GMP Audits and Pharmacopoeias: Preparing for EMA/FDA Inspections Across Multiple Regions

GMP Audits and Pharmacopoeias: Preparing for EMA/FDA Inspections Across Multiple Regions

Why Pharmacopoeias “Hurt” in Audits (If You Treat Them Like Paper)

In GMP audits, pharmacopoeias are not “an elegant reference to cite in SOPs”: they are official standards that the inspector uses as an immediate benchmark to verify whether what you declare is actually true in practice. A typical mistake is to confuse documentary conformity (we have USP/Ph. Eur. available, we cite them in procedures) with real compliance (methods and limits are implemented, updated, verified, traceable, and defensible).

If the inspector finds a discrepancy between “how it should be” and “how you actually do it”, it is often not seen as a problem with a single test: it is perceived as a systemic signal (procedures not followed, weak QA oversight, fragile laboratory culture).

How Inspectors Use Pharmacopoeias: Legal Standard + Implicit Checklist

In an inspection on these topics, the pharmacopoeia becomes at the same time:

  • Legal standard (in the relevant markets): if an applicable monograph exists, you are expected to comply with it unless approved exceptions exist.
  • Technical reference: the inspector compares methods, specifications, limits, and execution.
  • Implicit checklist: every unjustified/unapproved deviation can become a finding.

Expect direct questions such as: “Which pharmacopoeias do you follow and why?”, “How do you manage updates?”, “Where is the verification of the compendial method?”, “How do you qualify your working standard?”

Differences in “Inspection Tone” Between EMA, FDA, and PIC/S

Simplifying it (but in a useful way for the audit room):

  • EMA / EU (Ph. Eur.): strong focus on alignment with Ph. Eur. + EU GMP. If you export, the inspector wants to understand how you manage other pharmacopoeias as well within a global quality system.
  • FDA / USA (USP): often a very strict approach to USP; an unjustified deviation from USP can become a “product quality & legal compliance” issue.
  • PIC/S: assessment of the global quality system (multi-standard consistency, risk-based approach, robust management of differences).

The 6 Areas “Always Under Scrutiny” and What You Really Need to Prepare

1) Compendial Methods and Their Execution (the classic: “Do you really follow the monograph?”)

What the inspector looks at: actual execution vs compendial text (critical parameters, preparations, columns, SST, operational details)

Recurring red flags: undocumented deviations, use of outdated versions, overly generic SOPs (“HPLC according to Ph. Eur.” without details), absence of evidence of suitability verification

What to have ready:

  • Internal SOP/method “line-by-line” aligned with the compendial source
  • Method verification dossier (see cluster #1)
  • Change control demonstrating that updates have been implemented

2) Reference Standards (primary and secondary standards)

What the inspector looks at: use of official standards, qualification of secondary standards, storage, expiry dates, traceability (CoA, usage logs, opening date, etc.)

Red flags: expired standards, unqualified working standards, opaque traceability chain, inadequate storage

What to have ready:

  • Standard inventory (status “valid/expired”, location, opening date)
  • Protocol + report for working standard qualification vs primary standard
  • Impeccable logbook (who, when, how much, for which test)

3) Dissolution and Release Testing (where many companies “break”)

What the inspector looks at: apparatus qualification, mechanical checks, test conditions (rpm, volume, medium, pH, deaeration where required), stage calculations/criteria, trends and repeats

Red flags: apparatus not regularly qualified, “adjusted” parameters, incomplete data, repeats not properly managed, ignored multi-pharmacopoeia differences

What to have ready:

  • Qualification dossier + certificates
  • Examples of complete reports (with raw data) from recent batches
  • Historical trends and OOS/OOT management

Pharmacopeias and GMP Audits: Operational Management of USP, Ph. Eur. and Multi-Regional Compliance During Inspections

4) Impurities and Compendial Limits (where the issue is “limit & method”)

What the inspector looks at: adequacy of the method to detect specific impurities and compliance with compendial/ICH limits; consistency of specifications across markets

Red flags: unsuitable methods, internal limits wider than the compendia without justification, lack of a harmonized multi-region view

What to have ready:

  • Summary document: USP vs Ph. Eur. vs ICH limits and the adopted strategy
  • Sensitivity/LOQ data consistent with the limits

5) Biological Assays and Compendial Microbiology (high risk, high variability)

What the inspector looks at: suitability testing, management of strains/reagents, validity criteria, variability, contamination, environmental controls, specific training

Red flags: suitability not performed, non-traceable strains, variability out of control, cross-contamination, weak investigations

6) Instrumentation and Calibrations (the killer question: “Did you use an instrument out of tolerance?”)

What the inspector looks at: calibration/qualification status of critical instruments and impact on historical data in case of calibration OOT

Red flags: OOT instrument used, incomplete calibrations against compendial requirements, missing SST records, poor maintenance

Quick win: prepare a readable calibration matrix (instrument → last calibration → next due → status)

The Most Typical Findings (and How to Defuse Them Before They Arise)

From inspection practice summarized in the guide:

  • Deviation from a compendial method without justification → solution: comparability/validation + QA approval + regulatory impact assessment
  • Failure to implement pharmacopoeial updates → solution: robust compendial change control (monitoring, impact assessment, implementation before the effective date)
  • Lack of verification of compendial methods → solution: lean but defensible protocol (risk-based)
  • Inadequate management of reference standards → solution: working standard qualification + traceability + expiry management
  • Mandatory tests not performed / contradictory documentation → solution: reconciliation of dossier–specification–methods–routine

Audit Package: What You Really Need Ready on Day 0

The guide lists what should be prepared before inspectors arrive.

Here is the “audit-room friendly” version:

Documents “at hand” (within 5 minutes)

  • Access to / official copies of updated USP / Ph. Eur. (and other relevant pharmacopoeias)
  • Product → markets → applicable pharmacopoeias matrix
  • Current QC specifications (API, excipients, finished product)
  • Current analytical methods/SOPs + attachments (reference monographs where useful)
  • List of pharmacopoeial change controls from the last 24 months (with status)

Evidence That Builds Confidence (and closes questions)

  • Complete raw data packages for 2–3 recent batches (assay/impurities/dissolution/micro)
  • Historical trends vs compendial limits + OOS/OOT management
  • Analyst training matrix (compendial methods and updates)

Roles: Who Answers What (to avoid contradictions)

An audit is often lost over one thing: inconsistent answers between QC, QA, QP, and RA. The guide suggests a clear setup:

  • QC/Lab Manager: execution, instruments, technical details
  • QA Manager: change control, deviations, CAPA, training, system
  • QP (EU): batch release and final compliance verification
  • RA: dossier/registration alignment and management of differences

Mock Inspection: the Most Underrated Performance Multiplier

Simulate a “pharmacopoeial” audit with a plan, roles, and realistic questions.

Typical errors emerge in simulations:

  • talking too much (and self-sabotaging),
  • inventing undocumented justifications,
  • not being able to find documents,
  • defensive tone.

The real value: you turn “latent gaps” into CAPAs before the authority does.

If a Finding Comes: How to Respond Without Making the Situation Worse

The guide proposes a very concrete structure for responses:

  • Restatement of the finding + acknowledgement
  • Root cause (real, not cosmetic)
  • Immediate correction (containment)
  • CAPA with owner and dates
  • Effectiveness verification

Mistakes to avoid: minimizing, generic responses, unrealistic promises, verbosity without substance

“Final Round” Checklist (30–60 Minutes Before the Opening Meeting)

  • Audit room: working access to digital pharmacopoeias + essential printed backups
  • Last 5 batch dossiers ready (including raw data)
  • Updated calibration matrix
  • List of reference standards “in use” (valid/expired)
  • Team briefing: who answers what, and golden rule: honest, concise, documented

FAQ

Are pharmacopoeias “mandatory” in audits?

If you market in a region where that pharmacopoeia is recognized as an official standard, the inspection expectation is that you comply with the applicable requirements unless approved exceptions exist.

Can I use an internal method instead of the compendial one?

Yes, but you must be able to demonstrate equivalence/superiority and manage the regulatory impact (in an audit, the request for evidence is immediate).

What is the first thing an inspector asks about USP/Ph. Eur.?

Typically: which pharmacopoeias you follow, how you manage updates, and where the evidence is (verification, standards, raw data).

If you want to turn this article into an audit-ready operating system (complete checklists, practical examples, prepared inspector questions, structure of your audit package), you can find everything in the full guide: “Guide to Pharmacopoeias: GMP Audits and Compliance – How to Prepare for Inspections in Multi-Region Contexts” (GuideGxP).

Back to blog

Looking for something specific?