Audit and Inspection Readiness
On This Page
Note The resources on this page are not comprehensive and are subject to change.
On this page, you’ll find resources that may be useful when preparing for an audit by a sponsor or CRO, or an FDA inspection. If you have any questions or require further audit information, please contact the Site Success Team.
Audit Readiness Best Practices
Audit and Inspection Tools
21 CFR Part 11 Compliance Assessment
This assessment provides clarification and guidance regarding the applicability of the 21 CFR Part 11 requirements to Veeva processes, personnel, and products.
HIPAA Assessment
This document provides an outline of how Veeva maintains HIPAA compliance per industry standards within the United States, and the expectations surrounding Customer Engagement.
SiteVault Compliance Attestation
This document is a statement that expresses a conclusion about SiteVault’s compliance with regulatory standards and the effectiveness of its internal compliance controls.
SOP Needs Assessment Checklist
This checklist will help you determine what SOPs you may need to modify or create when implementing SiteVault.
Template SOPs
These templates are provided to help you create digital SOPs when implementing SiteVault. Use these templates in concert with the SOP Needs Assessment Checklist.
Veeva SiteVault Terms of Service
The Terms of Service explains the contractual obligations of Veeva and what is expected of sites’ intended use. The Terms of Service is signed during the registration process.
SiteVault Technical & Operational Security Whitepaper
This paper describes the technology, practices, and controls that Veeva uses to keep your data secure in Veeva SiteVault.
Archiving Studies Checklist
This is a step-by-step guide to ensure studies are archived appropriately and ensure audit readiness.
eBinder Quick Reference Card
This is a helpful navigational resource to quickly view where each document type is located in the eBinder and its sections in SiteVault and can be provided as a resource for auditors.
SiteVault Service Description
This document provides a high-level description of the Veeva SiteVault software application available from Veeva Systems.
SiteVault Memo for Sponsors
This memo is intended for sites to provide to a sponsor in the event of an audit as a supplement to the SiteVault Technical & Operational Security Whitepaper.
SiteVault Validation Documents
These documents (a standard regulatory requirement) establish the evidence that SiteVault has been tested and functions according to its intended use.
Higher Education Cloud Vendor Assessment Tool
This tool is designed for AMCs to use prior to implementing a software solution that measures risk and confirms that information, data, and cybersecurity policies are in place to protect your sensitive institutional information and patients' PII.
Europe-Specific Tools
EU Annex 11 Assessment
This assessment provides clarification and guidance regarding the applicability of the the Eudralex GMP Volume 4 Annex 11 requirements to Veeva processes, personnel, and products.
HDS Certification (France)
A legal requirement under the French Public Health Code that service providers hosting personal health data on French residents must adhere to a specific framework regarding the security and protection of such data.
Privacy & Security Processor Addendum (GDPR)
This document (Self-sign) provides a summary of Veeva's overall GDPR compliance for SiteVault.