How much QC should QA do?


Now, opinions differ on this, but my obviously correct one is that QC should be a separate process from QA.

That is to say, that someone (e.g. part of the study or operations, or in a separate QC capacity) should be checking over the correctness of any datasets. For example, doing a comparison of any copied or transcribed data against the original source. Checking all values in report tables against sources. Checking values in report text. Checking units, formats, spelling, grammar, etc. etc.

This should be done before any audit, inspection, quality assurance review.

You see, QC are the processes that ensure a quality product: things like daily form reviews, tests, monitoring, metrology, audit trail reviews, etc. No one person or team is responsible for these, rather they are processes that exist throughout.

QA is a role that ensures these and other quality-related processes are in place and operating correctly. An independent, top level view if possible. They may do this through testing, record reviews, regular inspections and audits, document and procedure reviews, analyzing metrics.

Yes, they will do some QC here and there to make sure everything is in order. Critically they should not be the QC process itself: rather they should be making sure the QC process is doing its job.

QA's value is not in catching every mistake (though they might), but in long term quality, stability, and consistency.

So if I'm looking at a data set or a report, and I start to find multiple errors - I'm not going to go take that as a signal to go through with a fine toothed comb and try to find and correct every single error.

Instead stop! It's already clear that a QC process was inadequate, and the data set / document was sent for review prematurely.

Send it back for a proper QC.

Until next time, thanks for reading!

– Brendan

p.s. Enjoy this message? Read more at the Hyland Quality Systems website.

The Daily HaiQu

I'm Brendan Hyland. I help regulated facilities transform their software, spreadsheets, workflows and documents from time-consuming, deviation-invoking, regulatory burdens, to the competitive advantage they were meant to be. Join me every week as we take a few minutes to explore, design, test and improve the critical systems we use in our facilities.

Read more from The Daily HaiQu
A reporter interviews a smiling man holding a book.

I’ve seen several quality leaders complain this week about their disappointment with generative AI - they’re not getting the results they expected. And I understand why - context is king! If you just ask AI to write a procedure or generate a quality document, you’ll get generic, mediocre output. Without enough context, AI can only produce something generic based on its training data. But how do you give it that context? By the time you’ve gone back and forth trying to “engineer the prompt” to...

I'm presenting!

I'm excited to be presenting at the 2025 SQA Annual Meeting next week - "Is it the Right Tool for the Job? How QA and Regulatory Professionals can Guide Software Decisions in Regulated Environments" As our familiar software tools become more feature-laden and generalized, it's critical to ensure that software meets clear use cases and basic user requirements. And with generative AI being shoehorned into every platform, defining if and how software is appropriate for the intended use has never...

Last time we left off with a cliff-hanger of a question: How do you prove you're you when signing a document? There are several ways I've seen that the 3rd party providers prove that it's you who's signed the document: You clicked a link from an email. You paid for the service with a credit card. You provided some government issued photo ID. Someone, such as a notorized public or your HR department, has verified it's you in person. Obviously these are very different levels of assurance. Then...