ISO 13485 Document Control

ISO 13485 Document Control: Clause 4.2.4 for Small Teams

Meet ISO 13485 document control requirements with structured review, approval with e-signatures, version lifecycle tracking, and periodic review — without the overhead of a full eQMS.

Start free trial See how it works

14-day free trialNo credit card requiredISO 13485 clause 4.2.4

Clause 4.2.4 defines what auditors will ask for

ISO 13485 requires documented evidence of document approval, periodic review, change identification, and obsolete document prevention.

Common pain points

ISO 13485 clause 4.2.4 requires document approval prior to issue
Documents must be reviewed periodically to ensure they remain current
Changes and current revision status must be identifiable
Obsolete documents must be prevented from unintended use

Until an audit asks

Was this document approved before it was issued?
When was this document last reviewed?
What changed between these two revisions?
Is this the current effective version?
How do you prevent use of superseded documents?

What clause 4.2.4 requires

ISO 13485:2016 clause 4.2.4 defines the core document control requirements for your quality management system. Key requirements include:

(a)Approve documents for adequacy prior to issue — handled by the SOP review and approval workflow
(b)Review and update as necessary, and re-approve documents — supported by configurable periodic review intervals
(c)Ensure that changes and the current revision status are identified
(g)Prevent unintended use of obsolete documents

ApprovaDoc addresses requirements (a), (b), (c), and (g) through its review and approval workflow, periodic review, change summary tracking, and automatic version supersedure. Teams operating under FDA regulations should note that QMSR incorporates these same requirements — see QMSR training records for details. For a broader look at the ISO 13485 training records requirements under clause 6.2, including competence evidence and retraining after document changes, see the dedicated page.

From upload to audit-ready evidence

A structured workflow that maps to clause 4.2.4 requirements.

Upload a controlled SOP or policy

Add the SOP or policy, document ID, and revision. Start as Draft.

Submit for review

Choose reviewers. They comment and approve or request changes.

Route through approval

Approvers sign off with e-signatures. Sequential phases ensure the right order.

Assign training

Choose the users, teams, or roles that need to acknowledge the effective version.

Collect acknowledgment by revision

With optional quiz to verify comprehension.

Reassign when a document changes

Release a new revision and trigger fresh review, approval, and acknowledgment.

Export clear evidence

View live status or download records for audits.

Document control features for ISO 13485 compliance

Review, approval, version lifecycle, periodic review, and change tracking — built for clause 4.2.4.

Document review workflow

Configure reviewers per version. Threaded comments, approve or reject decisions, and a full audit trail.

Document approval workflow

Configure approvers with sequential phases. E-signature support when Part 11 is enabled.

Version lifecycle tracking

Each version moves through Draft, In Review, Approved, Effective, and Superseded states.

Periodic review

Set review intervals from 6 to 36 months. Automatic reminders and formal sign-off with outcome tracking.

Change summary per version

Document what changed in each revision. Supports ISO 13485 clause 4.2.4(c) requirements.

Scheduled effective dates

Set a future effective date after approval. The version transitions to Effective automatically.

Controlled SOP register

Track document ID, title, owner, effective date, revision, and version status. Upload pre-approved documents with audit justification.

Audit log

Maintain a clear history of review decisions, approvals, assignments, acknowledgments, and exports.

A note from the team

Built from real audit experience

ApprovaDoc comes from direct experience developing medical devices, navigating ISO 13485 and FDA audits, and working inside quality systems that ranged from excellent to barely functional. Training evidence deserves focused tooling — not a module buried inside an overbuilt system.

— the ApprovaDoc teamLearn why we built this →

Common questions

ISO 13485 document control — common questions

Which parts of clause 4.2.4 does ApprovaDoc address?

ApprovaDoc supports (a) document approval prior to issue via the review and approval workflow, (b) periodic review and re-approval via configurable review intervals, (c) change identification via the change summary field and version lifecycle, and (g) prevention of obsolete document use via automatic supersedure and status tracking.

Does this cover all of clause 4.2.4?

ApprovaDoc covers the core requirements for document approval, periodic review, change identification, and obsolete document prevention. Requirements (d) through (f) relate to availability of relevant versions, document legibility, and external document control — these are partially covered by the document register and version tracking. For a complete compliance assessment, consult your quality system documentation.

Do I also need this for training records (clause 6.2)?

Yes. ApprovaDoc covers both document control (clause 4.2.4) and training evidence (clause 6.2) in one system. Documents go through review and approval before being assigned for training acknowledgment. See our ISO 13485 training records page for clause 6.2 details.

How does periodic review work?

Set a review interval (6 to 36 months) for any document. ApprovaDoc sends reminders at 30, 14, and 7 days before the review date. The document owner completes a formal sign-off: either confirming no changes are needed or indicating a new version is required.

Are approval e-signatures Part 11 compliant?

E-signatures are available on Team and Growth plans. When Part 11 mode is enabled, approval decisions require password re-authentication and are cryptographically bound to the record using HMAC, designed to support 21 CFR Part 11 requirements.

How does version supersedure prevent obsolete document use?

When a new version of a document becomes Effective, the previous Effective version is automatically moved to Superseded status. Only Effective versions can be assigned for training, preventing use of outdated documents.

ISO 13485 Training Records

Manage training records for ISO 13485 compliance without a full eQMS.

Lightweight Document Control for Medtech

Review, approve, distribute, train, and periodically review SOPs — without a full eQMS.

SOP Review & Approval Software

Route SOPs through configurable review and approval workflows with e-signatures and audit trails.

SOP Periodic Review Software

Set review intervals, get automatic reminders, and record formal periodic review sign-off.

Trust, Security & Validation

How ApprovaDoc handles data security, audit trail integrity, and regulatory compliance.

ApprovaDoc vs Full eQMS

When you need document control and training evidence but not a full quality management system.