govern these products. In the US, the FDA regulates medical devices under the Federal Food, Drug, and Cosmetic Act. In the EU, the Medical Device Regulation (MDR) and In Vitro Diagnostic Regulation (IVDR) apply. The UK has its own regulations post-Brexit, which align closely with EU standards.

Objectives: Familiarize yourself with the relevant regulations and guidelines that apply to your product. This includes understanding the definitions of SaMD and the classification of your product based on risk.

Documentation: Create a regulatory requirements matrix that outlines applicable regulations, guidance documents, and standards such as ISO 13485 and IEC 62304.

Roles: Quality managers and regulatory affairs professionals should collaborate to ensure comprehensive understanding and documentation of regulatory requirements.

Inspection Expectations: Inspectors will expect a clear understanding of the regulatory landscape and how your QMS aligns with these requirements. Be prepared to demonstrate your knowledge during inspections.

Step 2: Establishing a Quality Policy

A quality policy is a formal statement from management that outlines the organization’s commitment to quality. It serves as a foundation for the QMS and guides all quality-related activities.

Objectives: Define the organization’s quality objectives and commitment to regulatory compliance, customer satisfaction, and continuous improvement.

Documentation: Draft a quality policy document that is communicated to all employees. This document should be reviewed regularly and updated as necessary.

Roles: Senior management should take the lead in developing the quality policy, while quality managers are responsible for its implementation and communication.

Inspection Expectations: Inspectors will review the quality policy to ensure it aligns with regulatory requirements and is effectively communicated throughout the organization.

Step 3: Defining Organizational Structure and Responsibilities

Clearly defining the organizational structure and responsibilities is crucial for an effective QMS. This includes identifying key roles and their responsibilities in maintaining compliance and quality.

Objectives: Establish a clear organizational structure that supports quality management and compliance efforts.

Documentation: Create an organizational chart and a roles and responsibilities matrix that outlines the duties of each team member involved in the QMS.

Roles: Quality managers, project managers, and department heads should collaborate to define roles and responsibilities.

Inspection Expectations: Inspectors will look for evidence of defined roles and responsibilities, ensuring that all employees understand their contributions to the QMS.

Step 4: Risk Management in QMS

Risk management is a critical component of a QMS, particularly for SaMD and AI products, where the potential for software failure can have significant implications for patient safety.

Objectives: Identify, assess, and mitigate risks associated with your product throughout its lifecycle.

Documentation: Develop a risk management plan in accordance with ISO 14971, which outlines the processes for risk assessment, risk control, and post-market surveillance.

Roles: Quality managers and product development teams should work together to implement risk management processes effectively.

Inspection Expectations: Inspectors will review your risk management documentation to ensure compliance with ISO 14971 and assess how risks are managed throughout the product lifecycle.

Step 5: Document Control and Record Keeping

Effective document control and record-keeping practices are essential for maintaining compliance and ensuring that all quality-related documents are current and accessible.

Objectives: Establish a system for managing documents and records to ensure accuracy, accessibility, and compliance with regulatory requirements.

Documentation: Create a document control procedure that outlines the processes for document creation, review, approval, distribution, and archiving.

Roles: Quality managers are typically responsible for overseeing document control, while all employees must adhere to the established procedures.

Inspection Expectations: Inspectors will evaluate your document control system to ensure that all documents are properly managed and that records are maintained in accordance with regulatory requirements.

Step 6: Training and Competence

Training and competence are vital for ensuring that employees understand their roles in the QMS and are equipped to perform their tasks effectively.

Objectives: Ensure that all employees receive appropriate training related to their roles and the QMS.

Documentation: Develop a training program that includes training needs assessments, training materials, and records of training completion.

Roles: Quality managers should coordinate training efforts, while department heads are responsible for identifying training needs within their teams.

Inspection Expectations: Inspectors will review training records to verify that employees have received the necessary training and that the training program is effective.

Step 7: Internal Audits

Internal audits are a critical component of a QMS, providing an opportunity to assess compliance and identify areas for improvement.

Objectives: Conduct regular internal audits to evaluate the effectiveness of the QMS and ensure compliance with regulatory requirements.

Documentation: Develop an internal audit procedure that outlines the audit process, including planning, conducting audits, reporting findings, and follow-up actions.

Roles: Quality managers typically lead internal audits, while employees from various departments may participate as auditors or auditees.

Inspection Expectations: Inspectors will review internal audit reports and follow-up actions to assess the effectiveness of the QMS and the organization’s commitment to continuous improvement.

Step 8: Management Review

Management reviews are essential for evaluating the performance of the QMS and ensuring that it remains effective and aligned with organizational goals.

Objectives: Conduct regular management reviews to assess the QMS’s performance and identify opportunities for improvement.

Documentation: Create a management review procedure that outlines the process for conducting reviews, including inputs, outputs, and follow-up actions.

Roles: Senior management should lead management reviews, with input from quality managers and other key stakeholders.

Inspection Expectations: Inspectors will evaluate management review records to ensure that reviews are conducted regularly and that actions are taken to address identified issues.

Step 9: Continuous Improvement

Continuous improvement is a fundamental principle of quality management and is essential for maintaining compliance and enhancing product quality.

Objectives: Foster a culture of continuous improvement within the organization to enhance the effectiveness of the QMS.

Documentation: Develop a continuous improvement plan that outlines processes for identifying improvement opportunities, implementing changes, and measuring effectiveness.

Roles: All employees should be encouraged to participate in continuous improvement efforts, with quality managers facilitating initiatives and tracking progress.

Inspection Expectations: Inspectors will look for evidence of continuous improvement efforts and the organization’s commitment to enhancing product quality and compliance.

Conclusion

Establishing an inspection-ready QMS for SaMD, digital health, and AI-driven products requires a comprehensive understanding of regulatory requirements and a commitment to quality management principles. By following the steps outlined in this article, quality managers, regulatory affairs professionals, and compliance teams can develop a robust QMS that meets the expectations of the US FDA, EMA, and ISO standards. Continuous improvement and adherence to regulatory frameworks will not only ensure compliance but also enhance the quality and safety of medical products.