M
MIREGMGR
Note that this thread is focused on ISO 14971 as applied in an ISO 13485 context. There may be some differences in how it applies in a US FDA context.
US FDA "sort of" uses ISO 14971...they recognize it as a consensus standard, it's the only directly-risk-management-focused standard they recognize, and they say in guidances that they expect risk analyses and/or a risk-based approach.
However, my experience-based understanding is that FDA often does not follow the approach to risk management explained earlier in this thread in regard to certain aspects of contract manufacturing, specifically those involving validated processes including but not limited to sterilization, and contract manufacturing of certain device types where the product is critical to life and/or the contract manufacturer is regarded by FDA as having either special expertise or substantially greater knowledge than the responsible manufacturer.
In such circumstances, FDA may regard the contract manufacturer as co-responsible for the product or process. There have been multiple instances of this approach revealed in Warning Letters over the past several years.
For a contract manufacturer that may be subject to such an FDA interpretation, in my view the prudent managerial approach is to conduct and document a risk analysis covering the full scope of your activity and your knowledge of how that activity may affect users and patients. My view would be that if you don't know enough about the product's use to properly do such an analysis, you might want to learn more about the product use-risks before proceeding.
It's also noteworthy that, at least in my experience, US FDA ignores the risk-to-environment aspects of ISO 14971 except in regard to environmental hazards that themselves present an acute hazard to users and/or patients.
US FDA "sort of" uses ISO 14971...they recognize it as a consensus standard, it's the only directly-risk-management-focused standard they recognize, and they say in guidances that they expect risk analyses and/or a risk-based approach.
However, my experience-based understanding is that FDA often does not follow the approach to risk management explained earlier in this thread in regard to certain aspects of contract manufacturing, specifically those involving validated processes including but not limited to sterilization, and contract manufacturing of certain device types where the product is critical to life and/or the contract manufacturer is regarded by FDA as having either special expertise or substantially greater knowledge than the responsible manufacturer.
In such circumstances, FDA may regard the contract manufacturer as co-responsible for the product or process. There have been multiple instances of this approach revealed in Warning Letters over the past several years.
For a contract manufacturer that may be subject to such an FDA interpretation, in my view the prudent managerial approach is to conduct and document a risk analysis covering the full scope of your activity and your knowledge of how that activity may affect users and patients. My view would be that if you don't know enough about the product's use to properly do such an analysis, you might want to learn more about the product use-risks before proceeding.
It's also noteworthy that, at least in my experience, US FDA ignores the risk-to-environment aspects of ISO 14971 except in regard to environmental hazards that themselves present an acute hazard to users and/or patients.
Last edited by a moderator: