Körber's STEPLogic Trace 9.1 Achieves GS1 Standards Certification via Gateway Checker

Körber's STEPLogic Trace 9.1 has received certification from GS1 US through the Gateway Checker validation program, confirming the system's compliance with EPCIS 1.2 and CBV 1.2 standards for pharmaceutical serialization and traceability. This certification validates that the platform can correctly format and transmit EPCIS event data required under the Drug Supply Chain Security Act (DSCSA) enhanced drug distribution security requirements, which entered enforcement on November 27, 2024.

Regulatory Context: EPCIS and DSCSA Enhanced Requirements

The DSCSA, enacted under Title II of the Drug Quality and Security Act (Public Law 113-54), mandates an electronic, interoperable system for tracking prescription drugs through the U.S. supply chain. As of November 27, 2024, trading partners must exchange transaction information, transaction history, and transaction statements using interoperable electronic systems—replacing paper-based pedigrees.

EPCIS (Electronic Product Code Information Services) 1.2, developed by GS1, is the primary data standard used to fulfill DSCSA's interoperability requirements. The FDA's guidance documents on enhanced drug distribution security reference EPCIS as the mechanism for Serialized Product Verification (SPV), Product Identifier verification, and Authorized Trading Partner (ATP) verification through the Verification Router Service (VRS).

GS1 US operates the Gateway Checker program to certify that vendor solutions correctly implement EPCIS and Core Business Vocabulary (CBV) standards. Certification requires systems to pass validation tests confirming proper formatting of:

• Object events (product serialization at item level)
• Aggregation events (linking serial numbers to case/pallet identifiers)
• Transaction events (documenting ownership transfer)
• Transformation events (repackaging or relabeling operations)

Without proper EPCIS formatting, trading partners cannot exchange verified transaction data, triggering non-compliance under 21 U.S.C. § 360eee-1.

Certification Details and Technical Scope

Gateway Checker certification confirms that STEPLogic Trace 9.1 generates EPCIS 1.2-compliant XML messages that conform to GS1's CBV 1.2 business step and disposition vocabulary. The certification validates:

1. Event generation accuracy: Serialization events captured at packaging lines must include GS1 GTINs, serial numbers, lot numbers, and expiration dates in the correct schema.
2. Master data synchronization: Product hierarchies (item-to-case-to-pallet) must align with GS1 master data attributes.
3. Trading partner message exchange: Outbound EPCIS messages must be parsable by VRS nodes and recipient systems.

GS1 US conducts validation testing against reference implementation profiles documented in the DSCSA Verification Router Service Guidelines 1.1 (published April 2023). Systems must pass all test scenarios covering commissioning, shipping, receiving, and decommissioning events across typical wholesale distribution workflows.

Körber joins approximately 30 other serialization platform vendors that have achieved Gateway Checker certification, including systems from Optel, TraceLink, rfxcel, and Antares Vision.

Impact on Wholesale Drug Distributors

Wholesale drug distributors selecting or validating serialization systems must confirm vendor compliance with EPCIS 1.2/CBV 1.2 standards. Gateway Checker certification provides third-party verification that a platform meets GS1's interoperability requirements—reducing technical risk during DSCSA implementation.

Distributors using certified systems benefit from:

• Interoperability assurance: EPCIS messages generated by STEPLogic Trace 9.1 can be ingested by downstream trading partners without format translation or custom integration work.
• VRS connectivity: Certified EPCIS formatting ensures compatibility with VRS nodes operated by manufacturers, wholesalers, and dispensers under the DSCSA verification framework.
• Audit readiness: FDA inspections of DSCSA systems evaluate whether distributors can produce transaction data in an interoperable electronic format. Gateway Checker certification documents compliance with this requirement.

3PLs and contract packagers performing serialization on behalf of pharmaceutical manufacturers or repackagers should verify that their line integration systems are either Gateway Checker certified or compatible with certified middleware. Non-compliant EPCIS formatting introduces data quality defects that propagate through the supply chain, potentially triggering saleable returns verification failures or ATP validation errors.

State boards of pharmacy conducting DSCSA compliance audits increasingly request documentation of serialization platform certifications as part of wholesale distributor license renewal. Gateway Checker certification provides standardized evidence of technical compliance, distinct from operational compliance (license maintenance, recall responsiveness, or GDP adherence).

What ColdChainCheck Data Shows

ColdChainCheck tracks 1,275 wholesale drug distributors, 3PLs, and cold chain logistics providers across 51 jurisdictions. Of these entities, 1,234 hold active FDA registration—the baseline requirement for handling pharmaceutical products subject to DSCSA. However, FDA registration alone does not confirm serialization platform compliance or EPCIS interoperability readiness.

The directory's average compliance score of 51/100 reflects a "Fair" tier rating, indicating that most entities meet foundational licensure and registration requirements but lack verifiable signals of advanced compliance infrastructure—such as NABP VAWD accreditation (held by only 63 entities) or clean enforcement records (73 entities have FDA recalls on record). Gateway Checker certification is not currently tracked as a discrete compliance signal in ColdChainCheck's scoring methodology, but it represents the type of third-party validation that strengthens due diligence documentation.

The score distribution reveals operational implications:

• 28 entities (2.2%) in "Excellent" tier (76-100 points): These distributors typically maintain broad state licensure, NABP accreditation, and clean regulatory records. They are most likely to have deployed certified serialization platforms ahead of enforcement deadlines.
• 919 entities (72%) in "Fair" tier (26-50 points): This majority holds basic FDA registration and regional state licenses but lacks verifiable advanced compliance signals. For these entities, serialization platform selection and EPCIS validation remain active implementation challenges.
• 47 entities (3.7%) in "Poor" or "Minimal" tiers (<25 points): Limited compliance documentation suggests these distributors may operate in narrow geographic scopes or serve niche markets—placing them at higher technical integration risk.

Practical Guidance for QA and Compliance Teams

• Verify trading partner serialization platforms: Use ColdChainCheck's directory to identify which distributors your organization sources from or sells to. Cross-reference their FDA registration status and NABP accreditation—entities with VAWD accreditation are more likely to have invested in certified EPCIS infrastructure.
• Document vendor certifications during qualification: Add Gateway Checker certification (or equivalent GS1 validation) as a required documentation point in supplier qualification workflows. Request evidence of EPCIS 1.2/CBV 1.2 compliance from 3PLs performing serialization or aggregation services on your behalf.
• Audit ATP verification readiness: DSCSA enhanced requirements mandate verification of Authorized Trading Partners via VRS. Distributors in ColdChainCheck's directory with recalls or warning letters may face increased scrutiny during ATP onboarding—check recall data to assess partner risk profiles.
• Monitor state-level enforcement actions: State boards of pharmacy enforce DSCSA compliance independently of FDA. Track entities by jurisdiction in ColdChainCheck to identify regional enforcement patterns that may signal increased audit activity.

ColdChainCheck does not yet incorporate serialization platform certifications into compliance scores, but the directory's licensure, accreditation, and enforcement data provides a baseline for assessing trading partner compliance posture. For ongoing DSCSA guidance, see ColdChainCheck's regulatory guides.

Disclaimer: This article is for informational purposes only and does not constitute legal or regulatory advice. Wholesale drug distributors, 3PLs, and specialty pharmacies should consult qualified regulatory counsel and verify all compliance requirements with the relevant federal and state authorities.