Connectivity in medical devices creates new diagnostic and treatment opportunities, yet at the same time increases the risks of cyberattacks—including their consequences for patient safety and data privacy. Now the new IEC 81001-5-1 standard provides clear technical requirements for manufacturers and developers to ensure the cybersecurity of their products across their life cycle.
One of the biggest stumbling blocks for manufacturers, particularly those with legacy devices, is clinical evidence under IVDR. Carlos Galamba, former technical reviewer and current VP of Intelligence and Innovation at RQM+, discusses the challenges and opportunities of the more stringent evidence requirements facing diagnostics developers.
If teams across regulatory, quality and safety functions—as well as further across the life sciences enterprise—are to be able to think and operate in more agile and dynamic ways to achieve what is necessary, then the way that they generate, manage and store documents and data needs to change fundamentally. Regulatory changes (e.g., towards data-driven submissions activity, more dynamic item/label tracking, etc.) are prompting some of this change, but cannot be relied upon exclusively to drive the process improvements now needed.
Although medical device manufacturers have more time to prepare due to the delayed EU MDR deadline, this shouldn’t distract from the extensive documentation they must compile in the meantime to prove their devices are compliant.
As the proliferation of connected and complex medical devices grows, healthcare providers are more susceptible to cyberattacks.
When implementing IVDR requirements, it’s important to take a step back and look at the flow of documents.
The certification comes at a time when many companies have been saying that the May 2020 deadline is too soon.
Manufacturers must re-evaluate existing regulatory and compliance strategies to meet the new requirements.
SNITEM & Philips France vs. Health Minister: the ECJ defines the conditions under which software for assistance to the medical prescription can be qualified medical device within the meaning of the Directive.
The agency has released a draft guidance outlining its policy for accepting data from foreign clinical studies.