White paperThe Enterprise Framework for Compliant, Scalable AI
Download now
Continuous complianceDataRegulations

Box GxP and Cloud Assurance for FDA Submission

Case study on Box GxP and Cloud Assurance for FDA Submission.

Client profile: Global clinical-stage biopharmaceutical company developing novel drugs for chronic liver, gastrointestinal, and metabolic disorders, with operations in China and the United States and limited in-house CSV and GxP expertise.

Box GxP and Cloud Assurance for FDA Submission graphic

Executive takeaway

USDM configured and validated a new Box instance for GxP-regulated data in just two months, delivering audit-ready, FDA-submittable evidence and saving the customer the cost of three full-time employees.

Validation Timeline

2 months

Start-to-finish configuration and CSV-compliant validation of the new Box instance completed within the customer's aggressive timeline.

Headcount Avoided

3 FTEs

Outsourcing CSV and GxP tasks to USDM saved the customer the cost of three full-time employees and freed the existing IT team for other priorities.

Audit-Ready Outcome

FDA-submittable

USDM delivered a defensible validation plan and report using a CSV approach that can be submitted for FDA audits.

Before USDM

  • New Box instance needed rapid validation to house regulated GxP data ahead of an FDA submission.
  • Data access in China was hampered by the national firewall.
  • The team lacked significant Computer System Validation (CSV) and GxP regulatory experience, with only two months to complete validation.

After USDM

  • Compliant, defensible, continuous cloud validation achieved with minimal customer support.
  • Box alleviated the difficulty of accessing data behind China's national firewall.
  • USDM Cloud Assurance maintains the validated state, managing all patches, updates, and changes for continuous compliance.

USDM achieved start-to-finish configuration and validation of the customer's new Box instance for GxP regulated data in two months, including CSV-compliant deliverables.

The global clinical-stage biopharmaceutical company is focused on discovering and developing novel drugs to treat chronic liver diseases, gastrointestinal diseases, and metabolic disorders with high unmet needs. Founded in Shenzhen, China, they also have a location in the United States.

The Challenge

The customer needed quick validation of their new Box instance to house regulated GxP data in preparation for a Food and Drug Administration (FDA) submission. Several factors made the project demanding:

  • They had trouble accessing data in China due to the national firewall.
  • The customer did not have significant Computer System Validation (CSV) or GxP regulatory experience.
  • The start-to-finish validation timeline was an aggressive two months.

With regulated data destined for an FDA submission, the evidence behind the Box instance had to satisfy 21 CFR Part 11 expectations and stand up to audit scrutiny — leaving no room for shortcuts despite the compressed schedule.

The Approach

USDM and Box provided their proprietary, innovative approach to maintaining GxP compliance in the cloud. Box helped alleviate the difficulty of accessing data behind the national firewall in China, while USDM delivered the validation rigor required for a regulatory submission.

  • USDM delivered an extensive validation plan and a defensible report using the CSV approach that can be submitted for FDA audits.
  • USDM developed and performed Installation Qualification (IQ) and Performance Qualification (PQ) testing during onboarding and initial validation.
  • USDM assisted in developing the Administrative Standard Operating Procedure (SOP) to establish change control guidelines.
  • USDM's automated testing tool minimized the CSV effort.

By applying a risk-based, Computer Software Assurance mindset and focusing testing where it mattered most, USDM kept the validation defensible while preserving the underlying data integrity of the regulated content. The engagement also saved the customer from having to hire in-house FTE resources and needed minimal support to deliver the project, allowing the existing IT team to focus on other priorities.

The Results

  • Compliant, defensible, continuous cloud validation achieved with minimal customer support.
  • Saved the cost of 3 full-time employees by outsourcing CSV and GxP tasks to USDM's knowledgeable team.
  • 2-month validation completed within the customer's timeline.

Beyond the initial submission, USDM maintains the validated state of the customer's Box instance and manages all patches, updates, and changes through USDM Cloud Assurance to enable a continuous state of compliance — so the environment stays audit-ready long after go-live.

Learn more about expanding your Box GxP instance to a complete QMS solution.

Validated Box GxP, Continuously Maintained

Keep your Box GxP instance in a continuous state of compliance

USDM Cloud Assurance configures, validates, and maintains the validated state of your Box GxP environment — managing every patch, update, and change so your regulated data stays audit-ready for FDA submissions.

Explore USDM Cloud Assurance

Related proof

AI deploymentContinuous compliance

USDM Managed Compliance Program

Global contract biopharmaceutical manufacturer (CMO) in heavy acquisition mode, rapidly bringing new plants online with minimal in-house compliance experience and no global compliance program.

Case study on USDM Managed Compliance Program.

Validation cost reduction

25%

Read
GovernanceContinuous compliance

Auditing-as-a-Service Delivered 80% More Efficient Audits

Leading global biotechnology company developing innovations for complex diseases, with hundreds of vendors critical to the development and worldwide distribution of a blockbuster drug.

Case Study: USDM revamps antiquated auditing process to save customer’s time and money

Faster Audits

80%

Read
AI deploymentGovernance

Complaint Processing Enhanced by AI in Medical Device Manufacturing

Global medical device manufacturer specializing in patient monitoring equipment for hospitals and medical centers, processing customer complaints and adverse-event reporting across multiple regions.

The AI-based solution mirrored an existing manual decision-tree process to eliminate a backlog of complaints and service records.

Manual resources reduced

75%

Read

Go deeper

Related guidance

Blogs, webinars, and white papers on the capabilities behind this outcome.

Webinar

Work Faster and Smarter in Biotech Quality Management

Watch this on-demand webinar to see how Box, ComplianceQuest, and USDM Life Sciences bundle quality management so biotechs cut stand-up times, control costs, and run a best-of-breed compliance stack.

Read
Blog

Trusted to Do Their Part: The Future of USDM Cloud Assurance

The USDM Cloud Assurance team explains how continuous evidence, attestable reasoning, calibrated autonomy, and human attestation shape trust for AI-bearing regulated software.

Read
Blog

From Phase 3 Win to NDA: The GxP Readiness Gaps That Sink Clinical-Stage Oncology Biotechs

Why biotech companies with strong Phase 3 data still stumble at NDA — the GxP readiness gaps in quality systems, validation, data integrity, and regulatory infrastructure that derail clinical programs.

Read

Start here

Put AI to work in life sciences — with the right guardrails underneath.

Start with a structured AI Readiness Assessment: fixed-fee, executive-ready, and built to surface the highest-value workflows first.

Start here

Talk to USDM

Tell us what workflow or outcome you want to improve and we'll map the right AI, governance, and delivery path.

By submitting this form, you agree to USDM’s Privacy Policy and consent to receive communications from USDM. You can unsubscribe at any time using the link in our emails.