Document Control SOP – ISO 13485, MDSAP & FDA QMSR

Document and record control is the backbone of every medical device quality management system — and one of only six mandatory documented procedures explicitly required by ISO 13485:2016 (Clauses 4.2.3 and 4.2.4). Without a robust document control process, no other QMS process can be reliably demonstrated as controlled: obsolete procedures in use, unauthorized document versions, missing approval records, and unretained or unretievable quality records are among the most common and most damaging findings in Notified Body audits and FDA inspections.

This Document Control SOP package gives your quality team a complete, audit-ready framework to create, review, approve, distribute, control, and retain all QMS documents and records — fully aligned with ISO 13485:2016, MDSAP, and FDA QMSR (21 CFR Part 820).

What’s Included

• P-10 Document Control Procedure — step-by-step instructions covering document hierarchy and classification, document creation and formatting requirements, review and approval workflow, version control and change history, distribution and access control, prevention of unintended use of obsolete documents, external document management, record identification and storage, retention periods aligned with regulatory requirements, and backup and recovery requirements

Who Is This For

Quality managers, document controllers, and management representatives at medical device companies seeking ISO 13485 certification, preparing for MDSAP audits, or establishing FDA QMSR compliance — particularly companies building their QMS documentation infrastructure for the first time or standardizing an inconsistent document management approach.

Why This SOP and Not Starting from Scratch

Document control is the first procedure auditors review — and the one that sets the tone for the entire audit. Developing a compliant document control procedure that covers all mandatory ISO 13485 requirements from scratch takes 4–6 hours of a regulatory professional’s time. This package is immediately usable, written by an experienced ISO 13485 Lead Auditor and former Notified Body auditor — built to pass scrutiny from the very first audit interaction.

✓ Instant download after purchase ✓ Fully editable Word format ✓ Compatible with ISO 13485:2016, MDSAP, FDA QMSR ✓ Used by quality teams across EU, US and Canada

Frequently Asked Questions

Q: Does this procedure cover both documents and records? A: Yes. The procedure covers both document control (Clause 4.2.3) and record control (Clause 4.2.4) as required by ISO 13485:2016 — including creation, approval, distribution, obsolescence, retention, and retrieval requirements for both.

Q: Does the procedure address electronic document management systems? A: Yes. The procedure includes guidance on controlling documents managed in electronic systems, including access control, version management, and audit trail requirements — applicable whether you use a dedicated eQMS or standard office tools.

Q: What retention periods are specified for quality records? A: The procedure provides a retention framework aligned with ISO 13485 requirements — minimum retention of the lifetime of the device plus the period defined by applicable regulatory requirements, with guidance on jurisdiction-specific requirements for EU MDR, FDA, and MDSAP markets.

Q: In what format is the document delivered? A: The procedure is delivered in fully editable Microsoft Word (.docx) format, instantly after purchase.