Inside 470 FDA Warning Letters From 2025: What Labs Need to Know

We analyzed every warning letter issued last year to spot the common trends and themes that labs can learn from as we head into 2026. From poor CAPA management to inadequate document storage, error-prone manual systems seem to be at the center of most 2025 letters. 

But mitigating them requires more than just signing up for the first software platform you find to manage your data. You need to select the right software and implement it thoughtfully to support your processes as they scale. In this article, you will leave with:

• The most common points of failure in labs
• A breakdown of risks posed by manual systems and how often they are cited
• Key quotes from select FDA warning letters to shed light on where labs often fail to comply
• The best software and tools modern labs can use to mitigate these risks

The FDA issued most of its warning letters in Q3 and Q4; if the trend holds, you still have time to improve your lab’s processes, but you’ll need to read this article and heed its guidance first. 

2025 FDA Warning Letters By The Numbers

The FDA Warning Letters are publicly available on the FDA website. We scraped the data from this website to pull all letters issued in 2025, and we will walk you through our analysis throughout this guide.

By the numbers, 2025 was a busy year for the FDA:

• 470 FDA warning letters issued in 2025
• 99% contained citations related to documentation, records, or written procedures
• 148 letters targeted regulated labs in pharma, biotech, research, and medical devices

Data sourced from FDA.gov Warning Letters database, January 2 – December 30, 2025.

Our Methodology: How We Built This Report

Gathering the data for this report required a scraper built with open-source Python libraries to navigate the table and retrieve each warning letter, along with its corresponding text and metadata. 

Once we retrieved all 470 letters, we then used Python to analyze them for the high-level numbers, this time using regexes to pull the figures we used for the charts below. For the quotes, we zeroed in on letters of interest, or ones that matched regexes looking for specific compliance failures that we felt were relevant to points made throughout this article. 

While regexes can be useful for analyzing large datasets, we will readily admit they are not infallible. That said, we did our best to refine our bulk analysis and hand-check the data we present to verify that it is as accurately represented as possible.

A High-Level Overview of the 2025 FDA Warning Letters

The FDA issued 470 warning letters last year, targeting pharmaceutical manufacturers, medical device makers, dietary supplement producers, biologics labs, and many more. While the companies, products, and specific violations varied widely, one pattern repeated itself with striking consistency: the breakdown of basic quality systems.

The Center for Drug Evaluation and Research (CDER) was responsible for 220 of those letters. The Center for Devices and Radiological Health added 39 more. Together with biologics and import divisions, regulated lab environments accounted for the majority of enforcement action this year.

And enforcement wasn't evenly distributed across the calendar. A striking 47% of all 2025 warning letters were issued in just three months: July, August, and September

Of the 470 warning letters issued, 392 (85%) were directed at companies based in the United States, with the remaining 71 (15%) targeting international manufacturers whose products enter the US market.

Within the US, the South and West were hit hardest, accounting for more than 65% of domestic letters. California alone received more warning letters than any other state (56 in total), likely due to its dense concentration of pharmaceutical, biotech, and medical device labs. Florida (41) and Texas (33) followed, with New York (24) and New Jersey (15) rounding out the top five.

Internationally, Asia-Pacific manufacturers accounted for the majority of non-US letters, with China (15), India (13), and South Korea (12) leading the list. The FDA's enforcement reach extends to any foreign manufacturer supplying regulated products to US consumers, and the same documentation and quality system expectations apply regardless of where a lab is located.

The Top Failures Cited by the FDA

What may be surprising about the body of letters issued in 2025 is that, for the most part, they did not cite bad chemistry or faulty equipment nearly as much as they cited systemic failures in how labs document, track, and manage their own work.

As is the case for most labs that received a warning letter, it’s almost never about the science and almost always about the systems. 469 out of 470 letters contained citations related to documentation or records management. The specific failure categories read like a checklist of manual process risks:

• 62 letters cited missing or inadequate written procedures and SOPs
• 48 letters cited failures to properly investigate discrepancies or out-of-specification results
• 100 letters cited validation failures
• 14 letters cited specific data integrity violations, including altered, deleted, or uncontrolled records

In several cases, the FDA found that labs were using unvalidated Excel spreadsheets as their primary tool for critical calculations and quality records, and that analysts had unrestricted access to modify or delete those files.

"The observed lapses, including but not limited to laboratory controls, documentation practices, and data integrity controls… indicate fundamental weaknesses in the QU’s oversight function." — FDA Warning Letter, SV Labs Corporation, 2025

It may come as a surprise, but most of the citations arise from the mundane best practices that labs know they need to do but struggle with when managing data manually: good record-keeping, data hygiene, role-based access, and so on are nearly impossible with paper-based or spreadsheet systems, but come built into most cloud-based software platforms.

Top Risks to Labs Identified by the FDA Warning Letters

Within these 470 warning letters, we can tease out the top risks facing modern labs as we enter 2026. Recall that there is a noticeable spike in warning letters issued in the summer to early fall, so the first half of the year is the best time to assess your lab against these risks and address them. 

The 470 warning letters issued in 2025 included 148 directed at regulated lab environments: pharmaceutical manufacturers, compounding pharmacies, API (Active Pharmaceutical Ingredient) producers, medical device makers, biologic facilities, and dietary supplement labs. 

For the purposes of the analysis below, we are excluding:

• Tobacco retailers
• Internet pharmacies
• Food importers
• Clothing manufacturers and other consumer retail products

When we examined the explicit violation language in each of those letters, eight failure categories accounted for the vast majority of enforcement action. Of those 148 letters, the following are the top risks labs in regulated industries face:

• Missing or inadequate written procedures: 43 letters (29%)
• Failure to investigate OOS results: 50 letters (34%)
• Method or process validation failures: 40 letters (27%)
• Failure to qualify suppliers or components: 34 letters (23%)
• Failure to test and release each batch: 23 letters (16%)
• CAPA not initiated or inadequate: 19 letters (13%)
• Complaint handling failures: 13 letters (9%)
• Stability testing absent or inadequate: 12 letters (8%)

Missing or Inadequate Written Procedures

Missing/inadequate written procedures were the most cited risk in 2025. Labs that operate without formally documented, approved, and controlled procedures leave themselves exposed on almost every front. It does not matter if procedures exist inside the heads of your staff; as far as the FDA is concerned, if a procedure isn't written down, it doesn't reliably exist.

The violations here ranged from missing SOPs for equipment cleaning to absent procedures for production and process control. In several letters, the FDA noted that procedures were informal, undated, not version-controlled, or simply couldn't be produced during inspection.

"Your firm failed to establish written procedures for production and process control designed to assure that the drug products you manufacture have the identity, strength, quality, and purity they purport or are represented to possess." — FDA Warning Letter, 2025

Failure to Investigate OOS Results

An out-of-specification result is not a problem in itself. An OOS result that goes uninvestigated or is investigated inadequately is a federal violation.

In 50 of the 148 lab letters, the FDA cited explicit failures to formally investigate discrepancies, unexpected results, or specification failures. The pattern that auditors look for is systematic: 

• Was the result documented? 
• Was an investigation opened promptly? 
• Was it properly closed with a documented root cause and disposition? 

In too many labs, the answer to one or more of those questions was no.

"Your quality unit failed to identify this deviation and did not investigate until our investigators cited it as a CGMP deficiency." — FDA Warning Letter, Chemspec Chemicals Private Limited, 2025

Method or Process Validation Failures

Proper validation is the documented proof that your methods, processes, and equipment do what you say they do. Yet 40 of 148 lab letters in 2025 cited validation failures of some kind, from unvalidated analytical methods to cleaning validations that were never completed or inadequately documented.

This category frequently intersects with spreadsheet risk: calculation tools that have never been formally validated are a consistent target for FDA inspectors because, in the FDA's view, unvalidated calculations are unreliable. 

"Your firm failed to validate and establish the reliability of your component supplier's test analyses at appropriate intervals." — FDA Warning Letter, 2025

A theme here bears repeating: the FDA cares less about the end result than about the care a lab takes in documenting and auditing the data flowing through. 

Failure to Qualify Suppliers or Components

Labs that introduce unqualified materials into their processes, or that fail to verify supplier test data at appropriate intervals, take on risk that compounds across every downstream product. The FDA's expectation is that each incoming component lot has been tested or verified, and that suppliers have been formally assessed and approved.

In 2025, 34 lab warning letters cited failures in this area, from labs that had never formally qualified their critical suppliers to labs that accepted supplier certificates of analysis without conducting any independent verification.

"Your firm failed to adequately implement supplier management procedures to ensure that products purchased from your critical supplier conform to specified requirements." — FDA Warning Letter, ASP Global LLC, 2025

Failure to Test and Release Each Batch

Releasing a product batch without completing appropriate laboratory testing for identity, strength, and purity is one of the most direct routes to an FDA warning letter. In 23 of 148 lab letters, investigators found that labs had released batches without conducting or completing the required testing.

This category is particularly consequential because it directly implicates the safety of distributed products, not just the integrity of internal records.

"Your firm failed to have, for each batch of drug product, appropriate laboratory determination of satisfactory conformance to final specifications for the drug product, including the identity and strength of each active ingredient, prior to release." — FDA Warning Letter, Guangdong Renhe Guozhuang Biotechnology Co., Ltd., 2025

CAPA Not Initiated or Inadequate

A corrective and preventive action system that exists on paper but doesn't close the loop on real problems is a liability. In 19 lab letters, the FDA cited failures to initiate CAPA at all, or found that CAPA responses were inadequate, lacked supporting documentation, or failed to address root causes.

"Additionally, you failed to initiate a CAPA at the conclusion of the investigations." — FDA Warning Letter, Tower Laboratories Ltd., 2025

Complaint Handling Failures

Customer and adverse-event complaints are painful issues for labs as well. In 2025, 13 lab warning letters cited failures in this area, including labs that lacked formal complaint-handling procedures or failed to investigate complaints that should have triggered a quality event.

Stability Testing Absent or Inadequate

Establishing the shelf life and storage conditions of a product requires a documented, ongoing stability program. In 12 lab letters, the FDA found that stability testing programs were missing, incomplete, or had not been conducted at required intervals, leaving labs without the data needed to support their expiration claims.

What If Audit-Readiness Were Your Default State? How Software Can Help

Most labs don't fail FDA audits because they're doing bad science. They fail because their systems can't prove they're doing good science.

Throughout the issues cited above, we hope the following is clear: The FDA is not concerned with the outputs as much as with the ability to audit and review those outputs and the documented processes and proof for doing so. When something goes wrong, and that is inevitable, you need to be able to pinpoint the error and offer defensible proof of your findings.

Doing so with manual systems is near impossible, which is why modern labs rely on specialized software to manage data at scale. The two most common options are:

• QMS: A QMS (Quality Management System) is a software platform designed to help labs meet customer requirements and regulatory standards. This can ensure that your lab consistently and efficiently produces products and performs services.
• LIMS: A LIMS (Laboratory Information Management System) is a comprehensive software platform designed to manage and track samples, tests, and results throughout the entire lab workflow.

Both are necessary for lab compliance, but between the two, a LIMS is a far more robust software platform. LIMS can be self-hosted, licensed, or built from scratch (though this requires careful consideration for compliance and security). Some LIMS require extensive customization, while others offer in-app configuration. And throughout your search, you’ll find some LIMS are industry-specific, while others are industry-agnostic. 

At its core, a LIMS can be used to manage data, records, and workflows. All are keys to improving compliance with various regulations, but a LIMS can also be used for the following:

• Sample management and tracking
• Workflow automation and optimization
• Instrument integration and data capture
• Quality control and assurance
• Reporting and data analysis
• Chain of custody management
• Product lot tracking
• Batch test re-runs
• Equipment scheduling and calibration
• Customer-facing portal

On their own, these features can save labs time and improve data integrity, but let’s walk through the specific ways a LIMS can benefit your lab next.

How a LIMS Can Help Labs Prepare for Audits and Inspections

A LIMS can track samples and inventory and help generate reports. You’re already doing that, right? Here are the other benefits of a LIMS beyond the feature list:

• Accessibility anytime, anywhere: With cloud-based LIMS, your staff can access data and workflows from anywhere, provided they have an internet connection. Google Sheets may allow you to access spreadsheets in the cloud, but spreadsheets can’t help you with the items below.
• Scalability on demand: As your lab grows or needs change, cloud-based LIMS can scale up or down and adapt to support your processes. This is especially key for high-throughput labs that expect to scale in the future.
• Automation: This is where a LIMS stands out from manual-based systems. A LIMS can alert you of low stock levels, inventory in danger of expiring, batch-run tests, generate reports, and so much more. We’ve spoken to labs that spent hours managing all of this manually every week.
• Improved compliance: Some LIMS offer features specifically geared toward compliance, like record-keeping, audit trails, and regular data backups. While a LIMS differs from a QMS, it can help you meet certain regulatory requirements and maintain quality control.

In an interview with Joe Franchetti of JAF Consulting, a lab compliance consulting firm, Joe shared his thoughts on how a LIMS can aid a lab looking to shore up its compliance practices:

“A LIMS will, if you configure the workflows correctly, you configure all of your processes correctly, force compliance. When these systems force compliance, they force the activities.”

When you factor in the automation, compliance, and scalability of a LIMS, spreadsheets pale in comparison. If you’re still wondering if this investment is “worth it,” then we’d caution you about the cost of manual work.

What to Look For When Selecting a LIMS

There are plenty of legacy LIMS vendors that add on extra fees for professional services, training, and custom development work, and there are plenty of cheaper LIMS that force you to adapt to them rather than the other way around.

Ask about the following when evaluating vendors to make the right decision:

• Configurability: Does the LIMS require custom coding from a developer, or is it configurable so anyone on your team can log in and adjust settings to adapt the platform to your needs? Take care to evaluate a vendor’s stance on this, and ask for examples of what can be configured in the platform.
• Implementation timeline and approach: No LIMS comes “out of the box,” but some LIMS can be implemented more easily than others. Take care to understand the vendor’s implementation approach and requirements before you begin. Fast is not always best; some vendors offer a quick implementation with months of work after your go-live date for extended services. 
• Expertise of the team: Anyone can build a software platform and market it to labs, but how many vendors have actually worked in a lab setting before? Look for a vendor who understands your needs because they’ve walked a mile or two in your shoes.

This is a starting point. For a deeper dive, check out our LIMS evaluation guide and checklist for a full walkthrough on how to evaluate vendors and choose the right software for your lab.

A LIMS Can Help, But It’s Only Worth it if You Have the Right LIMS

The FDA issued 470 warning letters in 2025, and the labs that received them all had one thing in common: they trusted manual systems to bear the weight that only a modern LIMS can.

Spreadsheets and notebooks may work at a small scale – they have for decades prior – but once throughput increases, your headcount grows, or new test methods are added, your manual systems will crumble under the weight and complexity of your lab.

A LIMS is the answer, but a LIMS is not a one-size-fits-all solution. Once you’ve decided to invest in a LIMS, it’s time to make sure you invest in the right LIMS. So which vendor(s) will you review? 

With so many vendors to pick from and features to consider, we created a LIMS buyer’s guide to help you make the right choice for your lab. In this guide, you will learn the following:

• The different types of LIMS available
• Key features to look out for
• A vendor comparison

And more!

Fill out the form below to get your free guide and take the first step toward automating your lab today.

‍

Data sourced from the FDA.gov Warning Letters database for the period January 2 – December 30, 2025. All figures represent publicly available enforcement records. QBench is not affiliated with the FDA. This report is provided for informational purposes.