Do Auditors Read Your Code?

Anonymous Technical Documentation Updated May 08, 2024 IEC 62304
We’re wondering whether our auditor will read the source code of our software. Does that mean we have to choose a programming language which many people know, like Python?

1 Answer

Accepted answer
Dr. Oliver Eidel
Dr. Oliver Eidel Founder & CEO, OpenRegulatory
No, your auditor won’t read your code.

Long Answer

Think about it this way: The probability of your auditor being a software developer is low (yes, I was also surprised to learn this). If they were a software developer, that’s probably a few decades ago and their last programming experience included punch cards and mainframes.

Sarcasm aside, you could approach this problem from another angle: What would be the most efficient way for an auditor to understand what your software does? Probably not by reading your code. Maybe by using the software. But that’s also something which is not typically done. It might also require specific medical experience and/or a specific setting (say, being in an Operating Room).

No, the most efficient way (so far?) is to read through your documentation, specifically your software requirements. Ideally, those should provide even an uninitiated reader with an overview of the behavior of your software. In addition, you need to document your software architecture and tests, your auditor is also going to look at those.
Want to add your answer to this question?
Write an answer under your name by logging in or signing up, or post anonymously.

Still have a question? Ask a question here publicly - for free!

Or would you like to talk to one of our consultants? First calls are free. Check out our services and prices here.

And if you're looking to automate your regulatory work, check out our eQMS, Formwork. It's for lean, founder-led companies. It automates your compliance, and there's even a free version for you to try out!