Risk Severity Estimation for Medical Devices as per ISO 14971

N

nussehund

#1
Dear Everyone,

When estimating the severity of a risk I often find that there are multiple possible outcomes (severities). Obviously, the conservative thing to do would be to go with the worst case but what if the worst case is not very likely?

How do you guys handle this? Do you go with the average case? the worst case? do you split the risk into two different risks?

The reason that I am asking is that I am analyzing a risk where part of a device breaks off and hits the patient. In most cases this is unlikely to cause serious harm but if "the stars are right" permanent injury or even death could be a possibility. Assigning a severity of "catastrophic" to the risk is not without problems ...

Thanks!
Nusse
 
Elsmar Forum Sponsor

Jen Kirley

Quality and Auditing Expert
Leader
Admin
#2
Welcome to the Cove!

Not being a medical device person myself, I will suggest you try looking at the similar threads shown at the bottom of this page.

I hope this helps!
 

Marc

Fully vaccinated are you?
Leader
#3
I'm not a medical device person myself either, and I do not have a copy of ISO 14971, but in automotive and aerospace I always go with "worst case" when assessing "severity". If you have multiple outcomes, split the risk and address individually. If you do not, you better have a statistically valid reason (among other things) why you didn't because if the impossible happens (struck by lightning comes to mind, as does the GM ignition switch fiasco) you'll have a lot of explaining to do. I think the old saying is "better safe than sorry".
 
P

pldey42

#5
I understand that when Disney do an annual service on a rollercoaster they take it completely apart, inspect and replace things as necessary, then reassemble it. The first people to test-ride it are the maintenance team including the manager.

So for me the tests are: would I allow my child to be the patient? And would the CEO allow her child to be the patient?

Just 2c
Pat
 
N

nussehund

#6
Thanks you for the answers!

Splitting a risk to address the different scenarios based on the severity of harm and analyzing them individually sounds like a promising idea.

I could conclude that for a given event a "serious" outcome is "unlikely" and that a "catastrophic" outcome is "improbable". Both risks would be acceptable according to my acceptance criteria. Fantastic :)

But is this approach acceptable ???

One could argue that because the difference in probability hinges only on issues related to exposure that the different outcomes for the event must be treated as one risk?

If this is not so, then it would be possible to postulate that because each actual incident will be different, the probability component should be considered in relation to a single interaction with the equipment rather than with total amount of interactions over the cause of the equipment's lifetime.

At the very least this would be something that should be considered during "residual risk assessment"?
 

sagai

Quite Involved in Discussions
#7
I do not know how happy I would be to participate in an extremely rare case when a improbable catastrophic event does happen ... :cool:

Assessing probability is wordsmithing for me, it is subjective, up to the assessment team, up to cultural and educational background, etc. I see no real benefit of emphasising too much on probability to be honest.

Cheers!
 
M

medgar

#8
If you calculate 'probability' in with the severity aren't you then "double dipping" on 'Likelihood' in your risk assessment?
 
#9
Hello Nusse.

Score the worst case scenario against the likelihood of the event
This is all about reasonably foreseeable sequences of events following the identification of hazards and not unlikely sequences. :agree1:
 
M

MedTechSoftware

#10
Risk is made up of two factors - severity and probability. Both have to be considered when evaluating risk, so a risk with high severity, but extremely low probability might be considered acceptable. It is the responsibility of senior management to determine criteria for acceptability of risk. Also, in the EU, the Medical Devices Directive requires that all risks are reduced "as far as possible" taking account of the "generally recognised state of the art".

There is also the relationship between a hazard, a hazardous situation and harm. An example of this might be a shark in a swimming pool is a hazard; a person getting in the pool with the shark is a hazardous situation and the person being attacked by the shark is a harm. Each of those occurrences has a lower probability than the one preceding it. Someone might not get into the pool if they know a shark is in there and even if they do, the shark might not be hungry.
 
Thread starter Similar threads Forum Replies Date
S The Severity of a Medical Device Hazard - Risk Analysis Clarification ISO 14971 - Medical Device Risk Management 6
MrTetris Informational Risk Register - Same hazardous situation, different severity of harms ISO 14971 - Medical Device Risk Management 7
F Risk = Likelihood * Severity - Can we mitigate the Severity? Occupational Health & Safety Management Standards 44
E Risk Management selection Probability of Occurrence and Severity ISO 14971 - Medical Device Risk Management 24
T AS9100D Risk-Based Internal Audit Schedule AS9100, IAQG, NADCAP and Aerospace related Standards and Requirements 10
thisby_ Installation Related Issues and Risk Management ISO 14971 - Medical Device Risk Management 5
W Reconciling FMEA RPN ratings with Risk Acceptability ISO 14971 - Medical Device Risk Management 11
D How to address the content deviation of 'cannot apply criteria of risk acceptability prior to...' ISO 14971 - Medical Device Risk Management 1
Doninina Risk management file according MDR or ISO 14971:P2019 ? EU Medical Device Regulations 2
T Risk based CA AS9100, IAQG, NADCAP and Aerospace related Standards and Requirements 5
T IVD Risk - destruction of patient samples - Harm to property? ISO 14971 - Medical Device Risk Management 5
E Do anyone have document of automotive production risk and control of risk? Lean in Manufacturing and Service Industries 1
R Using RPN to Confirm Risk Reduced to an Acceptable Level Risk Management Principles and Generic Guidelines 12
T IVD Device Software - Risk Classification IEC 62304 - Medical Device Software Life Cycle Processes 16
G Help:Risk Management - Accessories US Food and Drug Administration (FDA) 1
N Writing Risk Management procedure for small manufacturing and we don't know where to start. Manufacturing and Related Processes 9
E How to risk assess tooling? For a medical device and is it needed??? Manufacturing and Related Processes 2
M Clinical evaluation interface with the risk management process EU Medical Device Regulations 9
L Risk analysis Manufacturing and Related Processes 4
J Risk Analysis for Proficiency Testing Reliability Analysis - Predictions, Testing and Standards 1
J ISO 10993-1:2018 Format to Perform Risk Management Process US Food and Drug Administration (FDA) 1
B Risk Management Procedure updates needed for 14971:2019 ISO 14971 - Medical Device Risk Management 11
M What is the Risk of Using Obsolete Versions of C=0 & ANSI/ ASQ Z1.4 Sampling Plans? ISO 13485:2016 - Medical Device Quality Management Systems 8
D AS9100D 8.4.2 Note 2 Significant Operational Risk AS9100, IAQG, NADCAP and Aerospace related Standards and Requirements 1
A Calculating Risk Estimation ISO 14971 - Medical Device Risk Management 29
M Intended Use vs Actual Use and Scope of Risk Management EU Medical Device Regulations 8
S IDCB 0129/0160 Clinical Risk Management ISO 14971 - Medical Device Risk Management 2
H At what level (harm, hazardous situation, seq. of events, etc) is "risk" estimated? ISO 14971 - Medical Device Risk Management 12
A Risk Management Team IEC 60601 - Medical Electrical Equipment Safety Standards Series 11
S Risk Management File - Procedure Packs ISO 14971 - Medical Device Risk Management 3
B ISO 14001 Risk assesment ISO 14001:2015 Specific Discussions 4
J What risk to cover when NOT using ISO 17025 accredited/certified labs for calibration ISO 17025 related Discussions 3
G Risk Management for IEC 60601-1 and IEC 60601-1-2 IEC 60601 - Medical Electrical Equipment Safety Standards Series 15
S What is your favorite Usability Risk Analysis tool? IEC 62366 - Medical Device Usability Engineering 5
T Assessing risk where harm is indirect - Generic devices / accessories / intermediates ISO 14971 - Medical Device Risk Management 8
K Do you have separate clinical risk management group or experts in your manufactures? EU Medical Device Regulations 4
W IATF 9.2.2.1 Internal Audit how to determine risk IATF 16949 - Automotive Quality Systems Standard 12
S Risk control through Information for safety ISO 14971 - Medical Device Risk Management 12
A Derive Risk Acceptance Matrix from Risk Policy ISO 14971 - Medical Device Risk Management 8
B ERP software validation - risk assessment vs validation scope ISO 13485:2016 - Medical Device Quality Management Systems 11
I Estimation of overall residual risk. How to? EU Medical Device Regulations 11
Sidney Vianna ISO Practical Guide on ISO 31000:2018 - Risk Management Other ISO and International Standards and European Regulations 0
T IEC 62304 : Risk control for SaMD IEC 62304 - Medical Device Software Life Cycle Processes 8
T Risk Assessment and Management Misc. Quality Assurance and Business Systems Related Topics 0
P Scenario based risk assessment IEC 27001 - Information Security Management Systems (ISMS) 1
Q KPI risk assessment - Criteria for the given score IATF 16949 - Automotive Quality Systems Standard 3
S Foreign Risk Notification Canada Medical Device Regulations 2
J HELP NEEDED ! Risk Management Exercise ISO 14971 - Medical Device Risk Management 12
O Should a Covid vaccine and testing policy be included as part of ISO9001 or AS9100 risk management? ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 6
M Does 4.5 - Alternative RISK CONTROL apply to the Particular Standards? IEC 60601 - Medical Electrical Equipment Safety Standards Series 3

Similar threads

Top Bottom