-
Information Service Management Procedures
-
7.1. GDI SOP creation
- 7.1.1. European-level SOPs
- 7.1.2. Node-specific SOP templates
- 7.33. Node-specific SOPs
-
7.4. GDI SOP access rules
-
| Version | Author(s) | Description of Changes | Date |
|---|---|---|---|
| v0 | Mallory Freeberg | 9th of April 2024 | |
| v1 | Silvia Bahena | Updated information about the current status of the SOPs creation process | 2nd of October 2024 |
The following table defines the abbreviations and terms relevant to GDI SOPs.
| Abbreviation | Description |
|---|---|
| FAIR | Findable, Accessible, Interoperable, Reusable |
| GDI | European Genomic Data Infrastructure |
| IMS | Information Management System |
| MB | Management Board |
| OC | Operations Committee |
| QMS | Quality Management System |
| SDPC | Security and Data Protection Committee |
| SOP | Standard Operating Procedure |
| Term | Definition |
|---|---|
| European-level SOP | SOPs to be followed for GDI processes at the European level. |
| Node-specific SOP template | Templates for SOPs that can be tailored to the specific processes of each node. |
| Role | Full name | GDI/node role | Organisation |
|---|---|---|---|
| Author | Mallory Freeberg | Task 4.3 member | EMBL-EBI |
| Author | Silvia Bahena | Task 4.3 member | EMBL-EBI |
| Reviewer | Jeroen Belien | GDI-Member | Health-RI/Amsterdam UMC |
| Reviewer | Mattias Strömberg | Task 4.3 member | UU |
| Reviewer | Elisavet Torstensson | Task 4.3 member | UU |
| Reviewer | Gabriele Rinck | Task 4.3 member | EMBL-EBI |
| Approver | Marcos Casado Barbero | Task 4.3 member | EMBL-EBI |
| Approver | Markus Englund | Task 4.3 member | UU / NBIS |
This document aims to ensure the effective management of information across all activities related to the delivery and management of GDI services at both the European and national node levels. It focuses on preserving the confidentiality, integrity, and accessibility of relevant information across both levels.
This document applies to all GDI staff responsible for managing and implementing GDI SOPs at both the European and national node levels, unless otherwise specified.
To ensure consistent management practices, the GDI network utilizes an Information Management System (IMS), which is a framework designed to systematically manage information flows across the infrastructure. The IMS ensures that information is handled securely and efficiently, fostering improved decision-making, enhanced communication, and better compliance with regulatory requirements.
In line with this, the implementation of SOPs must follow clear procedures established within the IMS. This ensures that all staff members adhere to best practices, contributing to the optimal functioning and continuous improvement of the GDI network.
Together with the Charter, which defines the scope and management of SOPs within the GDI network, the IMS provides the structural foundation necessary for effectively managing SOPs. It ensures they are consistently applied across all nodes of the GDI network, from development through to execution.
For each European-level GDI SOP, only one SOP document is produced which all GDI nodes are expected to follow. The need for a new European-level GDI SOP is first identified by one or more GDI project partners who will then prepare a proposal, making use of the GitHub repository "New SOP Request" Github issue template. The proposal should include the purpose and scope of the SOP and a justification for its need. Once the proposal for a new European-level GDI SOP is approved by the Operations Committee (OC) and/or the Security and Data Protection Committee (SDPC), then work can begin on creating the new SOP following the Steps below (Figure 1). For more in detail information, refer to this "Context Diagram."
Steps:
- After a SOP request is received in the repository, a OC/SCDP member evaluates the request. If it is valid, the OC/SCDP member prepares the SOP draft from the GDI General SOP template.
- OC/SCDP member shares the template with the authors (OC/SDPC or nominated experts) to write the SOP (i.e. fill in the content).
- After the drafting is completed, the OC/SCDP member shares the draft internally or with experts to review for completeness.
- Both committees (OC/SDPC) approve the reviewed document.
- The OC/SDPC member then shares the approved SOP with the GDI MB for authorization.
- GDI MB reviews the SOP and authorises or requests changes (repeat from Step 3)
- OC/SDPC accessions (7.2.)the authorised SOP according to the agreed process and the SOP goes into production.
- OC/SDPC initiates periodic review cycle (7.3.), if updates are needed then repeats steps 3-6.
Figure 1: Workflow for creating and approving European-level SOPs.
For each Node-specific SOP, first a template is created and approved at the European level, as explained above (7.1.2). Once approved, the SOP template is then used by each node to create their own SOP instance (7.1.3) which is approved at the node level. The steps below describe how to get a node-specific template created and approved.
Steps:
- After a SOP request is received in the repository, a OC/SCDP member evaluates the request. If it is a valid request,the OC/SCDP member prepares the SOP draft from the GDI General SOP template.
- OC/SCDP member shares template with the authors( OC/SDPC or nominated experts) to write the SOP (i.e. fill in the content).
- After the drafting is completed, the OC/SCDP member shares the draft internally or with experts to review for completeness.
- Both committees (OC/SDPC) approve the reviewed document.
- The OC/SDPC member then shares the approved SOP with GDI MB for authorization.
- GDI MB reviews the SOP and authorises or requests changes (repeat from Step 3).
- OC/SDPC accessions (7.2.) the approved SOP template according to agreed process and informs the nodes that the SOP template is ready to be adapted to their own node processes (Figure 1).
- OC/SDPC initiates periodic review cycle (7.3.), if updates are needed then repeats steps 3-6.
For each Node-specific SOP, first a template is created and approved at the European level (7.1.2.). Once approved, the template is then used by each node to create their own SOP instance (7.1.3.) which is approved at the node level. The Steps below describe how nodes will create their node-specific SOPs.
Steps:
- OC/SDPC representative(s) from each node copy the SOP template to their node’s SOP management system.
- OC/SDPC representative (or nominated experts) uses the Node-specific SOP template (from 7.1.2.) to create their node's instance of that SOP, according to their node’s needs, and internally review for completeness
- OC/SDPC representative initiates their node-defined approval process for the node-specific SOP instance.
- Node-appointed approver then approves or requests changes (repeat from Step 2).
- OC/SDPC member(s) from the node accessions (7.2.) the approved SOP according to the agreed process and the SOP goes into production at their node.
- Nodes should implement a periodic review cycle. The reviews and revisions should follow guidelines for GDI SOP revision and review (7.3.).
Figure 2: Workflow for creating and approving node-specific SOP instances.
The GDI SOP Accessioning Proposal is a specialized document that outlines the SOP accessioning system for the GDI project. It covers guidelines for SOP identifier formats, file naming conventions, automation workflows, repository structure, version control, and referencing mechanisms. The aim is to enhance the management, versioning, and referencing of SOPs to ensure clarity, consistency, and efficiency within the project.
The SOPs in the GDI network will follow a structured review cycle to ensure they stay relevant, effective, and compliant. Reviews will take place both annually and on demand as described below:
- Annual Review Cycle: Each SOP will be reviewed annually. The OC/SDPC will initiate and oversee the review. The OC/SDPC will check the SOP’s relevance, clarity, and effectiveness based on the based on the SOP Review Check List, then updates or changes will be made as necessary.
An automated GitHub workflow (review_reminder.yml) was created to streamline the annual review process. The workflow gets automatically triggered every month, calling a python script (check_sop_reviews.py) that performs the following:
Checks all SOPs, one by one, if they are due for review, using the last date entry of each SOP's Document History. If this value is older than one full year, the SOP is considered for review.
For each SOP due for review, the script creates a new GitHub issue, labelled with 'SOP-review', listing the actions to take for the SOP to be reviewed. This happens only if there are no other open GH issues for that same SOP with the same label.
GitHub issues propagate automatically to the ZenHub board, and those labeled with 'SOP-review' shall go into the "SOP-reviews" pipeline in the board for clarity.
- Ad-Hoc Review Requests: Any GDI member can request a review if they believe a process needs to be updated or improved.
Review requests are submitted by creating a GitHub issue. We recommend to use the SOP Content Change Suggestion template, adding the 'SOP-review' label to the GH issue.
The OC/SDPC will evaluate the request and decide if the review is justified.
All reviews, regardless of the trigger, will be recorded in the SOP’s revision history (i.e., their Document History). The status of each review will be monitored through the ZenHub board to ensure that actions are taken timely. If a review deems that an SOP needs to be updated in content (i.e., revision is due), the changes will undergo similar development stages as those described in GDI-SOP0007_SOP Template creation.
It is critical for maintaining quality and consistency across procedures to ensure that only the latest, fully authorized version of an SOP is used, for this a process is established to differentiate between current and obsolete versions.
-
Version Control and Differentiation: The latest, fully authorized SOP versions should be clearly distinguished from outdated, obsolete versions. This helps prevent the use of incorrect or outdated procedures that could lead to errors. To achieve this, version control systems such as GitHub and Zenodo are employed. This systems provide robust version control and archiving mechanisms.
-
Access Control: Within an appropriate Quality Management System (QMS), access to obsolete or outdated SOP versions should be restricted. While GitHub allows version tracking, care must be taken to configure access settings in a way that limits visibility to old versions, ensuring only the latest authorized SOPs are readily accessible. This could involve setting strict branch protections or archiving mechanisms that prevent access to outdated SOPs.
-
FAIR Principles and Accessibility: Following FAIR (Findable, Accessible, Interoperable, Reusable) sharing principles, all authorized European-level SOPs, as well as templates for node-specific SOPs templates, will be openly accessible through the GDI GitHub repository. This ensures transparency and encourages consistent usage across different nodes and projects.
-
Node-Specific SOP Access: Individual nodes are responsible for determining access rules for their specific SOPs. These SOPs, adapted to meet local requirements, may have different access permissions depending on the node’s specific quality control policies, while maintaining the transparency required by the overarching FAIR principles.
| References | Description |
| 1 | European GDI - SOP Charter |
| 2 | European GDI - Organisational Roles and Responsibilities |
| 3 | European GDI - General SOP template |
| 4 | European GDI - SOP Accessioning Proposal |
| 5 | European GDI - Review Check List |
| 6 | European GDI - GDI-SOP0007_SOP Template creation |
| 7 | Schemas Icons |