voluntary and mandatory recalls. | 21 CFR 111.535; NSF §4.2.5. |
| SOP ID | SOP Title | Purpose | Scope | Regulatory Anchors |
|---|---|---|---|---|
| SOP-QA-AUDIT | Internal Audit Program | Establishes planning, execution, documentation, and follow-up of internal audits. | Applies to all GMP process audits. | 21 CFR 111.503; NSF §4.6.1. |
| SOP-QA-MGMTREV | Management Review | Defines formal review of QMS performance, risks, metrics, and corrective actions. | Applies to executive leadership oversight. | NSF §4.1.1, 4.6.1. |
| SOP ID | SOP Title | Purpose | Scope | Regulatory Anchors |
|---|---|---|---|---|
| SOP-QA-SAMPLING | Sampling Program | Establishes controls for defining and maintaining sampling plans and methodologies. | Applies to all GMP sampling activities. | 21 CFR 111.80, 111.160. |
| SOP-QA-STABILITY | Stability Program | Defines stability study design, monitoring, and evaluation controls. | Applies to finished goods stability programs. | 21 CFR 111.75, 111.85. |
| SOP-QA-RESERVE | Reserve Sample Program | Establishes controls for collection, storage, and management of reserve samples. | Applies to all finished goods requiring retains. | 21 CFR 111.83. |
Citations above support WHAT requirements; compliance traceability is maintained at the L0 level.
The following WHAT-level training requirements apply to all personnel who work within or support the Quality Assurance (QA) Process Family. Training expectations are grouped by governing SOP and aligned to the domain structure defined in Section 2 to improve traceability, audit clarity, and architectural consistency.
Personnel must complete initial qualification training prior to independent execution of QA-controlled activities and must complete annual refresher training thereafter. Retraining is required upon significant procedural revision, regulatory update, or identified performance gap.
This section defines organizational roles within the Sawgrass Nutra Labs Quality Management System (QMS) and the governance responsibilities assigned to each role.
A Role represents a defined structural position within the
quality governance architecture (Authority, System Administration,
Technical Execution, Operational Execution, or Cross-Functional Governance).
Responsibilities define the outcome-based accountabilities
assigned to that role. Responsibilities do not confer authority beyond that
defined by the Quality Unit.
| Architectural Tier | Role | Primary Responsibilities (WHAT) | Authority & Escalation Boundaries |
|---|---|---|---|
| Authority | Quality Unit (QU) |
• Holds final, non-delegable authority for quality-related decisions. • Approves or rejects materials, components, and finished products. • Authorizes rework, reprocessing, or destruction activities. • Determines regulatory reporting and stop-work decisions. |
• Authority cannot be overridden by operational, financial, or commercial interests. • Retains right to assume direct authority in any quality-impacting matter. |
| System Administration | Quality Assurance (QA) |
• Executes and administers the Quality Management System under delegated authority of the Quality Unit. • Performs batch record review and prepares disposition determinations within predefined acceptance criteria. • Administers deviations, CAPA, change control, document control, audits, complaints, stability, and specification programs. • Maintains system effectiveness, traceability, and regulatory compliance. |
• May finalize decisions only when outcomes are fully defined by approved specifications and procedures. • Must escalate discretionary decisions, deviations from limits, or regulatory-impacting matters to the Quality Unit. • Maintains independence from operational execution. |
| Technical Data Generation | Laboratory & Analytical Function |
• Generate laboratory data, analytical results, and sampling evidence in accordance with approved methods and specifications. • Coordinate third-party laboratory testing as required. • Provide scientific input to investigations and CAPA. |
• Execute strictly within validated methods and approved specifications. • Escalate out-of-specification, out-of-trend, or atypical results immediately to QA. • Do not determine final material or product disposition. |
| Operational Execution | Operations (Production, Packaging, Warehouse, Sanitation, Maintenance) |
• Execute GMP activities in accordance with approved batch records, SOPs, and specifications. • Maintain accurate, complete, and contemporaneous documentation. • Support investigations and implement approved corrective actions. |
• Escalate deviations, abnormal conditions, or quality risks immediately to QA. • Do not independently authorize release, rework, or disposition decisions. • Operate strictly within predefined acceptance criteria. |
| Cross-Functional Governance | Business Risk Manager (BRM) |
• Identify and evaluate systemic and cross-process risks affecting quality and compliance. • Support enterprise risk integration and management review processes. |
• Escalate systemic quality risks to QA and the Quality Unit. • Does not hold product release or disposition authority. |
| Cross-Functional Governance | System Operations Manager (SOM) |
• Ensure consistent operational adoption of QA-controlled processes. • Monitor execution alignment across Process Families. • Support implementation of approved system changes. |
• Escalate execution gaps impacting quality system effectiveness. • Does not override Quality Unit authority or QC requirements. |
| Support Functions | IT, Document Control, Training & Competency |
• Maintain validated electronic systems, controlled documents, and training records. • Provide infrastructure supporting QA-controlled activities. |
• Ensure compliance with Part 11, ALCOA+, and document lifecycle controls. • Escalate system or data integrity risks to QA. |
Architectural Clarification: Quality Control (QC) represents the Control Framework — acceptance criteria, specifications, and release rules — established under Quality Unit authority. QC is not an organizational role.
| # | SOP | WIN | AA Doc ID | Frequency | Description |
|---|---|---|---|---|---|
| 1 | SOP-QA-RELEASE | WIN-QA-RELEASE | AA-REC-QA-RELEASE-REL | Per Batch | Batch release record |
| 2 | SOP-QA-NCMR | WIN-QA-NCMR | AA-REC-QA-NCMR-EVT | Per Event | Nonconformance record |
| 3 | SOP-QA-RETURNS | WIN-QA-RETURNS | AA-REC-QA-RETURNS-EVT | Per Return | Return record |
| 4 | SOP-QA-DEVIATION | WIN-QA-DEVIATION | AA-REC-QA-DEVIATION-EVT | Per Event | Deviation record |
| 5 | SOP-QA-CAPA | WIN-QA-CAPA | AA-REC-QA-CAPA-EVT | As Required | CAPA record |
| 6 | SOP-QA-CHANGE | WIN-QA-CHANGE | AA-REC-QA-CHANGE-EVT | Per Change | Change record |
| 7 | SOP-QA-DOCCTRL | WIN-QA-DOCCTRL | AA-LOG-QA-DOCCTRL-APR | Per Action | Document control log |
| 8 | SOP-QA-SPEC | WIN-QA-SPEC | AA-REC-QA-SPEC-APR | Change Driven | Specification record |
| 9 | SOP-QA-COMPLAINT | WIN-QA-COMPLAINT | AA-REC-QA-COMPLAINT-EVT | Per Event | Complaint record |
| 10 | SOP-QA-RECALL | WIN-QA-RECALL | AA-CHK-QA-RECALL-EVT | As Required | Recall record |
| 11 | SOP-QA-AUDIT | WIN-QA-AUDIT | AA-REC-QA-AUDIT-APR | Planned | Audit record |
| 12 | SOP-QA-MGMTREV | WIN-QA-MGMTREV | AA-REC-QA-MGMTREV-APR | Periodic | Management review record |
| 13 | SOP-QA-SAMPLING | WIN-QA-SAMPLING | AA-TMP-QA-SAMPLING-APR | Change Driven | Sampling plan |
| 14 | SOP-QA-STABILITY | WIN-QA-STABILITY | AA-LOG-QA-STABILITY-APR | Ongoing | Stability log |
| 15 | SOP-QA-RESERVE | WIN-QA-RESERVE | AA-LOG-QA-RESERVE-APR | Per Batch | Reserve sample log |
All Auditable Artifacts leverage the centralized QA Quality Event escalation process. Deviations, complaints, excursions, specification failures, or risk indicators are escalated through WIN-QA-DEVIATION or the applicable QA event pathway.
Domain-specific SOPs and WINs define event identification triggers only. They do not establish independent investigation, escalation, or final disposition authority. Final regulatory authority remains under the Quality Unit governance framework.
Trigger Event: Batch ready for QA disposition
Trigger Event: Identification of nonconforming material
Trigger Event: Product return received
Trigger Event: Deviation identified
Trigger Event: Systemic issue identified
Trigger Event: Change request initiated
Trigger Event: Document creation or revision
Trigger Event: Specification creation or update
Trigger Event: Complaint received
Trigger Event: Recall initiated
Trigger Event: Scheduled or triggered audit
Trigger Event: Management review cycle
Trigger Event: Sampling required
Trigger Event: Stability timepoint reached
Trigger Event: Batch retained
This Family Pack inherits all enterprise-level governance defined in the L0 Unified Governance Document (L0-QMS-UGD), which serves as the authoritative source for quality, documentation, data integrity, and system requirements. All SOPs, WINs, and FORMs within this Family must be created, maintained, and executed in alignment with L0 rules, including:
L0 requirements apply uniformly and supersede all Family-level content. This Family Pack does not replace or modify L0 governance and operates fully within the enterprise-wide QMS architecture.