Call Us Today at 508-231-8842        EMERGENCY

In 2000, the first edition of ISO 14971 was released as the international standard for risk management of medical devices. This year, the ISO technical committee (ISO/TC 210) has been hard at work updating this globally-recognized standard. And while the fundamental stages of the risk management process remain unchanged, there are some key modifications that medical device manufacturers should be aware of to ensure that they can successfully navigate the development, testing, and launching of new products in the coming years.

The most significant revisions include the following:

  • Three new definitions are being introduced (benefit, reasonably foreseeable misuse & state of the art)
  • Benefit-risk analysis is being refocused to align the concept with terminology used in other major regulations, such as the EU MDR
  • Additional emphasis on the scope of the ISO 14971-risk management process; for example, all risks associated with a medical device, ranging from electrical to usability and data security
  • More emphasis is being placed on the importance of risk management planning by explicitly requiring that proper execution of the plan is verified during risk management review
  • Risk management plans must define the methods and criteria used to evaluate acceptability of the overall residual risk
  • The various requirements to disclose certain residual risks are being merged into one requirement as part of the “Evaluation of overall residual risk”
  • Risk management requirements for proactive production and process-based post-production activities have been elaborated upon and restructured
  • The number of annexes to the standard have been decreased and the information moved to ISO/TR 24971 (Medical devices – Guidance on the application of ISO 14971) to maintain the focus on the normative requirements

It should be noted, relative to that last point, that the revised guidance (ISO/TR 24971) is currently under review and has not yet been published. If you did not know about this restructuring, you might purchase the new 14971 without realizing that a significant portion of information – such as recommendations on hazard identification, risk concepts and medical devices, risk analysis techniques, residual risk, risk management for in-vitro diagnostic devices, risk management for biological hazards, and risk management plan – was missing from ISO 14971. Once published, you will need to buy TWO documents for compliance.

It’s important to emphasize that the general process for risk management of medical devices has not significantly changed – manufacturers must still identify all relevant hazards and their situations, estimate the level of risk involved, and manage these risks to create a device suitable for its purpose.

One change that is particularly interesting to note however, is how risk-benefit analysis is now being viewed. The term is essentially being reversed, with the focus placed on benefits outweighing the risks. Benefits can now be considered to be any positive impact or expected outcome of the use of the medical device.

Likewise, it is worth noting that the definition of “reasonably foreseeable misuse” now explicitly extends the scope beyond the to-be-expected use errors – even though this was already the expectation for many years. Having an impact on a device’s benefit-risk-profile, this also explicitly includes unforeseen risks resulting from inadequate “data and system security,” implying that the risk analysis must be reviewed as new cyber risks are identified.

There is a new chapter concerning safety-related characteristics as well, but the requirement is not new. These are characteristics that are essential for the safety of the device, similar to the essential performance requirement identified in IEC 60601-1.

A planned, proactive collection and evaluation of data from post-development phases is also emphasized. This includes an information review on state of the art, competitor information, and information generated during the installation, use, and maintenance of the device.

To learn more about the newly-revised ISO 14971 and its possible impact upon your company’s risk management strategy, contact the risk management specialists here at MEDIcept.

Sign up to receive our Newsletters!

The Latest News

FDA Updates Special 510(k) Guidance

FDA’s Special 510(k) submission process has been around for years as an expedited method to demonstrate that the device to be marketed is at least as safe and effective (i.e., substantially equivalent), to a legally-marketed device not subject to the Premarket Approval (PMA) process. In September 2019, a modified version of this program was published to create a streamlined review of technological changes made to a manufacturer’s own cleared device which leveraged design control requirements....

Metal Implants: FDA’s November, 2019 Immunology Devices Panel Meeting

The Immunology Devices Panel of the FDA’s Medical Device Advisory Committee met in November to discuss the topic of immunological responses to metal-containing products regulated as medical devices. The panel focused on metal-containing implants as well as dental amalgam. Recent post-market issues with some metal-on-metal orthopedic implants and gynecological metal-containing implants have raised questions about the potential for some patients to develop unexpected or heightened biological...

Quality Systems in Motion, Inc. (QSIM) is now part of MEDIcept Inc.

For Immediate Release Ashland, MA: MEDIcept Inc, an international quality, regulatory, and clinical consulting firm focused on medical device and in-vitro diagnostics (IVD), and QSIM, a US-based privately held consulting firm specializing in medical device/biotechnology, announces the merger of the two companies. QSIM, under the direction of Brian Markham, President, specialized in providing leadership and resources for organizations undergoing significant quality system change due to...