| From: | Robin <robinstc(at)live(dot)co(dot)uk> |
|---|---|
| To: | pgsql-general(at)postgresql(dot)org |
| Subject: | Re: compliance with 21 cfr part 11 |
| Date: | 2013-12-05 04:15:30 |
| Message-ID: | BLU0-SMTP96C29EC0D31AEB42ABAB45E2D70@phx.gbl |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-general |
I have built big nationwide health databases, and other secure systems
requiring traceback and auditability.
The more you are able to make the required processes transparent to the
end user, the happier they are and the fewer problems you have from a
user acceptance perspective.
Audit does belong in the database, go and look at where the likes of
Sybase ASE and DB2 do it. If you do it up front, you are continually
maintaining it.
Few systems control appropriate access to data; that is a harder and
proprietary trick.
Robin St.Clair
On 05/12/2013 00:07, Rob Sargent wrote:
> On 12/04/2013 04:41 PM, John R Pierce wrote:
>> On 12/4/2013 3:34 PM, e-letter wrote:
>>> Can postgresql be deployed with audit trail and data validation
>>> capability, to meet compliance with 21 cfr part 11?
>>
>> IMHO, that sort of audit trail should be higher level in your
>> business logic, not in the database. but that's just my opinion,
>> worth exactly what you paid for it.
>>
>>
>>
> I've been through 21 cfr part 11 (successfully) and it has nothing to
> do with the database vendor and everything to do with how you track
> changes to the data.
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Richard Dunks | 2013-12-05 05:08:46 | Re: Need help with upsert |
| Previous Message | Rob Sargent | 2013-12-05 00:07:53 | Re: compliance with 21 cfr part 11 |