Skip to content
InnoQualis InnoQualis Docs

External Document Upload

EQMS provides a secure portal for external parties to upload documents without needing a full user account. Use it to collect certificates, audit reports, quality agreements, and other compliance documentation from suppliers, auditors, and contractors.

How the external upload flow works

Section titled “How the external upload flow works”
  1. An EQMS user generates a unique upload link with an associated token.
  2. The external party receives the link and a 6-digit verification code via email.
  3. The external party verifies their identity and uploads the requested documents.

Verify your identity (external party)

Section titled “Verify your identity (external party)”
  1. Open the upload link received via email.
  2. On the verification screen, enter the 6-digit verification code sent to your email.
    • Type each digit in the individual digit fields (focus advances automatically).
    • Or paste the full 6-digit code at once.
    • Use Backspace to navigate between digit fields.
  3. Select Verify Code.

Upload documents (external party)

Section titled “Upload documents (external party)”

After verification, the upload portal shows a welcome message with your name, the purpose of the upload request, uploads remaining, and the link expiry date.

Upload a document

Section titled “Upload a document”
  1. If specific document types were requested, review the checklist showing which have already been uploaded.
  2. From the Document Type dropdown, select the type of document:
    • GMP Certificate
    • ISO 13485 Certificate
    • ISO 9001 Certificate
    • Audit Report
    • Quality Agreement
    • Supplier Questionnaire
    • Manufacturing License
    • Certificate of Analysis
    • Stability Data
    • Validation Report
    • Other
  3. Optionally, enter the Issuing Authority (for example, FDA, BSI, TUV).
  4. Optionally, set the Issue Date and Expiry Date.
  5. Select a file to upload. Accepted formats: PDF, DOC, DOCX, XLS, XLSX, JPG, PNG (maximum 50 MB per file).
  6. Submit the upload.
  7. The uploaded file appears in the Previously Uploaded Files list below the form.

Complete the upload session

Section titled “Complete the upload session”
  1. After uploading all documents, select I’m Done Uploading.
  2. A completion screen shows:
    • Confirmation that the upload is complete
    • A summary of all uploaded documents (count, types, file names)
    • An option to Upload More Documents if uploads remain
  3. The QA team is notified to review the uploaded documents.

External auditor access

Section titled “External auditor access”

A separate flow exists for external auditors who need read-only access to quality records during an audit.

Authenticate and review scope

Section titled “Authenticate and review scope”
  1. Open the auditor access link.
  2. Enter the 6-digit verification code to authenticate.
  3. Review the audit scope, including which documents, CAPAs, deviations, and audits are included.

View the storyline and access records

Section titled “View the storyline and access records”
  1. Review the storyline timeline showing events with a compliance summary and risk assessment.
  2. Access read-only views of the specified resources.
  3. Submit audit findings and review disputes as needed.

External auditor sessions:

  • Are time-limited (typically 7 days)
  • Provide read-only access only
  • Log all activities for audit trail purposes
  • Allow auditors to submit findings and review disputes

Practical example: Requesting supplier certificates for annual qualification

Section titled “Practical example: Requesting supplier certificates for annual qualification”

Scenario: A Supplier Quality Engineer needs to collect updated ISO 13485 certificates and GMP audit reports from three critical raw material suppliers as part of the annual supplier requalification process.

  1. In the EQMS system, generate three upload links — one for each supplier. For each link, specify:
    • Supplier contact name and email address
    • Purpose: “Annual Supplier Requalification 2026”
    • Requested document types: ISO 13485 Certificate, GMP Certificate, and Certificate of Analysis
    • Expiry date: 14 days from today
    • Maximum uploads: 5 per supplier
  2. Each supplier receives an email with their unique upload link and a 6-digit verification code.
  3. Supplier A (a sterile packaging manufacturer) opens the link, enters the verification code 482917, and is authenticated. They see the welcome message with the upload purpose and a checklist showing three requested document types.
  4. The supplier selects Document Type = “ISO 13485 Certificate,” enters Issuing Authority = “BSI,” sets the Issue Date and Expiry Date, and uploads the PDF certificate.
  5. The checklist updates to show a checkmark next to “ISO 13485 Certificate.” The supplier repeats the process for the GMP Certificate and a Certificate of Analysis for their latest lot.
  6. After uploading all three documents, the supplier selects I’m Done Uploading. The completion screen confirms 3 documents uploaded.
  7. The QA team receives a notification that Supplier A has completed their upload. The Supplier Quality Engineer navigates to the Documents module to find the three uploaded certificates ready for review.
  8. For Supplier B, who has not yet uploaded after 10 days, the Engineer sends a reminder. The original link is still valid (4 days remaining before expiry).
  9. Supplier C’s link has expired. The Engineer generates a new upload link with a fresh verification code.

The external upload portal eliminates the need for email attachments, ensures documents are properly categorized with metadata (issuing authority, dates), and creates an audit trail of when each supplier submitted their certificates.