Action point 21 - Strategy to strengthen Regulatory Information Management Systems to support information sharing

Last update: 16/07/2025

Background

Regulatory Information Management Systems (RIMS) have become essential to NRAs in managing their day to day activities. RIMS enable to store, organize, analyze and easily retrieve the complex information required to make regulatory decisions. RIMS are also critical for ensuring transparency, compliance with the adopted processes, and to facilitate information sharing with the different stakeholders, including other NRAs. However, a majority of SEARN members currently do not have access to adequate RIMS for all their activities and there is no system in place to facilitate exchange of information between NRAs.

Considering these challenges, the Assembly of SEARN adopted in its Work Plan the action point 20, led by Working Group 4 (WG4) Information Sharing: ‘Strengthen the capacity of SEARN Members to monitor and address shortages’.

Main objective

To develop a strategy to strengthen Regulatory Information Management Systems to support information sharing.

Scope and definitions

Digital Building Blocks: Standards-based, open, and reusable digital solutions that enable basic capabilities, such as trusted authentication and secure data exchange[1].

Digital public infrastructure (DPI): A set of shared digital systems which are secure and interoperable, built on open standards, and specifications to deliver and provide equitable access to public and/or private services at societal scale and are governed by enabling rules to drive development, inclusion, innovation, trust, and competition and respect human rights and fundamental freedoms (Source: UNDP).

Digital health: the field of knowledge and practice associated with the development and use of digital technologies to improve health (Source: WHO)

Digital Public Goods: open-source software, open data, open artificial intelligence models, open standards and open content that adhere to privacy and other applicable international and domestic laws, standards and best practices and do no harm. (Source: WHO)

Digital Public Infrastructure: Set of technology building blocks powered by interoperable open standards operated under a set of enabling rules with open, transparent, and participatory governance to drive innovation, inclusion, and competition at scale. (Source: UNDP)

Digitalization: The process of transitioning existing businesses and services to using digital technologies, as well as the use of digital technologies and data (and the interconnection that results) in new activities.  (Source: UNDP)

Interoperability: The ability of different systems, devices, or applications to exchange and use information effectively—crucial in DPI as it enables integration, cooperation, and the exchange of information across digital systems. (Source: UNDP)

Open licensing: The use of licences that allow users to access, use, modify, and distribute copyrighted works such as software, content, or creative works with few or no restrictions. Open licensing promotes collaboration, sharing, and the free flow of knowledge and innovation. (Source: UNDP)

Open-source: Refers to something, historically software, that people can modify, share, and re-use because its design or “source code” is made publicly accessible. Opensource products provide universal access through an open-source licence that legally enables it. (Source: UNDP)

Open standards: Technical standards and specifications that are publicly available, developed through a collaborative and transparent process, and free from proprietary restrictions. These standards ensure that different systems and technologies can work together seamlessly, promoting interoperability and avoiding proprietary vendor lock-in. (Source: UNDP)

Regulatory Information Management System: computer-based, software solutions that allow effective document management to facilitate regulatory activities, aiming at providing accurate, faster, traceable, and transparent information, improving process consistency and efficiency, while enhancing good regulatory, review, and governance practices. (Source: European Commission)

[1] European Commission n.d.. About the Digital Europe Programme. URL: https://ec.europa.eu/digital-building-blocks/sites/display/DIGITAL/About+us

Scoping review

WHO

Global Strategy on Digital Health 2020-2025

WHO has developed a Global Strategy on Digital Health 2020-2025. The strategy ‘sets out a vision, strategic objectives, a framework for action and implementation principles to advance digital health, globally and within countries at national and subnational levels, that will contribute to building an internationally connected digital health system with consideration of potential risks. It aims to encourage international collaboration and to support countries in their national programmes towards improved health care service delivery, implementing national health strategies, promoting research and development and working towards achieving universal health coverage and the health-related Sustainable Development Goals’.

It is built on 4 guiding principles:

  1. Institutionalize digital health within national health systems.
  2. Integrate digital health strategically and sustainably.
  3. Ensure digital technologies are appropriate, ethical, and evidence-based.
  4. Prioritize inclusion for least‑developed countries

It identifies 4 strategic objectives:

  1. Global collaboration & knowledge sharing
  2. Support national digital health strategies
  3. Strengthen governance
  4. Advocate people‑centred systems

 

Draft WHO Guidelines on RIMS

WHO is currently working on a guideline on Regulatory Information Management Systems (RIMS).

USAIDS

USAID MTaPS and PQM+ Programs have published a report on ‘Pathway to Digitalize Regulatory Information Management Systems for National Medicines Regulatory Authorities in Low- and Middle-Income Countries’ in 2022.

The report identified  Minimum common standards for RIMS, prerequisites, aspects to consider during implementation, as well as consideration for maintenance and sustainability. It also proposed a rpid assessment questionnaire.

USAIDs also developed OpenRIMS, an open source web-based workflow design module intended to help NRAs digitalize and automate their work processes including but not limited to medicines registration, pharmacy registration, inspection, import/export licensing and clinical trial applications. A pharmacovigilance module was also developed.

Minimum common standards for RIMS

Development of possible minimum common standards for RIMS

USAID’s MTaPS and PQM+ Programs in consultation with key stakeholders established a repository of minimum common standards (MCS) for RIMS for consideration by NRAs to address the identified challenges. Following discussions with SEARN, the ASEAN CTD was added to the list as a basis for future discussions:

Process Standards Data Dictionaries and Knowledge Trees Data Exchange Standards
  • Good Laboratory Practices (GLP)
  • Monographs
  • ISO 9001:2015 - Quality Management System Procedures
  • Good Distribution Practices (GDP)
  • ISO 17025:2017
  • Good Practices For Pharmaceutical Quality Control Laboratories
  • Good Clinical Practice (GCP)
  • Good Manufacturing Practices (GMP) or ICH Q7
  • Good Practices For Pharmaceutical Microbiology Laboratories
  • Good Review Practices (GRevP)
  • Good Storage Practices (GSP)
  • ICH Q10
  • Good Pharmacovigilance Practices
  • International Nonproprietary Names (INN)
  • National Drug Code (NDC)
  • Anatomical Therapeutic Chemical Index (ATC)
  • WHO Drug Global
  • The Medical Dictionary for Regulatory Activities (MedDRA)
  • Chemical Abstracts Service (CAS) registry number
  • Unique Ingredient Identifier (UNII)
  • ISO 11240 Units of Measurement (UoM)
  • ISO 11239 Dosage Form and Route of Administration
  • ISO 11616 Pharmaceutical Product Identifier (PhPID)
  • ISO 11238 Substance Identification (SubID)
  • GS1 Standards
  • ISO 11615 Medicinal Product Identification (MPID)
  • Portable Document Format (PDF)
  • XML
  • Common Technical Document (CTD)
  • ASEAN CTD
  • E2B - Pharmacovigilance: Individual Case Safety Reports (ICSR) or ISO/HL7 27953-2:2011
  • Structured Product Labelling (SPL)
  • Fast Healthcare Interoperability Standards (FHIR)

November 2024 workshop

As part of the SEARN work plan, USAID’s MTaPS and PQM+ organized on 25-26 November 2024 a 2-day virtual workshop to discuss the minimum common standards for regulatory information management system (RIMS), share country, regional and partner experiences implementing RIMS and develop a regional action plan for the adoption of RIMS by SEARN member states.

Specific objectives were

  1. To build knowledge on and discuss minimum common standards for regulatory information management system
  2. Provide a platform for NRAs to share their experiences (i.e., strategies, achievements, constraints, and challenges) on RIMS
  3. To support the development of a regional action plan for adopting common standards for RIMS for implementation among the member states
  4. Develop prioritized recommendations for activities that SEARN and partners (including USAID) could support ‎in the future to promote the implementation of MCS for RIMS aligned with the regional action plan.

To support the discussions, presentations were made by select SEARN member states, USAID MTaPS, USAID PQM+, AUDA-NEPAD and WHO. USAID MTAPS and PQM+ presented and oriented member states on the concept of minimum common standard for regulatory information management system, highlighted the adaptation and Implementation of RIMS Standards and shared experiences on digitalization and Information sharing for regional reliance.

The proposed common standards were mapped against the Global Benchmarking Tool and the SEARN workplan to facilitate future reference.

Recommendations to SEARN included:

  • Consider the minimum common standards in its different activities
  • Prioritize some domain / activities of interest to SEARN, the associated standards, provide more in-depth information about those and develop a convergence strategy.
  • Further consider global digital health guidelines and the experience from AUDA-NEPAD in the development of the regional strategy

Survey

A survey was conducted to provide an overview on existing RIMS and needs in the region.

Highlights:

  • Two-third of the respondents indicated that there NRA use RIMS, the remaining third did not.
  • The use of RIMS was most common for Marketing authorizations, licensing establishments and market control and surveillance.
    • Most respondents indicated that their needs are well covered for marketing authorizations, and licensing establishments. The situation seemed least satisfactory with clinical trials, lot release and vigilance.
    • However, responses suggested SEARN members would still prioritize Marketing authorization, in addition to market control, vigilance and laboratory testing for further development of RIMS.
    • For convergence/harmonization of standards, SEARN members would prioritize marketing authorizations, followed by Regulatory inspections.
  • Compliance with common standards appeared quite low, except INN and ATC for data dictionaries, and PDF, CTD and ASEAN CTD for Data Exchange Standards.
  • NRAs all indicated having access to an IT department (either from NRA or MoH), which usually support the maintenance of existing RIMS but cannot support its development.
  • A number of challenges were identified:
    • The main quoted challenges to the development of RIMS were funding and technical support, followed by Staff IT fluency and Network speed.
    • While access to desktop/laptop appears satisfactory, often over 75%, there is no computer network in two NRAs and staff IT proficiency appeared to be a common issue, with 6 NRAs indicating less than 75% IT proficient staff. However, respondents indicated the staff has usually received training for the specific RIMS in use.
    • While RIMS usually enable information sharing with stakeholders, these have not developed to enable information sharing between NRAs
    • When using several RIMS, these are most of the time not interoperable.
    • Existing RIMS commonly do not enable NRAs to effectively monitor KPIS
  • The following good practices / lessons learned were highlighted by respondents:
    • The criticality of clear requirements in the pre-development phase, tailored approach, and engagement of local developers
    • Gradual implementation was reported as a key factor for smooth integration and adaptation, as well as early stakeholders engagement
    • The importance of integration with other national systems (e.g. tax, customs) and enabling real-time monitoring of KPI were highlighted
    • The use of digital signatures was also seen as an important enabler.
    • Challenges for future development included cyber threats, use of AI, automatic pre-screening of applications, and integration of systems from different parties.
    • One member recommended for SEARN regional knowledge-sharing, standardized yet flexible frameworks, and capacity-building to enhance RIMS development.

Next steps

  1. Plan and initiate the development of a network of interoperable RIMS enabling collaboration and, when decided by NRAs, the automatic sharing of some information for Marketing authorizations and convergence/harmonization of related standards
  2. Develop or identify a domain in the SEARN competency framework to strengthen NRA staff IT literacy
  3. Develop and initiate the implementation of a sustainable and cooperative regional approach to the development of RIMS
  4. Publish the aggregated results of the survey in a peer-reviewed journal