Guest Column | November 20, 2025

How To Identify Patient-Centric Risks In The TMF With AI And Automation

By Donatella Ballerini and Marissa Minetti, senior patient engagement manager, global clinical development, Chiesi Farmaceutici

Cybersecurity-GettyImages-2191724228

In part one of this series, we explored how the TMF serves as far more than a regulatory archive — it’s the living proof of how patient safety and rights are respected throughout a clinical trial. We examined how clear communication, informed consent, and ethical documentation form the foundation of patient trust.

Now, as decentralized and digital clinical trials redefine what participation looks like, the TMF’s role must evolve once again. In this new landscape, where visits can happen remotely, data flow across platforms, and oversight extends through digital interfaces, the question isn’t just whether documentation exists but what story it tells about the protection of patients behind those data points.

This second part looks at how technology — particularly AI, automation, and data analytics — can strengthen that story.

AI and automation tools are transforming how we manage TMF content, especially when it comes to identifying patient-centric risks. These technologies can now flag inconsistencies, detect missing or overdue documents in real time, and even correlate patterns that may signal patient safety concerns or ethical oversights.

For example:

  • Natural language processing (NLP) can scan ICFs across multiple versions to detect inconsistent language, outdated procedures, and noncompliant phrasing.
  • AI dashboards can spotlight delayed safety event submissions that may require immediate escalation.
  • Machine learning (ML) algorithms can predict which vendors are likely to fall behind on safety reporting or visit completion based on their past performance.
  • AI tools, in the case of protocol amendments, can cross-reference the revised protocol, safety data, and procedural documents to suggest which sections of the ICF require updating, ensuring that no critical information is missed. This supports a full-cycle approach where updated ICF versions are promptly prepared, approved, and documented in the TMF. As a result, we can demonstrate that patients were fully and appropriately informed of changes throughout the trial.

These insights help study teams intervene faster to maintain compliance and to protect people participating in the trial. This is the heart of TMF risk: It's not just about what’s filed or missing; it’s about what that missing or delayed documentation means for the patient.

Let’s put it into perspective:

  • A missing consent form is a document gap — and it means we cannot prove the patient knowingly agreed to participate, which is a direct breach of autonomy and ethics.
  • A delayed safety report is an operational lag — and it means a potential risk might not have been communicated in time to prevent harm.
  • Incomplete training records may indicate that site personnel engaged with patients before being properly qualified to do so, creating risks to care quality and data integrity.

From the patient’s perspective, clear oversight and timely documentation translate into confidence. When participants know that safety events are promptly reported, that their consent is properly handled, and that trained professionals are guiding their care, they feel monitored, valued, and protected. It reinforces trust in both the research process and the organizations conducting it.

  • Visibility and Reassurance:

Patients often report that decentralized and digital elements make them feel more closely followed when communication is consistent and technology functions smoothly. Proper documentation of remote touchpoints — such as telehealth check-ins or device data reviews — can demonstrate that oversight is continuous and personalized, even without physical visits.

  • Feedback Loops

Capturing and filing patient feedback within the TMF (for example, post-visit surveys or usability assessments) shows regulators and auditors that the sponsor not only monitored patients but also listened to them. This feedback documentation can drive protocol or process improvements mid-trial, reinforcing a patient-centered culture.

  • Emotional Safety:

Beyond physical safety, patients need reassurance that their data are handled securely and that someone is always accountable. TMF evidence, like audit trails, data privacy agreements, and communication records, reflects that ethical commitment, helping build patient trust.

  • Equity and Inclusion:

Documenting how accessibility and diversity considerations were implemented (for example, translated consent forms, adaptive technologies, or support for low-connectivity participants) highlights that inclusivity was more than a goal, it was operationalized and traceable in the TMF.

In a truly risk-based TMF model, these are compliance flags as well as ethical signals, alerting us to situations where patient safety, informed decision-making, or trust in the research process could be at risk. AI empowers us to not just find these signals faster but to act with insight, empathy, and precision.

Regulators Want The TMF To Demonstrate Patient Protection And Compliance

When reviewing the TMF, inspectors increasingly ask not just “Is it there?” but “Does it make sense?” They want to see:

  • clear, chronological documentation of how patient-facing issues were handled,
  • documentation of remote monitoring effectiveness, and
  • evidence that the sponsor retained oversight even when tasks were delegated in a DCT model.

In a recent MHRA inspection I supported, one key question was: “How did you ensure that remote consent followed national law in all participating countries?” — and the answer was found in the TMF.

We need better risk categorization in our TMF oversight.

For example:

  • Tier 1 Risks (high impact on patients): Consent issues, safety reporting delays, unblinded data leaks
  • Tier 2 Risks (operational impact): Missing licenses, untrained staff
  • Tier 3 Risks (low patient impact): Duplicates, metadata errors

Tracking and trending these risks allow us to focus efforts where patients could be affected, not just where SOPs were missed.

Oversight Applies To Patient-Facing Vendors As Much As CROs

This is one of the most common blind spots in clinical trial oversight.

While most sponsors have structured oversight plans in place for their CRO partners, they often underestimate the oversight needs of patient-facing vendors — even though these vendors may be directly involved in delivering care, collecting data, or interacting with participants.

Think about it: If your home health provider, telemedicine partner, or wearable device vendor is responsible for procedures that impact the participant experience, then their processes, qualifications, and performance are just as critical as those of a clinical site. Yet too often, the documentation related to these vendors is incomplete, delayed, or absent from the TMF.

To mitigate this, sponsors must ensure the TMF clearly documents:

  • Vendor Oversight Logs – Track who reviewed what, when, and how issues were managed. These logs should demonstrate active oversight, not just passive delegation.
  • Delegation of Duties Documentation – Clearly define which patient-related responsibilities were outsourced and on what authority. This protects both the patient and the sponsor in the event of an inspection or incident.
  • Corrective and Preventive Action (CAPA) Records – If an error occurred during a home visit or remote interaction, was it investigated? Was the vendor retrained? CAPAs linked to patient-facing vendors are often a missing link in TMFs.

Ensuring that all parties involved in patient care are visible in the TMF reinforces accountability. It also shows regulators and auditors that patient protection wasn’t just the job of the investigator — it was embedded across the entire clinical ecosystem.

How TMF Metadata Reveal Patient Risks Before An Inspection

Modern eTMF systems don’t just store documents, they generate metadata that, if interpreted properly, can reveal early warning signs of patient-related risks long before an inspection ever happens.

This is one of the most underused and underestimated capabilities in clinical operations today.

Consider these examples:

  • Late Document Uploads – A safety report uploaded weeks after the event occurred may indicate that the issue wasn’t addressed in a timely manner, putting patients at prolonged risk.
  • Frequent Consent Form Versions – Numerous ICF updates might suggest a responsive team but also raises the question: were all patients reconsented as required? Were outdated versions ever used?
  • Long Gaps Between Monitoring Visits – This could be a sign that sites went unmonitored during critical trial phases. In decentralized trials, this could mean no one was checking in on patients or protocol compliance for weeks.

These metadata patterns are diagnostic clues. They help us move from reactive to proactive quality management, allowing teams to step in before a regulatory authority asks the hard questions.

By embedding real-time TMF analytics into trial oversight, sponsors gain more operational efficiency and insight into whether their trial is delivering on its promise to keep participants safe, informed, and cared for.

Conclusion

What’s one action a sponsor can take today to shift their TMF approach toward patient protection?

Start by mapping a Patient Safety and Rights Journey” through the TMF. Ask:

  • Where does the patient first appear in the TMF? (Hint: screening logs, ICFs)
  • Where do we show how they were monitored?
  • Where do we show what happened if something went wrong?

Then, work backward. Ensure each key moment is clearly and consistently documented. That’s how we move from filing to storytelling — and from oversight to protection. In decentralized and digital clinical trials, the human connection can feel distant. But the TMF can bring it back into focus. Every file, every log, every signature tells a story, and when organized and analyzed with intent, it can prove that patients were at the center of everything we did.

About The Author:

With 16 years of experience in the pharma industry, Donatella Ballerini first gained expertise at Chiesi Farmaceutici in the global clinical development department, focusing on clinical studies in rare disease and neonatology. Later, in global rare disease, Donatella served as a document and training manager, where she developed and implemented documentation management processes, leading the transition from paper to eTMF. In 2020, she became the head of the GCP Compliance and Clinical Trial Administration Unit at Chiesi, ensuring all clinical operations processes complied with ICH-GCP standards and maintained inspection readiness. In 2021, she joined Montrium as the head of eTMF Services, where she helps pharmaceutical companies in eTMF implementation and process improvement, and also works as an independent GCP consultant. Donatella has been a member of the CDISC TMF Reference Model Education Governance Committee since 2023 and the CDISC Risk White Paper Initiative since 2024.

Marisa MinettiMarisa Minetti is a seasoned clinical research professional with over 20 years of experience across clinical operations, GCP compliance, transparency, and digital innovation. She currently serves as a senior patient engagement manager within the global clinical development department at Chiesi Farmaceutici, where she is leading efforts to embed a more patient-centric approach into clinical development. Her role focuses on fostering meaningful patient engagement and integrating patient perspectives to enhance the design and execution of clinical research.