ISO 13485 is a harmonized standard that formulates requirements for Quality Management (QM) or QM systems (QMS) of medical device manufacturers.
These manufacturers can use ISO 13485 to prove that they meet the MDR and IVDR legal requirements for a QM system. Even the FDA references ISO 13485 in its Quality System Management Regulations (21 CFR part 820).
Content
On this page, you will find links to articles that will help you set up, operate, and audit Quality Management Systems:
The FAQ on quality management systems and ISO 13485 is a valuable introduction and answers the following questions, among others:
There are many standards and versions defining requirements for quality management:
You can find ISO 13485 as a PDF for download from the Estonian standardization organization, not free of charge but at a reasonable price.
In contrast to ISO 9001, ISO 13485 requires organizations to have a QM manual. This manual must describe the quality objectives and quality policy.
The Quality Management Representative (QMR) usually maintains this manual.
ISO 13485 requires you to describe your processes and procedures. This is usually done with the help of standard operating procedures and work instructions, which, in turn, reference other specification documents such as templates, forms and checklists.
This article provides you with an overview of the necessary standard operating procedures. When writing these standard operating procedures, it is advisable to choose a risk-based approach.
Another article describes the differences between process orientation and process management.
You will find further articles on specific standard operating procedures:
ISO 13485 insists on the validation of processes and tools. Please refer to the following articles:
The effectiveness of the QM system is checked as part of external audits by notified bodies and internal audits. The internal auditors are responsible for the latter.
Part of these audits must also include supplier audits. Furthermore, notified bodies are obliged to carry out unannounced manufacturer audits.
At least for the external audits, there are specifications regarding the audit duration. The Medical Device Single Audit Program (MDSAP) also determines requirements for the duration and subject matter of the audits. This enables manufacturers to prove that they meet the regulatory requirements for the QM system in many countries (EU, FDA, Australia, Japan, Brazil).
The following articles are also relevant for organizations that develop medical devices:
Do you still have questions, for example about setting up your QM system? Then, take advantage of our free micro-consulting service.
The Johner Institute supports medical device manufacturers, their service providers, and laboratories in developing and continuously improving QM systems.
The seminars provide you with the necessary competence:
The Medical Device University supports you in setting up your QM system. The program includes:
Benefit from the Johner Institute’s consultants! These …
Interested? Then, contact us right away.
Document control is a documented procedure that specifies how documents are created, reviewed, approved, labeled, distributed, and updated. Organizations certified according to ISO 9001 or ISO 13485 are obliged to document control.
DetailsInternal audits are inspections of the quality management system (QM system) and its processes by the organization itself. This is why they are also called 1st party audits. ISO 13485 requires internal audits like its “sister standard,” ISO 9001, and other standards and regulations. Therefore, internal audits are also a subject of external audits and…
DetailsIn a standard operating procedure (SOP), companies define their processes, for example how they develop medical devices or provide services. Standards such as ISO 9001 and ISO 13485 require standard operating procedures. Companies can define these specifications in their quality management manual directly or in independent documents.
DetailsISO/IEC 42001 is titled “Information technology – Artificial intelligence – Management system.” The first medical device manufacturers have set out to be certified according to this standard. But are the efforts required to do so justified? Does ISO/IEC 42001 help to meet the requirements of the AI Act? This article provides answers.
DetailsThe DAkkS, the German Accreditation Body, is Germany’s national accreditation authority.
The MDR and IVDR, as well as ISO 13485:2016, just like the FDA, set out clear requirements regarding supplier evaluation, supplier selection, and supplier monitoring. This article not only gives you an overview of the regulatory requirements. It also gives you tips on how to implement them and tells you when a supplier audit is necessary.
DetailsThe NIS-2 (Network and Information Security) Directive is a European directive (Directive (EU) 2022/2555) that sets minimum standards for cybersecurity within the EU. Does this directive also affect IVD and medical device manufacturers? If so, what does it require, and what should manufacturers do? This article provides answers.
DetailsThe Medical Device Single Audit Program (MDSAP) was initiated to satisfy a wish of many medical device manufacturers: To replace the various audits and inspections by authorities from different countries with one audit. Participating in the MDSAP shall suffice for verifying effectiveness and conformity of QM systems (e.g., with ISO 13485 or 21 CFR part 820). In…
DetailsAQL stands for Acceptable Quality Level and is sometimes translated as “permitted reject rate.” The AQL determines when a batch of parts or products is rejected or accepted based on a random sample inspection. However, auditors regularly no longer accept the AQL. What to do? This article provides answers.
DetailsIn 21 CFR part 11, the FDA establishes its requirements for electronic records and signatures, which also apply to medical device manufacturers. A lot of companies print everything out on paper and then sign it by hand to circumvent the requirements of part 11. Is this really necessary?
Details
Privacy Preference
We need your consent before you can continue on our website. If you are under 16 and wish to give consent to optional services, you must ask your legal guardians for permission. We use cookies and other technologies on our website. Some of them are essential, while others help us to improve this website and your experience. Personal data may be processed (e.g. IP addresses), for example for personalized ads and content or ad and content measurement. You can find more information about the use of your data in our privacy policy. You can revoke or adjust your selection at any time under Settings.
Privacy Preference
If you are under 16 and wish to give consent to optional services, you must ask your legal guardians for permission. We use cookies and other technologies on our website. Some of them are essential, while others help us to improve this website and your experience. Personal data may be processed (e.g. IP addresses), for example for personalized ads and content or ad and content measurement. You can find more information about the use of your data in our privacy policy. Here you will find an overview of all cookies used. You can give your consent to whole categories or display further information and select certain cookies.