Standards, Guidance & Notices
Showing 41–50 of 128
EU
MDCG
MDCG
MDCG 2024-5
Guidance on the Investigator’s Brochure content Appendix A of the MDCG 2024-5
MDCG 2024-5 — Guidance on the Investigator’s Brochure content Appendix A of the MDCG 2024-5 — (April2024 April2024)
Published: 2024-04-01
EU
MDCG
MDCG
MDCG 2024-4
Safety reporting in performance studies of in vitro diagnostic medical devices under Regulation (EU) 2017/746 Appendix – Performance Study Summary Safety Reporting Form
MDCG 2024-4 — Safety reporting in performance studies of in vitro diagnostic medical devices under Regulation (EU) 2017/746 Appendix – Performance Study Summary Safety Reporting Form — (April 2024)
Published: 2024-04-01
MHLW
Notice
Notice
MHLW-PFSB-MDED-0328-No.1
Guidance on Vulnerability Management to Ensure Cybersecurity of Medical Devices
Notice on post-market vulnerability management framework. Requires manufacturers/distributors to integrate vulnerability monitoring, evaluation, response, and disclosure processes (including SBOM utilization) into quality management systems. Mandates establishment of PSIRT structure, clear vulnerability notification policies to customers, and practical end-of-life support management procedures.
Published: 2024-03-28
EU
MDCG
MDCG
MDCG 2024-3
Guidance on content of the Clinical Investigation Plan for clinical investigations of medical devices
This MDCG guidance provides detailed recommendations on the content of the Clinical Investigation Plan (CIP) for medical device clinical investigations conducted under EU MDR (Regulation 2017/745). The document aligns with MDR Articles 62-80 and Annex XV requirements, and complements ISO 14155:2020 (Clinical investigation of medical devices - Good clinical practice). It provides an official template for the clinical investigation synopsis, facilitating review by competent authorities and notified bodies, and reducing the risk of queries during the conformity assessment procedure. Sponsors conducting clinical investigations in the EU should reference this guidance alongside the technical documentation, particularly the clinical evaluation, to ensure compliance with MDR pre-market clinical evidence requirements.
Published: 2024-03-12
CEN/
CENELEC
CENELEC
EN ISO 10993-18:2020/A1:2023
EN ISO 10993-18:2020/A1:2023 Biological evaluation of medical devices – Part 18: Chemical characterization of medical device materials within a risk management process
This harmonized standard under EU MDR (2017/745) specifies requirements for the biological safety evaluation of medical devices by implementing chemical characterization of materials within a risk management process. The document establishes methods for analyzing and evaluating material-derived substances to ensure safety during device development phases. Manufacturers should conduct systematic chemical characterization of device materials and extract substances according to defined analytical and assessment methodologies. The standard applies to all medical devices regardless of their intended use or risk class, serving as a foundational requirement for biocompatibility evaluation. This amendment was published in the EU Official Journal via Decision 2024/815.
Published: 2024-03-06
NIST
CSWP
CSWP
CSWP 29
The NIST Cybersecurity Framework (CSF) 2.0
The NIST Cybersecurity Framework (CSF) 2.0 provides guidance to industry, government agencies, and other organizations to manage cybersecurity risks. It offers a taxonomy of high-level cybersecurity outcomes that can be used by any organization — regardless of its size, sector, or maturity — to better understand, assess, prioritize, and communicate its cybersecurity efforts. The CSF does not prescribe how outcomes should be achieved. Rather, it links to online resources that provide additional guidance on practices and controls that could be used to achieve those outcomes. This document describes CSF 2.0, its components, and some of the many ways that it can be used.
Published: 2024-02-26
FDA
CDRH
CDRH
21 CFR Part 820
Quality Management System Regulation (QMSR) — 21 CFR Part 820
The FDA's Quality Management System Regulation establishes comprehensive good manufacturing practice (CGMP) requirements for medical device manufacturing. Through the final rule effective February 2, 2026, the QMSR incorporates by reference ISO 13485:2016, aligning FDA requirements with international quality management standards. The regulation covers design and development controls (equivalent to 21 CFR 820.30), manufacturing operations, documentation, and management oversight across the entire device lifecycle. Key requirements include design input and output specifications, design review and verification, design validation, design transfer, and identification and implementation of design changes. The QMSR serves as a foundational regulatory framework for simultaneous FDA and Japanese approval pathways, establishing baseline quality system compliance expectations for manufacturers seeking marketing authorization in multiple regions. Compliance with these requirements demonstrates commitment to systematic quality assurance throughout device development and commercialization.
Published: 2024-02-02
MHLW
Notice
Notice
Admin-Notice-2024-01-31
Q&A on Cybersecurity of Medical Devices (2024 Version)
Expanded Q&A set on application and conformance assessment of Essential Principles Article 12(3). Provides guidance on system architecture diagram formats, post-transition application handling, third-party testing utilization, SBOM documentation scope, and legacy product compliance strategies based on practical implementation experience.
Published: 2024-01-31
JFMDA
Notice
Notice
jaame_20240129_サイバーSecurityNotice英訳
English Translation of Cybersecurity and Usability Regulatory Notice
JAAME Legal Affairs Committee Regulatory Affairs Subcommittee notification regarding cybersecurity and usability requirements for medical devices, issued January 29, 2024, providing guidance on applicable standards and compliance procedures.
Published: 2024-01-29
MHLW
Notice
Notice
MHLW-PSEHB-PSD-0115-No.2
Fundamental Approach to Adverse Event Reporting Related to Medical Device Cybersecurity
Notice clarifying handling of cybersecurity events in adverse event/serious adverse event reporting systems. Addresses reporting applicability for patient harm from cyber attacks or vulnerability exploitation, decision-making flowcharts, and manufacturer response procedures. Serves as foundational regulatory documentation for post-market cybersecurity management.
Published: 2024-01-15