You're headed in the right direction. An easy way to do it is to identify data sources that are computerized, where auditors would normally trace back to them. But instead, we have the computer do a check for us.
Common examples of data sources might be qualifications for each employee, maintenance database, calibration database, approved supplier list, inspection or other verification/approval records for incoming material ...
So,
- if someone performs a test and they are required to provide traceability back to the test device by entering the S/N, have the system search the calibration database to make sure it is within its calibration window
- if a piece of equipment (again, perhaps S/N) is entered into a production records for something being produced, have the system search the maintenance database to make sure it's within its maintenance period
- when someone enters the supplier ID and/or batch # for raw materials about to be used, have the system check to make sure the supplier is still considered qualified and/or that the batch # has actually been approved/released for use
- if a computer user is using a particular application, have the system check to make sure that individual (e.g., based on their sign in to the system) is qualified to do that job by checking training database
- if someone performs an audit have the system check to make sure they are independent of the area(s) to be audited
......