ISO 13485:2016 states the following:
8.5.1 General
The organization shall identify and implement any changes necessary to ensure and maintain the
continued suitability, adequacy and effectiveness of the quality management system as well as medical
device safety and performance through the use of the quality policy, quality objectives, audit results, postmarket
surveillance, analysis of data, corrective actions, preventive actions and management review.
I work for a contract manufacturer of FDA Class I medical devices. We don't hold any CE marks, although a few of our customers do maintain CE marks for the products we manufacture. No pharma is involved in our facility. So what does ISO 13485 expect out of postmarket surveillance in the context of a company like ours? Does it involve anything beyond the maintenance of a complaint system, like clinical evaluations and/or annual product reviews? Sometimes I see postmarket surveillance referred to as something fairly simple, like a complaint system, but in other discussions it seems implied that postmarket surveillance also includes a manufacturer actively reaching out to the market and pulling data through surveys, clinical reviews, etc. and not just managing the complaints that come from the market.
So I guess, in essence, how does ISO define postmarket surveillance? Does it always include both the "passive" management of incoming complaints AND actively reaching out to the market to collect data, or can it ever simply be an actively managed complaint system for certain medical device industries?
I apologize if this seems like a question with an obvious answer, but I just can't clearly decipher the requirements based on one brief mention in ISO 13485 as part of a list!
8.5.1 General
The organization shall identify and implement any changes necessary to ensure and maintain the
continued suitability, adequacy and effectiveness of the quality management system as well as medical
device safety and performance through the use of the quality policy, quality objectives, audit results, postmarket
surveillance, analysis of data, corrective actions, preventive actions and management review.
I work for a contract manufacturer of FDA Class I medical devices. We don't hold any CE marks, although a few of our customers do maintain CE marks for the products we manufacture. No pharma is involved in our facility. So what does ISO 13485 expect out of postmarket surveillance in the context of a company like ours? Does it involve anything beyond the maintenance of a complaint system, like clinical evaluations and/or annual product reviews? Sometimes I see postmarket surveillance referred to as something fairly simple, like a complaint system, but in other discussions it seems implied that postmarket surveillance also includes a manufacturer actively reaching out to the market and pulling data through surveys, clinical reviews, etc. and not just managing the complaints that come from the market.
So I guess, in essence, how does ISO define postmarket surveillance? Does it always include both the "passive" management of incoming complaints AND actively reaching out to the market to collect data, or can it ever simply be an actively managed complaint system for certain medical device industries?
I apologize if this seems like a question with an obvious answer, but I just can't clearly decipher the requirements based on one brief mention in ISO 13485 as part of a list!