Healthcare providers such as hospitals, clinics, practices, and laboratories are subject to extensive regulatory requirements, just like medical device manufacturers.
Content
This page provides important articles for these users and operators.
The EU medical device regulations MDR and IVDR form the overarching legal framework. One article highlights their impact on health institutions such as hospitals.
In Germany, these requirements are specified by
All three explicitly concern hospitals and other operators.
The MPBetreibV stipulates the obligation to keep a medical device book.
A central legal requirement is the risk management of hospitals.
The EU regulates medical laboratories. They should, therefore, familiarize themselves with the requirements for in-house IVD (LDT) and laboratory products “For Research Use Only” (RUO).
The digitalization of hospitals is progressing (too) slowly and poses significant tasks for the IT of hospitals and practices.
From a regulatory perspective, hospital IT should pay particular attention to these points:
The article IT security in the healthcare sector provides an introduction.
IEC 80001-1 lists requirements for risk management in hospital IT.
Manufacturers must report security problems. They can classify their severity using the Common Vulnerability Scoring System (CVSS).
They should apply security patches and be aware of the regulatory implications.
IT security is a basis for data protection. The article on data protection in healthcare for medical data provides an introduction.
One way to meet data protection requirements is to anonymize and pseudonymize personal data.
A data protection officer must monitor all of this in the healthcare sector.
Hospital IT staff have to select, install, and administer many different systems:
The interoperability of these devices is a particular challenge.
Laws and standards place requirements on all phases of the product life cycle:
In this context, determining the service life of medical devices is crucial.
There are also requirements for special types of devices:
Do you have questions about the selection, use, and operation of medical devices in hospitals, laboratories, practices, and other healthcare providers? You can get answers in our free micro-consulting.
The Johner Institute’s seminars provide healthcare provider employees with a helpful introduction to topics such as
This article will help you ensure that you will still be able to offer in-house IVD (also called Laboratory Developed Tests, LDTs) under the IVDR and will explain the three options open to you avoiding legal disputes. In-house IVD are a type of in vitro diagnostic test. But do regulatory requirements such as the IVDR also…
DetailsPDMS stands for patient data management system. These clinical information systems are typically used in hospitals, especially in departments that treat patients in intensive care. PMDS are experiencing a new boom in Germany as a result of the funding provided by the Hospital Future Act (Krankenhaus-Zukunftsgesetz, KHZG). This article provides 1. PMDS: Functionalities and requirements Patient data management systems (PDMS)…
DetailsLaws require risk management in hospitals, especially in order to improve patient safety. Nevertheless, many hospitals find this difficult. This article presents the most important regulatory requirements and provides tips for implementation. 1. Typical risks in a hospital a) Risks for patients The most important risks for patients include: b) Risks for all people in…
DetailsOne assumption persists: General laboratory equipment such as PCR cyclers, NGS devices, fragment analyzers, centrifuges, pipetting robots, and extraction kits must bear a CE-IVD marking. Is this correct? There is often a lack of clarity about Hence, there are uncertainties, in order not to make themselves liable to prosecution. This article provides clarity and gives…
DetailsUnderstandably, laws and standards also require IT security for legacy devices. However, the way in which these requirements are formulated often leads to confusion. For example, legislators and standard committees have been unable to agree on common definitions. One definition refers to the IT security of legacy devices, another to the IT security of old…
DetailsThe term “sampling kit” is not defined by the IVDR or any other regulation. Nevertheless, there are (indirect) regulatory requirements that IVD manufacturers and medical laboratories must be aware of and consider. The requirements depend on the particular constellation. This article presents five constellations. It provides clarity and helps to avoid regulatory hassles and minimize…
DetailsOnly through clinical evidence – real evidence – can manufacturers prove their medical devices’ safety, performance, and benefit. But when is proof valid enough? In other words, when is there sufficient clinical evidence for authorities and notified bodies to accept? This article answers the questions and provides a compact introduction to the topic of “clinical…
DetailsThe term “medical device PC” is not clearly defined. However, most people understand a medical device PC to be Depending on the constellation, manufacturers must fulfill different regulatory requirements. These are presented in this article. 1. Case distinctions for medical device PCs Case A: Standalone software is delivered If you as a manufacturer only supply…
DetailsIEC 80001-1 has the long title “Application of risk management for IT-networks containing medical devices – Part 1: Tasks, responsibilities and activities“. This article reveals what the standard requires and why manufacturers should also consider it. 1. About DIN EN IEC 80001-1 a) Objectives of DIN EN IEC 80001-1 The standard aims to help minimize…
DetailsSince May 25, 2017, the In Vitro Diagnostic Medical Device Regulation (IVDR) has been in force, which has now replaced the previous IVD Directive (98/79/EC, IVDD). There are significant differences between the IVDR and IVDD. This article presents these differences. In doing so, it provides manufacturers who placed their devices under the EU directive (IVDD)…
Details
Privacy Preference
We need your consent before you can continue on our website. If you are under 16 and wish to give consent to optional services, you must ask your legal guardians for permission. We use cookies and other technologies on our website. Some of them are essential, while others help us to improve this website and your experience. Personal data may be processed (e.g. IP addresses), for example for personalized ads and content or ad and content measurement. You can find more information about the use of your data in our privacy policy. You can revoke or adjust your selection at any time under Settings.
Privacy Preference
If you are under 16 and wish to give consent to optional services, you must ask your legal guardians for permission. We use cookies and other technologies on our website. Some of them are essential, while others help us to improve this website and your experience. Personal data may be processed (e.g. IP addresses), for example for personalized ads and content or ad and content measurement. You can find more information about the use of your data in our privacy policy. Here you will find an overview of all cookies used. You can give your consent to whole categories or display further information and select certain cookies.