Listen now
Key takeaways
- Early engagement with quality and regulatory experts is a preventative action that is less costly than addressing regulatory issues downstream.
- The initial step for any MedTech startup involves formally defining the device's 'Intended Use' and accurately determining its regulatory classification.
- The FDA's 'guidance' documents, though not legally binding, reflect the agency's current expectations for medical device submissions.
- A medical device is generally considered a 'cyber device' by the FDA if it contains software or has connectivity, not necessarily both, requiring cybersecurity documentation and testing.
- Devices designed to learn and adapt post-market release, particularly those leveraging AI/ML, face heightened regulatory scrutiny.
- Establishing a compliant Quality Management System (QMS) early in the product development cycle is crucial for a streamlined regulatory approval process.
- Accurate device classification is complex, with subtle differences in product codes impacting regulatory pathways, including the potential for Class One Reserved or De Novo routes.
Med device manufacturers, are you setting up your quality system early enough in product development? Also, are you misunderstanding the FDA’s "guidance" documents - and risking rejection?
Today’s guests are Mark Swanson and Steve Gompertz of QRx Partners, and they’re passionate about helping MedTech companies dodge the regulatory and quality pitfalls that derail so many startups. This episode explores how to classify your device properly, why cybersecurity documentation is required even for isolated software, and the evolving role of AI in medical technology.
Key points:
(02:11) Startup Failure and What QRx Solves
-
Why many early-stage MedTech startups fail.
-
Startup optimism is contrasted with the harsh funding and regulatory realities.
(12:16) Classification Chaos and Regulatory Missteps
- The confusion around FDA’s product code database.
(17:55) AI and Quality Systems
-
What qualifies as actual AI vs. marketing fluff.
-
How regulators handle AI in submissions.
(31:22) National Vs State Regulations
-
The critical need for manufacturers to understand state regulations.
-
Why quality and regulatory planning must precede design.
Thanks to Mark Swanson and Steve Gompertz for being on the show.
Learn more about QRx Partners: https://www.qrxpartners.com
Notable quotes
“Early-stage medical device companies often underestimate the time and money required for regulatory approval, a primary reason for the high failure rate in the industry.”
“The definition of a 'cyber device' is broad. A product is typically considered a cyber device if it contains software OR has connectivity, not necessarily both.”
“Don't be a hobbyist in this. It's not something where you can just know a thing or two here or there. There's just too much. It's pretty all the time, right?”
“The first step for any MedTech startup should be to formally define the device's 'Intended Use' and correctly determine its regulatory classification, as this dictates the entire pathway to market.”
Frequently asked questions
Bring this work to your device
Need help with fda premarket cybersecurity?
Blue Goat Cyber delivers fda premarket cybersecurity services for medical device manufacturers - from threat modeling to FDA-ready reports.
FDA Premarket Cybersecurity ServicesMore on FDA Premarket Cybersecurity
Keep listening
-
Episode 70
Why MedTech Needs Specialists with Zoltan Kevei and Saby Toth of Bishop & Co
With Zoltan Kevei
-
Episode 69
Science Before Hype in MedTech Investing with Varun Turlapati of Chaanakya Capital
With Varun Turlapati
-
Episode 67
De-Risking Product Decisions in MedTech Startups with Brent Lavin of Ironwood MedTech Partners
With Brent Lavin
-
Episode 65
Who Owns Patient Data Security in Trials with Rob Bedford, CEO of Franklyn Health
With Rob Bedford