Regulatory Aspects of Digital Healthcare Solutions
|
|
- Alexina Carpenter
- 6 years ago
- Views:
Transcription
1 Regulatory Aspects of Digital Healthcare Solutions TÜV SÜD Product Service GmbH Dr. Markus Siebert Rev. 02 / TÜV SÜD Product Service GmbH Slide 1
2 Contents Digital solutions as Medical Device Classification of software Relevant Standards Data security Preview software new MDR TÜV SÜD Product Service GmbH Slide 2
3 Contents Digital solutions as Medical Device Classification of software Relevant Standards Data security Preview software new MDR TÜV SÜD Product Service GmbH Slide 3
4 Digital solutions as Medical Device Software Classical devices Apps & Wearables Digital healthcare solutions TÜV SÜD Product Service GmbH Slide 4
5 Digital solutions as Medical Device Legal requirements Medical Devices Act MPG (Medizinproduktegesetz) Medical Devices Directive MDD 93/42/EEC (Medizingerätedirektive) Decrees, orders (Harmonized) standards Guidelines, recommendations TÜV SÜD Product Service GmbH Slide 5
6 Medical Devices Directive 93/42/EEC Definition: medical device (MDD, Article 1) any instrument, apparatus, appliance, software, material or other article, whether used alone or in combination, including the software intended by its manufacturer to be used specifically for diagnostic and/or therapeutic purposes and necessary for its proper application, intended by the manufacturer to be used for human beings for the purpose of: diagnosis, prevention, monitoring, treatment or alleviation of disease, diagnosis, monitoring, treatment, alleviation of or compensation for an injury or handicap, investigation, replacement or modification of the anatomy or of a physiological process, control of conception, and which does not achieve its principal intended action in or on the human body by pharmacological, immunological or metabolic means, but which may be assisted in its function by such means. TÜV SÜD Product Service GmbH Slide 6
7 Medical Devices Directive 93/42/EEC Essential requirements: (MDD, Annex I) 1. The devices must be designed and manufactured in such a way that, when used under the conditions and for the purposes intended, they will not compromise the clinical condition or the safety of patients, or the safety and health of users or, where applicable, other persons, provided that any risks which may be associated with their intended use constitute acceptable risks when weighed against the benefits to the patient and are compatible with a high level of protection of health and safety. TÜV SÜD Product Service GmbH Slide 7
8 Medical Devices Directive 93/42/EEC Essential requirements: (MDD, Annex I) 2. The solutions adopted by the manufacturer for the design and construction of the devices must conform to safety principles, taking account of the generally acknowledged state of the art. In selecting the most appropriate solutions, the manufacturer must apply the following principles in the following order: eliminate or reduce risks as far as possible (inherently safe design and construction), where appropriate take adequate protection measures including alarms if necessary, in relation to risks that cannot be eliminated, inform users of the residual risks due to any shortcomings of the protection measures adopted. [ ] TÜV SÜD Product Service GmbH Slide 8
9 Medical Devices Directive 93/42/EEC Essential requirements: (MDD, Annex I) [ ] 6a Demonstration of conformity with the essential requirements must include a clinical evaluation in accordance with Annex X. [ ] 12.1a For devices which incorporate software or which are medical software in themselves, the software must be validated according to the state of the art taking into account the principles of development lifecycle, risk management, validation and verification. TÜV SÜD Product Service GmbH Slide 9
10 Contents Digital solutions as Medical Device Classification of software Relevant Standards Data security Preview software new MDR TÜV SÜD Product Service GmbH Slide 10
11 Classification of software General distinction between classes I, IIa, IIb und III From class I to III the risk potential increases In class I it can be additional distinguished between the variants class I sterile class I with measuring function Essential requirements are applicable for all classes For different classes different conformity assessment procedures are defined TÜV SÜD Product Service GmbH Slide 11
12 Classification of software 1. MDD Annex IX: Classification criteria 2. MEDDEV 2.4/1 (June 2010): Guidance document Classification of Medical Devices 3. MEDDEV 2.1/6 (July 2016): Guidance document Qualification and Classification of stand alone software 4. MANUAL ON BORDERLINE AND CLASSIFICATION IN THE COMMUNITY REGULATORY FRAMEWORK FOR MEDICAL DEVICES (Sept 2015): 9. Software and mobile applications TÜV SÜD Product Service GmbH Slide 12
13 Classification of software MDD, Annex IX: Classification criteria I. Definitions 1.4. Active medical device [ ] Stand alone software is considered to be an active medical device. II. Implementing rules 2.3. Software, which drives a device or influences the use of a device, falls automatically in the same class. III. Classification 3. Additional rules applicable to active devices rule 9 to rule 12 apply. TÜV SÜD Product Service GmbH Slide 13
14 Classification of software MEDDEV 2.4/1 (June 2010): Guidance Document Classification of Medical Devices TÜV SÜD Product Service GmbH Slide 14
15 Classification of software MEDDEV 2.1/6 (July 2016): Guidelines on the Qualification and Classification of Stand Alone Software used in Healthcare within the Regulatory Framework of Medical Devices 1. Definitions and abbreviations Stand alone software Expert function software 2. Qualification criteria as medical device Must have a medical purpose Intended purpose as described by the manufacturer Must fulfill the definition of a medical device [ ] Might run on different operating systems or in virtual environments Risk related to a malfunction of the stand alone software is not a criterion TÜV SÜD Product Service GmbH Slide 15
16 Classification of software MEDDEV 2.1/6 Figure 1: Decision diagram to assist qualification of software as medical device. TÜV SÜD Product Service GmbH Slide 16
17 Classification of software TÜV SÜD Product Service GmbH Slide 17
18 Classification of software TÜV SÜD Product Service GmbH Slide 18
19 Conformity assessment procedures To obtain CE marking for the device Conformity assessment procedure depends on classification Notified Body required for devices > class I Essential requirements are applicable for all classes For different classes different conformity assessment procedures are defined TÜV SÜD Product Service GmbH Slide 19
20 Conformity assessment procedures TÜV SÜD Product Service GmbH Slide 20
21 Contents Digital solutions as Medical Device Classification of software Relevant Standards Data security Preview software new MDR TÜV SÜD Product Service GmbH Slide 21
22 Relevant Standards Some Applicable Medical Device Standards to comply with the Essential Requirements of the MDD EN ISO Quality Management ISO Risk Management IEC Software Development Lifecycle IEC Health Software IEC Usability IEC Constructional / Electrical Safety IEC x Collateral Standards IEC xx Particular Standards IEC / Application of Risk Management for IT networks IEC x incorporating Medical Devices TÜV SÜD Product Service GmbH Slide 22
23 Relevant Standards Other legal Requirements GER: Bundesdatenschutzgesetz (BDSG) EU : Directive 95/46/EG on the protection of individuals with regard to the processing of personal data and on the free movement of such data USA: Health Insurance Portability and Accountability Act (HIPAA) FDA Guidances Mobile Medical Applications (2015) General Wellness: Policy for Low Risk Devices (2015) Content of Premarket Submissions for Management of Cybersecurity in Medical Devices (2014) Off-The-Shelf Software Use in Medical Devices (1999) bsi PAS 277:2015 Health and wellness apps Quality criteria across the life cycle Code of practice TÜV SÜD Product Service GmbH Slide 23
24 IEC 62304: Software life cycle processes Scope and Purpose IEC defines Life Cycle requirements for MEDICAL DEVICE SOFTWARE PROCESSES, ACTIVITIES, and TASKS Field of application development and maintenance of MEDICAL DEVICE SOFTWARE software is itself a MEDICAL DEVICE software is an embedded or integral part of the final MEDICAL DEVICE Does not cover validation and final release. TÜV SÜD Product Service GmbH Slide 24
25 IEC : Health software Health software Part 1: General requirements for product safety TÜV SÜD Product Service GmbH Slide 25
26 IEC : Health software HEALTH SOFTWARE application domains and scope of related standards TÜV SÜD Product Service GmbH Slide 26
27 Contents Digital solutions as Medical Device Classification of software Relevant Standards Data security Preview software new MDR TÜV SÜD Product Service GmbH Slide 27
28 Data security Source: TÜV SÜD Product Service GmbH Slide 28
29 Data security Essential requirements: (MDD, Annex I) 1. The devices must be designed and manufactured in such a way that, when used under the conditions and for the purposes intended, they will not compromise the clinical condition or the safety of patients, or the safety and health of users or, where applicable, other persons, provided that any risks which may be associated with their intended use constitute acceptable risks when weighed against the benefits to the patient and are compatible with a high level of protection of health and safety. TÜV SÜD Product Service GmbH Slide 29
30 Data security IT security requirements ISO 14971, clause 4.3 Identification of hazards: The manufacturer shall compile documentation on known and foreseeable hazards associated with the medical device in both normal and fault conditions IEC 62304, Edition 1.1, 2015, clause (Software requirements content) As appropriate to the MEDICAL DEVICE SOFTWARE, the MANUFACTURER shall include in the software requirements: e) SECURITY requirements NOTE 3 Examples include: system security/malware protection. j) requirements related to IT-network aspects (user documentation to be developed) TÜV SÜD Product Service GmbH Slide 30
31 Data security IT security requirements IEC : Health software (keyword SECURITY ) 1 Scope 1.1 Purpose This Part of applies to the SAFETY and SECURITY of HEALTH SOFTWARE PRODUCTS 4.1 General requirements and initial RISK ASSESSMENT 4.2 HEALTH SOFTWARE PRODUCT use requirements 4.5 System requirements 7.2 ACCOMPANYING DOCUMENTS 8.2 SOFTWARE MAINTENANCE 8.4 Post-market communication on the HEALTH SOFTWARE PRODUCT 8.5 Decommissioning and disposal of the HEALTH SOFTWARE PRODUCT TÜV SÜD Product Service GmbH Slide 31
32 Data security Fundamentals C-I-A: Confidentiality, Integrity, Availability of data D-R-R: Detection, Response, Recovery of IT security leaks Authentification, Authorization, Encryption TÜV SÜD Product Service GmbH Slide 32
33 Data security Security vs. Safety Safety Protecting an individual from the system Security Protecting the system from an individual Safety refers to the acceptable risk of a system Security refers to the protection of an object or data TÜV SÜD Product Service GmbH Slide 33
34 Data security Security vs. Safety Safety Based on static system assumptions regarding the environment Addresses random (hardware) and systematic failures (software & hardware) Failures are unintended Failure rates are available (e.g. experience based, MTTF, MFOT) Probabilities and resulting risks are quantifiable (Risk = Severity x Probability) Security Based on a dynamic system environment (a system seems secure today, but might be insecure by tomorrow) Attacks are intended Probabilities for attacks are not available and are difficult / impossible to calculate Threat probabilities and the resulting risks are not quantifiable, only qualifiable TÜV SÜD Product Service GmbH Slide 34
35 Contents Digital solutions as Medical Device Classification of software Relevant Standards Data security Preview software new MDR TÜV SÜD Product Service GmbH Slide 35
36 Preview software new MDR TÜV SÜD Product Service GmbH Slide 36
37 Preview software new MDR Article 2 Definitions For the purposes of this Regulation, the following definitions apply: (1) 'medical device' means any instrument, apparatus, appliance, software, implant, reagent, material or other article intended by the manufacturer to be used, alone or in combination, for human beings for one or more of the following specific medical purposes: diagnosis, prevention, monitoring, prediction, prognosis, treatment or alleviation of disease, diagnosis, monitoring, treatment, alleviation of, or compensation for, an injury or disability, investigation, replacement or modification of the anatomy or of a physiological or pathological process or state, providing information by means of in vitro examination of specimens derived from the human body, including organ, blood and tissue donations, and which does not achieve its principal intended action by pharmacological, immunological or metabolic means, in or on the human body, but which may be assisted in its function by such means. TÜV SÜD Product Service GmbH Slide 37
38 Preview software new MDR Article 2 Definitions For the purposes of this Regulation, the following definitions apply: (4) 'active device' means any device, the operation of which depends on a source of energy other than that generated by the human body for that purpose, or by gravity, and which acts by changing the density of or converting that energy. Devices intended to transmit energy, substances or other elements between an active device and the patient, without any significant change, shall not be deemed to be active devices. Software shall also be deemed to be an active device; TÜV SÜD Product Service GmbH Slide 38
39 Preview software new MDR ANNEX I GENERAL SAFETY AND PERFORMANCE REQUIREMENTS Chapter II Requirements regarding design and manufacture 14. Construction of devices and interaction with their environment Devices shall be designed and manufactured in such a way as to remove or reduce as far as possible:.. (d) the risks associated with the possible negative interaction between software and the IT environment within which it operates and interacts; TÜV SÜD Product Service GmbH Slide 39
40 Preview software new MDR ANNEX I GENERAL SAFETY AND PERFORMANCE REQUIREMENTS Chapter II Requirements regarding design and manufacture 17. Electronic programmable systems devices that incorporate electronic programmable systems and software that are devices in themselves Devices that incorporate electronic programmable systems, including software, or software that are devices in themselves, shall be designed to ensure repeatability, reliability and performance in line with their intended use. In the event of a single fault condition, appropriate means shall be adopted to eliminate or reduce as far as possible consequent risks or impairment of performance For devices that incorporate software or for software that are devices in themselves, the software shall be developed and manufactured in accordance with the state of the art taking into account the principles of development life cycle, risk management, including information security, verification and validation. TÜV SÜD Product Service GmbH Slide 40
41 Preview software new MDR ANNEX I GENERAL SAFETY AND PERFORMANCE REQUIREMENTS Chapter II Requirements regarding design and manufacture Software referred to in this Section that is intended to be used in combination with mobile computing platforms shall be designed and manufactured taking into account the specific features of the mobile platform (e.g. size and contrast ratio of the screen) and the external factors related to their use (varying environment as regards level of light or noise) Manufacturers shall set out minimum requirements concerning hardware, IT networks characteristics and IT security measures, including protection against unauthorised access, necessary to run the software as intended. TÜV SÜD Product Service GmbH Slide 41
42 Preview software new MDR ANNEX I GENERAL SAFETY AND PERFORMANCE REQUIREMENTS Chapter III Requirements regarding the information supplied with the device Information in the instructions for use The instructions for use shall contain all of the following particulars: (ab) for devices that incorporate electronic programmable systems, including software, or software that are devices in themselves, minimum requirements concerning hardware, IT networks characteristics and IT security measures, including protection against unauthorised access, necessary to run the software as intended. TÜV SÜD Product Service GmbH Slide 42
43 Preview software new MDR ANNEX VIII CLASSIFICATION RULES Chapter II Implementing rules 3.3. Software, which drives a device or influences the use of a device, shall fall within the same class as the device. If the software is independent of any other device, it shall be classified in its own right. TÜV SÜD Product Service GmbH Slide 43
44 Preview software new MDR 6. ACTIVE DEVICES 6.3. Rule 11 ANNEX VIII CLASSIFICATION RULES Chapter III Classification rules Software intended to provide information which is used to take decisions with diagnosis or therapeutic purposes is classified as class IIa, except if such decisions have an impact that may cause: death or an irreversible deterioration of a person's state of health, in which case it is in class III; or a serious deterioration of a person's state of health or a surgical intervention, in which case it is classified as class IIb. Software intended to monitor physiological processes is classified as class IIa, except if it is intended for monitoring of vital physiological parameters, where the nature of variations of those parameters is such that it could result in immediate danger to the patient, in which case it is classified as class IIb. All other software are classified as class I. TÜV SÜD Product Service GmbH Slide 44
Med-Info. Council Directive 93/42/EEC on medical devices. TÜV SÜD Product Service GmbH
Med-Info International expert information for the medical device industry Council Directive 93/42/E on medical devices Practice-oriented summary of the most important aspects and requirements contained
More informationMapping Your Success 2013 BSI Healthcare Roadshow: Mobile Health Software, Mobile Phones and Telemedicine Under the EU Approach
Mapping Your Success 2013 BSI Healthcare Roadshow: Mobile Health Software, Mobile Phones and Telemedicine Under the EU Approach Telemedicine & mhealth Definition of Telemedicine: Use of telecommunication
More informationMed-Info. Council Directive 93/42/EEC on Medical Devices. TÜV SÜD Product Service GmbH
Med-Info International expert information for the Medical Device industry Council Directive 93/42/E on Medical Devices Practice-oriented summary of the most important aspects and requirements contained
More informationMed-Info. Council Directive 93/42/EEC on medical devices. TÜV SÜD Product Service GmbH
Med-Info International expert information for the medical device industry Council Directive 93/42/E on medical devices Practice-oriented summary of the most important aspects and requirements contained
More information!"# $ # # $ $ % $ &% $ '"# $ ()&*&)+(( )+(( )
!"# # # % &% '"# ) !#, ' "# " "# -. / # 0 0 0 0 0 "0 "# " # 1 #! " " 0 0 0 0 0 0 2# 0 # # 3 ' 4 56 7-56 87 9# 5 6 7 6 & 0 " : 9 ; 4 " #! 0 - '% # % "# " "# " < 4 "! % " % 4 % % 9# 4 56 87 = 4 > 0 " %!#
More informationRequirements on clinical data in Europe
Requirements on clinical data in Europe Dr. Bassil Akra Director Global Clinical Affairs TÜV SÜD Product Service Current Medical Device Directives Applicable Directives Active Implantable Medical Devices
More informationMedical Device Usability
Medical Device Usability David Adams Global Head, Active Medical Devices Add logo on slide 4 here Topics What is usability? Why usability is so important The regulatory requirements EN 62366 Usability
More informationClassification and regulation of software
Classification and regulation of software Ciara Farrell, Arthur Cox 5 October 2017 Medtec Ireland 2017 2 Law cannot keep up! 3 Legal issues Regulation as medical devices Privacy and cybersecurity Licensing
More informationklinischen Datenanforderungen in Europa: Ist die Literaturroute noch möglich?
Regulatorische Änderungen bei den klinischen Datenanforderungen in Europa: Ist die Literaturroute noch möglich? Hamburg, 30.09.2015 Dr. Bassil Akra Director Clinical Centre of Excellence TÜV SÜD Product
More informationWEBINAR on the new Medical Device Regulation One-stop testing, inspection, certification and training solutions. TÜV SÜD Product Service
WEBINAR on the new Medical Device Regulation 2017-07-12 One-stop testing, inspection, certification and training solutions TÜV SÜD Product Service TÜV SÜD at a glance 150+ YEARS OF QUALITY, SAFETY & SUSTAINABILITY
More informationIVDR Breakout. Copyright 2017 BSI. All rights reserved.
IVDR Breakout 1 IVDR Classification and conformity assessment 2 Classification- IVDR 3 Classification of IVDs Re-classification of IVDs will mean 80-90 % will no longer be able to self certify conformity
More informationUDI in the MDR. Economic Operators The new regulations create Economic Operators who play a role in the UDI system.
UDI in the MDR The European Union intends to replace the existing directives related to medical device, Active Implantable Medical Devices, In Vitro Diagnostic Devices, and Medical Devices, with two regulations.
More informationLNE/G-MED North America, Inc
LNE/G-MED North America, Inc Medical Device Usability: Highlights of European Regulations and the Latest Standards Do not distribute or reproduce without permission 1 Sara Jafari, Ph.D., Medical Device
More informationSundhedsappsfra innovation til kommercialisering
Sundhedsappsfra innovation til kommercialisering App Certificering Brian Hedegaard, DELTA Apps Hot as ever 2014 ~ 97.000 2015 ~ 165.000! 50.000 2012 - ~ 40% medical device or likely to be! 82% downloaded
More informationPOSTMARKET MANAGEMENT OF CYBERSECURITY IN MEDICAL DEVICES FINAL GUIDANCE MARCH 29, TH ANNUAL MEDICAL DEVICE QUALITY CONGRESS
POSTMARKET MANAGEMENT OF CYBERSECURITY IN MEDICAL DEVICES FINAL GUIDANCE MARCH 29, 2017 14TH ANNUAL MEDICAL DEVICE QUALITY CONGRESS 1 Fact vs. Myth Let s Play: Fact vs. Myth The FDA is the federal entity
More informationHELP! IS MY M-HEALTH SOFTWARE SUDDENLY A MEDICAL DEVICE? A Challenge of convergence between ehealth, mhealth and Medical Devices
HELP! IS MY M-HEALTH SOFTWARE SUDDENLY A MEDICAL DEVICE? A Challenge of convergence between ehealth, mhealth and Medical Devices A short introduction Hansjörg Riedwyl, CEO Hansjoerg.riedwyl@iss-ag.ch ISS
More informationNational Accreditation Scheme
National Accreditation Scheme Rules of Procedure on the Preparation of Accreditation Audit Cycle NAR-25 Edition 3 Version 1 Approved by: Csaba Bodroghelyi Deputy Director General Responsible for preparation:
More informationNavigating Regulatory Issues for Medical Device Software
Navigating Regulatory Issues for Medical Device Software Michelle Jump, MS, MSRS, CHA Principal Regulatory Affairs Specialist Stryker Corporation IEEE Symposium on Software Reliability Engineering (Ottawa,
More informationNotified Body perspective: Overcoming common pitfalls observed in industry when following ISO 10993
Notified Body perspective: Overcoming common pitfalls observed in industry when following ISO 10993 Informa Life Sciences Conference Biocompatibility for Medical Devices Amsterdam, 28-29 November 2017
More informationConsideration of Cybersecurity vs Safety Risk Management
Consideration of Cybersecurity vs Safety Risk Management Weiping Zhong, Ph.D. Global Director of Risk Management/Medical Devices GE Healthcare DISCLAIMER: The views and opinions expressed in this presentation
More informationAcceptance Checklist for Special 510(k)
Acceptance Checklist for Special 510(k)s (should be completed within 15 days of DCC receipt) The following information is not intended to serve as a comprehensive review. 510(k) Number: Date Received by
More informationMEDICAL DEVICE CYBERSECURITY: FDA APPROACH
MEDICAL DEVICE CYBERSECURITY: FDA APPROACH CYBERMED SUMMIT JUNE 9TH, 2017 SUZANNE B. SCHWARTZ, MD, MBA ASSOCIATE DIRECTOR FOR SCIENCE & STRATEGIC PARTNERSHIPS CENTER FOR DEVICES AND RADIOLOGICAL HEALTH
More informationUDI Implementation Update. GS1 UK Healthcare Conference - 22 November 2017 John Wilkinson OBE Medicines and Healthcare Products Regulatory Agency
UDI Implementation Update GS1 UK Healthcare Conference - 22 November 2017 John Wilkinson OBE Medicines and Healthcare Products Regulatory Agency 2 Why new European medical device and IVD regulations? Old
More informationUnited4Health session Regulatory Framework Trends & Updates. Nicole Denjoy COCIR Secretary General Wed. 7 May 2014, Berlin (Germany)
United4Health session Regulatory Framework Trends & Updates Nicole Denjoy COCIR Secretary General Wed. 7 May 2014, Berlin (Germany) Outline 1. What is COCIR? 2. COCIR s vision on ehealth 3. Overview on
More informationUDI in Europe. Mr. Salvatore Scalzo, Policy and Legal Officer, Medical Devices, DG GROW, European Commission. 19 October 2017
UDI in Europe Mr. Salvatore Scalzo, Policy and Legal Officer, Medical Devices, DG GROW, European Commission 19 October 2017 The new EU Medical Device Regulations: Introduction to the future EU UDI System
More informationDeriving safety requirements according to ISO for complex systems: How to avoid getting lost?
Deriving safety requirements according to ISO 26262 for complex systems: How to avoid getting lost? Thomas Frese, Ford-Werke GmbH, Köln; Denis Hatebur, ITESYS GmbH, Dortmund; Hans-Jörg Aryus, SystemA GmbH,
More informationMed-Info. Malaysia Medical Device Regulations. TÜV SÜD Product Service GmbH. International expert information for the medical device industry
Med-Info International expert information for the medical device industry Malaysia Medical Device Regulations Passed in 2012, the Medical Device Act (Act 737) and the Medical Device Authority Act 2012
More informationFunctional Safety and Safety Standards: Challenges and Comparison of Solutions AA309
June 25th, 2007 Functional Safety and Safety Standards: Challenges and Comparison of Solutions AA309 Christopher Temple Automotive Systems Technology Manager Overview Functional Safety Basics Functional
More informationSecurity and Privacy-Aware Cyber-Physical Systems: Legal Considerations. Christopher S. Yoo University of Pennsylvania July 12, 2018
Security and Privacy-Aware Cyber-Physical Systems: Legal Considerations Christopher S. Yoo University of Pennsylvania July 12, 2018 Overview of Research Tort and products liability for CPS Privacy and
More informationTool Qualification Plan for Testwell CTC++
Tool Qualification Plan for Testwell CTC++ Version: 0.8 Date: 2014-11-17 Status: Author: File: Size: Generic / Adapted / Presented / Generated / Reviewed / Final Dr. Martin Wildmoser, Dr. Oscar Slotosch
More informationehealth Spare Parts as a Service: Modular ehealth Solutions and Medical Device Reform
brill.com/ejhl ehealth Spare Parts as a Service: Modular ehealth Solutions and Medical Device Reform Nadezhda Purtova Assistant professor, Tilburg Institute for Law, Technology, and Society (TILT), Tilburg
More informationCyber Risk and Networked Medical Devices
Cyber Risk and Networked Medical Devices Hot Topics Deloitte & Touche LLP February 2016 Copyright Scottsdale Institute 2016. All Rights Reserved. No part of this document may be reproduced or shared with
More informationInhalt. Description of Certification Procedure ISO 22000, HACCP and DIN 15593
Inhalt 1. CERTIFICATION PROCEDURE... 2 1.1 Audit Preparation... 2 1.2 Audit Stage 1... 2 1.3 Audit Stage 2 Certification Audit... 3 1.4. Issue of Certificate... 3 2. SURVEILLANCE AUDIT... 3 3. RECERTIFICATION
More informationFunctional Safety Processes and SIL Requirements
Functional Safety Processes and SIL Requirements Jordi Campos Tüv Süd Process Safety Business Manager Jordi.campos@tuev-sued.es 15-07-14 Terminology Safety Instrumented Systems (SIS) Safety Integrity Level
More informationReport. Certificate Z
Report to the Certificate Z10 14 06 78930 002 Software tool for safety-related development TESSY Manufacturer Razorcat Development GmbH Witzlebenplatz 4 D-14057 Berlin Report no. RB 84018 C Revision: 1.3,
More informationGUIDE 63. Guide to the development and inclusion of safety aspects in International Standards for medical devices
GUIDE 63 Guide to the development and inclusion of safety aspects in International Standards for medical devices Second edition 2012 ISO/IEC 2012 ISO/IEC GUIDE 63:2012(E) This is a preview - click here
More informationApril 28, Division of Dockets Management (HFA-305) Food and Drug Administration 5630 Fishers Lane, Room 1061 Rockville, MD 20852
701 Pennsylvania Avenue, NW Suite 800 Washington, D.C. 20004 2654 Tel: 202 783 8700 Fax: 202 783 8750 www.advamed.org Division of Dockets Management (HFA-305) Food and Drug Administration 5630 Fishers
More informationSecurity analysis and assessment of threats in European signalling systems?
Security analysis and assessment of threats in European signalling systems? New Challenges in Railway Operations Dr. Thomas Störtkuhl, Dr. Kai Wollenweber TÜV SÜD Rail Copenhagen, 20 November 2014 Slide
More informationAssessment of Safety Functions of Lignite Mining Equipment according to the requirements of Functional Safety.
Assessment of Safety Functions of Lignite Mining Equipment according to the requirements of Functional Safety. Implementation of the Machinery Directive based on proven-in-use, company standards and regulations.
More informationFDA CDRH perspective on new technologies in inhaler products
2017 IPAC RS/ISAM Joint Workshop New Frontiers in Inhalation Technology FDA CDRH perspective on new technologies in inhaler products Linda Ricci Associate Director ODE DH Office of Device Evaluation Center
More information_isms_27001_fnd_en_sample_set01_v2, Group A
1) What is correct with respect to the PDCA cycle? a) PDCA describes the characteristics of information to be maintained in the context of information security. (0%) b) The structure of the ISO/IEC 27001
More informationMedical Device Cybersecurity: FDA Perspective
Medical Device Cybersecurity: FDA Perspective Suzanne B. Schwartz MD, MBA Associate Director for Science and Strategic Partnerships Office of the Center Director (OCD) Center for Devices and Radiological
More informationISO TC46/SC11 Archives/records management
ISO TC46/SC11 Archives/records management GUIDANCE FOR IMPLEMENTING DOCUMENTED INFORMATION CLAUSE USING PROCESSES AND CONTROLS OF ISO 30301:2011 Management system for records EXPLANATORY PAPER NOVEMBER
More informationUDI. Unique Device Identification. 9. Augsburger Forum für Medizinprodukterecht 12. September 2013, Augsburg. Copyright Fresenius Kabi AG 1
UDI Unique Device Identification 9. Augsburger Forum für Medizinprodukterecht 12. September 2013, Augsburg Copyright Fresenius Kabi AG 1 UDI Agenda GHTF/IMDRF Framework EU Activities FDA Activities Implications
More informationThe Human Touch: Develop a Patient-Centric Injection Device
The Human Touch: Develop a Patient-Centric Injection Device Molly Story, PhD 27 September 2017 Photo credits: Why should we care about being patient-centric? The FDA tells us: Our drugs must be safe and
More informationInformation technology Security techniques Information security controls for the energy utility industry
INTERNATIONAL STANDARD ISO/IEC 27019 First edition 2017-10 Information technology Security techniques Information security controls for the energy utility industry Technologies de l'information Techniques
More informationIn-Vitro Diagnostic Directive (IVDD) and IVDD Technical File Preparation Workshop. 3-4 July 2014 TÜV SÜD
In-Vitro Diagnostic Directive (IVDD) and IVDD Technical File Preparation Workshop 3-4 July 2014 TÜV SÜD Introduction The In-Vitro Diagnostic Directive (IVDD) 98/79/EC applies to all In-Vitro Diagnostic
More informationCritical Systems. Objectives. Topics covered. Critical Systems. System dependability. Importance of dependability
Objectives Critical Systems To explain what is meant by a critical system where system failure can have severe human or economic consequence. To explain four dimensions of dependability - availability,
More informationBelow we ve highlighted several of the key points from the final guidance document.
On September 6, 2017, the Food and Drug Administration (FDA or the Agency) released its final guidance document, Design Considerations and Pre-Market Submission Recommendations for Interoperable Medical
More informationEU GDPR & ISO Integrated Documentation Toolkit https://advisera.com/eugdpracademy/eu-gdpr-iso integrated-documentation-toolkit
EU GDPR & https://advisera.com/eugdpracademy/eu-gdpr-iso-27001-integrated-documentation-toolkit Note: The documentation should preferably be implemented in the order in which it is listed here. The order
More informationThis document is a preview generated by EVS
INTERNATIONAL STANDARD ISO 17090-1 Second edition 2013-05-01 Health informatics Public key infrastructure Part 1: Overview of digital certificate services Informatique de santé Infrastructure de clé publique
More informationReport. Certificate M6A SIMATIC S7 Distributed Safety
Report to the Certificate M6A 17 05 67803 014 Safety-Related Programmable Systems SIMATIC S7 Distributed Safety Manufacturer: Siemens AG DF FA AS Gleiwitzer Str. 555 D-90475 Nürnberg Revision 3.1 dated
More informationApplying Human Factors to Medical Device Design
Applying Human Factors to Medical Device Design Standards and Guidelines MEDEC 2016 Tim Reeves, PhD CHFP About Tim Reeves Founder and Managing Director of Human Factors MD Inc. Ten- person human factors
More informationFDA & Medical Device Cybersecurity
FDA & Medical Device Cybersecurity Closing Keynote, February 19, 2017 Suzanne B. Schwartz, M.D., MBA Associate Director for Science & Strategic Partnerships Center for Devices and Radiological Health US
More informationMedical Devices and Cyber Issues JANUARY 23, American Hospital Association and BDO USA, LLP. All rights reserved.
Medical Devices and Cyber Issues JANUARY 23, 2018 AHA and Cybersecurity Policy Approaches Role of the FDA FDA Guidance and Roles Pre-market Post-market Assistance during attack Recent AHA Recommendations
More informationI. The Medical Technology Industry s Cybersecurity Efforts and Requirements
701 Pennsylvania Avenue, NW Suite 800 Washington, D.C. 20004 2654 Tel: 202 783 8700 Fax: 202 783 8750 www.advamed.org June 12, 2018 U.S. House of Representatives Committee on Energy and Commerce 2125 Rayburn
More informationhttp://www.sis.se http://www.sis.se http://www.sis.se http://www.sis.se http://www.sis.se Provläsningsexemplar / Preview SVENSK STANDARD SS-ISO/IEC 14598-1 Fastställd 2003-01-31 Utgåva 1 Information technology
More informationMobile Health Apps: A Primer
Mobile Health Apps: A Primer René Quashie Senior Counsel Epstein Becker Green July 2014 2014 Epstein Becker & Green, P.C. All Rights Reserved. ebglaw.com 1 Agenda 1. mhealth Publishers 2. Status of the
More informationISO INTERNATIONAL STANDARD
INTERNATIONAL STANDARD ISO 15223-2 First edition 2010-01-15 Medical devices Symbols to be used with medical device labels, labelling, and information to be supplied Part 2: Symbol development, selection
More informationSeminar om de nye regler for certificering
Seminar om de nye regler for certificering Certificeringer af sundheds-apps Susie Wagner Bondorf Partner og med-stifter Background ehealth Action Plan 2012-2020 üa Green Paper on mobile health (mhealth)
More information2018. All rights reserved.
DOCUMENT: Future AAMI/IEC 62366-1:2015/Amendment 1, Medical devices Application of usability Engineering to medical devices Amendment 1 Public Review Draft Designation: AAMI/CDV-2 62366-1:2015/DAmd 1 AAMI
More informationISO INTERNATIONAL STANDARD. Safety of machinery Safety-related parts of control systems Part 1: General principles for design
INTERNATIONAL STANDARD ISO 13849-1 Second edition 2006-11-01 Safety of machinery Safety-related parts of control systems Part 1: General principles for design Sécurité des machines Parties des systèmes
More informationConnected Medical Devices
Connected Medical Devices How to Reduce Risks Inherent in an Internet of Things that Can Help or Harm Laura Clark Fey, Esq., Principal, Fey LLC Agenda Overview of the Internet of Things for Healthcare
More informationSecrets of successful medical device connectivity. Agenda 4/5/17. * The secrets:
Secrets of successful medical device connectivity Bill Saltzstein Code Playbook Vancouver 2017 Agenda * The secrets: * All medical devices shall be connected * You shall understand the requirements requirements
More informationHow the European Commission is supporting innovation in mobile health technologies Nordic Mobile Healthcare Technology Congress 2015
How the European Commission is supporting innovation in mobile health technologies Nordic Mobile Healthcare Technology Congress 2015 Claudia Prettner, Unit for Health and Well-Being, DG CONNECT Table of
More informationTesting and Certification Procedure
A PM 101E April 2011 Guideline for the Testing and Certification Procedure of the VDE Testing and Certification Institute (VDE Institute) (For information purpose only. In any case the German version shall
More informationData Backup and Contingency Planning Procedure
HIPAA Security Procedure HIPAA made Easy Data Backup and Contingency Planning Procedure Please fill in date implemented and updates for your facility: Goal: This document will serve as our back-up storage
More informationMASP Chapter on Safety and Security
MASP Chapter on Safety and Security Daniel Watzenig Graz, Austria https://artemis.eu MASP Chapter on Safety & Security Daniel Watzenig daniel.watzenig@v2c2.at Francois Tuot francois.tuot@gemalto.com Antonio
More informationGuide to the implementation and auditing of ISMS controls based on ISO/IEC 27001
Guide to the implementation and auditing of ISMS controls based on ISO/IEC 27001 Information Security Management Systems Guidance series The Information Security Management Systems (ISMS) series of books
More informationECG100S. General Information. Product Code
General Information Product Name General Name Product Code 80508096 Manufacturer Device Description Intended Use Cardioline Spa Registered Office and Factory: Via Linz, 19-20-21 Zona Ind. Spini di Gardolo
More informationPTSPAS Product Assessment HAPAS Equivalent in accordance with MCHW SHW Volume 1 Clause and
1. Policy It is the policy of Pavement Testing Services Ltd (hereafter PTS) to operate its certification/ assessment services in a non-discriminatory manner. PTS shall not use procedures / processes to
More informationILNAS/PSCQ/Pr004 Qualification of technical assessors
Version 1.1 21.6.2016 Page 1 of 6 ILNAS/PSCQ/Pr004 Qualification of technical assessors Modifications: review of the document 1, avenue du Swing L-4367 Belvaux Tél.: (+352) 247 743-53 Fax: (+352) 247 943-50
More informationReport of the Working Group on mhealth Assessment Guidelines February 2016 March 2017
Report of the Working Group on mhealth Assessment Guidelines February 2016 March 2017 1 1 INTRODUCTION 3 2 SUMMARY OF THE PROCESS 3 2.1 WORKING GROUP ACTIVITIES 3 2.2 STAKEHOLDER CONSULTATIONS 5 3 STAKEHOLDERS'
More informationFinal Document. Points to Consider in the use of the IMDRF Table of Content for Medical Device Submissions pre-rps
Final Document Title: Points to Consider in the use of the IMDRF Table of Content for Medical Device Submissions pre-rps Authoring Group: IMDRF RPS ToC Working Group Date 30 June 2014 Jeffrey Shuren, IMDRF
More informationController CMXH. Description STO. Safe Torque Off (STO) [ ]
Controller CMXH Description STO Safe Torque Off (STO) 8062612 1603 [8062614] CMXH Translation of the original instructions CMXH-STO-EN Identification of hazards and instructions on how to prevent them:
More informationHIPAA FOR BROKERS. revised 10/17
HIPAA FOR BROKERS revised 10/17 COURSE PURPOSE The purpose of this information is to help ensure that all Optima Health Brokers are prepared to protect the privacy and security of our members health information.
More informationSAMPLE POLICY. Current State Assessment Criteria. 1. That EPHI that is transmitted electronically is not vulnerable to interception; and
Documentation of HIPAA Security Implementation Standards The HIPAA Privacy regulations required the adoption of formal policies and procedures. For the HIPAA Security Standards, the documentation is even
More informationInstalling and Configuring Rialto Analytic Appliances
Installing and Configuring Rialto Analytic Appliances Important Safety Information This manual provides installation and operation information and precautions for the use of this camera. Incorrect installation
More informationFINAL Design Control Inspectional Strategy Revised February, 1998 All Previous Editions Are Obsolete Effective through May 31, 1998
FINAL Design Control Inspectional Strategy Revised February, 1998 All Previous Editions Are Obsolete Effective through May 31, 1998 Instructions: 1. This is intended to be an information gathering document.
More informationGuidance for the format and content of the final study report of non-interventional post-authorisation safety studies
23 January 2013 EMA/48663/2013 Patient Health Protection Guidance for the format and content of the final study report of non-interventional post-authorisation safety studies Introduction From 10 January
More informationCOMPUTAMATRIX LIMITED T/A MATRICA Data Protection Policy September Table of Contents. 1. Scope, Purpose and Application to Employees 2
COMPUTAMATRIX LIMITED T/A MATRICA Data Protection Policy September 2018 Table of Contents 1. Scope, Purpose and Application to Employees 2 2. Reference Documents 2 3. Definitions 3 4. Data Protection Principles
More informationKvaser Leaf Light v2 User s Guide
Kvaser Leaf Light v2 User s Guide Copyright 2011-2014 Kvaser AB, Mölndal, Sweden http://www.kvaser.com Printed Thursday 20 th March, 2014 We believe that the information contained herein was accurate in
More informationVR 71. Installation instructions. Installation instructions. For the competent person GB, IE. Publisher/manufacturer Vaillant GmbH
Installation instructions For the competent person Installation instructions VR 71 GB, IE Publisher/manufacturer Vaillant GmbH Berghauser Str. 40 D-42859 Remscheid Telefon 021 91 18 0 Telefax 021 91 18
More informationReport. Certificate M6A SIMATIC Safety System
Report to the Certificate M6A 067803 0019 Safety-Related Programmable Systems SIMATIC Safety System Manufacturer: Siemens AG Gleiwitzer Str. 555 D-90475 Nürnberg Revision 2.1 dated 2018-09-25 Testing Body:
More informationRELATIONSHIP BETWEEN THE ISO SERIES OF STANDARDS AND OTHER PRODUCTS OF ISO/TC 46/SC 11: 1. Records processes and controls 2012
RELATIONSHIP BETWEEN THE ISO 30300 SERIES OF STANDARDS AND OTHER PRODUCTS OF ISO/TC 46/SC 11: Records processes and controls White paper written by ISO TC46/SC11- Archives/records management Date: March
More informationReport. Certificate Z Rev. 00. SIMATIC Safety System
Report to the Certificate Z10 067803 0020 Rev. 00 Safety-Related Programmable System SIMATIC Safety System Manufacturer: Siemens AG Gleiwitzer Str. 555 D-90475 Nürnberg Revision 1.1 dated 2019-02-07 Testing
More informationAcceptance Checklist for Abbreviated 510(k)s
Acceptance Checklist for Abbreviated 510(k)s (should be completed within 15 days of DCC receipt) The following information is not intended to serve as a comprehensive review. 510(k) Number: Date Received
More informationCopyright 2018 by Boston Scientific, Inc.. Permission granted to INCOSE to publish and use. #hwgsec
Balancing Safety, Security and Usability in the Design of Secure Medical Devices Ken Hoyme Director, Product Security Boston Scientific Ken.hoyme@bsci.com Copyright 2018 by Boston Scientific, Inc.. Permission
More informationKvaser Mini PCI Express User s Guide
Kvaser Mini PCI Express User s Guide Copyright 2013-2015 Kvaser AB, Mölndal, Sweden http://www.kvaser.com Printed Monday 21 st September, 2015 We believe that the information contained herein was accurate
More informationIBM Rational Rhapsody
IBM Rational Rhapsody IBM Rational Rhapsody TestConductor Add On Qualification Kit for DO-178B/C Overview Version 1.9 License Agreement No part of this publication may be reproduced, transmitted, stored
More informationNEW DATA REGULATIONS: IS YOUR BUSINESS COMPLIANT?
NEW DATA REGULATIONS: IS YOUR BUSINESS COMPLIANT? What the new data regulations mean for your business, and how Brennan IT and Microsoft 365 can help. THE REGULATIONS: WHAT YOU NEED TO KNOW Australia:
More informationSecurity Audit What Why
What A systematic, measurable technical assessment of how the organization's security policy is employed at a specific site Physical configuration, environment, software, information handling processes,
More informationClinical Engineering, ehealth, and ICT Global Overview A242-1
Clinical Engineering, ehealth, and ICT Global Overview A242-1 Elliot B. Sloane, PhD, CCE - Elected Fellow of ACCE, AIMBE, and HIMSS President and Founder Center for Healthcare Information Research and
More informationSoftware engineering Product quality Part 1: Quality model
SVENSK STANDARD SS-ISO/IEC 9126-1 Fastställd 2003-01-31 Utgåva 1 Software engineering Product Part 1: Quality model ICS 35.080.00 Språk: engelska Publicerad: mars 2003 Copyright SIS. Reproduction in any
More informationFunctional. Safety and. Cyber Security. Pete Brown Safety & Security Officer PI-UK
Functional Safety and Cyber Security Pete Brown Safety & Security Officer PI-UK Setting the Scene 2 Functional Safety requires Security Consider just Cyber Security for FS Therefore Industrial Control
More information1. STRATEGIC PLANNING
RAC (EU) EXAMINATION SUBJECTS & FORMAT The European RAC Examination is a knowledge-based examination addressing European Union laws, regulations, policies and guidelines affecting medical RAC devices,
More informationApril 21, Division of Dockets Management (HFA-305) Food and Drug Administration 5630 Fishers Lane, Room 1061 Rockville, MD 20852
701 Pennsylvania Avenue, NW Suite 800 Washington, D.C. 20004 2654 Tel: 202 783 8700 Fax: 202 783 8750 Division of Dockets Management (HFA-305) Food and Drug Administration 5630 Fishers Lane, Room 1061
More informationE-santé mentale: définitions, enjeux, expériences Paris, 13 Juin 2017
E-santé mentale: définitions, enjeux, expériences Paris, 13 Juin 2017 Questions éthiques en e-santé mentale Kyriaki G. Giota, Chercheuse en psychologie Université de Thessaly, Grèce Dr. Kyriaki Giota,
More informationThe upcoming EU MDR. UDI requirements. Gert Bos. Executive director & Partner. ..the practical approach
The upcoming EU MDR UDI requirements Gert Bos Executive director & Partner A global leading medical device consultancy group Europe - Amsterdam (HQ) USA - Boston - San Francisco China Nanjing Copyright
More information