Unannounced audits by notified bodies

Unannounced audits are random sampling checks of the quality management systems by notified bodies with the aim of Initial experience with unannounced audits is now available. Update: Changes due to the MDR History of unannounced audits The emphasis on unannounced audits is a result of the breast implant scandal, after which the demand emerged to…

Details

AAMI TIR 57: IT security and risk management

TIR 57 is a “Technical Information Report” from the American AAMI. It is intended to assist in recognizing and controlling risks due to inadequate IT security of medical devices, thus fulfilling the requirements of ISO 14971 for risk management. TIR 57: Summary for readers in a hurry The AAMI TIR 57 is a guidance document…

Details

IEC 61010-2-101: Requirements for IVD medical devices

IEC 61010-2-101 is a harmonized standard for in vitro diagnostics (IVD). IVD manufacturers can use IEC 61010-2-101 to demonstrate conformity with the general safety and performance requirements of the IVD Regulation (IVDR). The IEC 61010 family Scope of application IEC 61010 is a series of standards that formulates safety requirements for electrical equipment for measurement,…

Details

FDA MAUDE database: Input for risk management

The FDA MAUDE database provides information on the “Manufacturer and User Facility Device Experience.” It thus corresponds roughly to the database used by the BfArM to publish manufacturer reports on risks. Content of the FDA MAUDE database The FDA MAUDE database contains information on Regulatory background Obligation to evaluate Manufacturers are obliged to conduct adequate…

Details

Software architecture documentation

The software architecture documentation primarily serves these objectives: Fast, effective, and plannable software development will succeed if the task (to develop software that meets the software requirements) is broken down into solvable subtasks, which can be distributed among many developers. The prerequisite for this is a precise (documentation of the) software architecture, which is unfortunately…

Details

Black box testing

Black box testing is when test cases are derived solely from the specification of the object to be tested (product, component). White box testing, on the other hand, derives the test cases from the internal structure of the object, e.g., from its source code or software architecture. Unfortunately, many medical device manufacturers neither specify the test…

Details

Regulatory affairs: Service provider, company, individual – liability for mistakes

Many people ask about the liability of individuals, management, and the company. After all, it is not only the Medical Devices Regulations that impose fines and imprisonment. The question of liability also arises for development service providers. Liability in Germany: Differentiating between criminal and civil law Civil law: Parties involved In civil law, the question…

Details