FDA Unique Device Identifier SW Requirements.

FDA issued its final rule September 24, 2013 along with a Draft GUDID Guidance. The link attached is FDA’s webpage related to this rule. It includes a table of compliance dates ranging from 1 to 7 years depending on device class and type.

A unique device identifier (UDI) is a combination of a Device Identifier (DI) and a production identifier (PI). The device identifier is assigned by either the FDA or an FDA accredited issuing agency. For stand alone software, the PI is your version number. The rule designates that when dates are used, they should be of the format YYYY-MM-DD when used.

The following steps should be taken for labeling your devices in order to comply with the Medical Device Unique Identifier Rule:

1. Obtain a DI from an FDA accredited Issuing Agency or FDA (Note: We are not aware of any FDA accredited Issuing Agencies at this time.)

2. Need a GUDID (Global Unique Device Identifier Database) Account. This is an FDA account. (Note: This account is not yet available that I am aware of.)

3. For Stand alone software that is not packaged a plain-text statement of the UDI is to be displayed whenever the software is started, or a plain-text statement to be displayed through a menu such as with an “about” command.

4. For Stand Alone Software that is packaged, the package label and the label of the CD or other medium should additionally include an AIDC UDI number. An AIDC is as automatic identification and data capture technology that conveys the UDI in a form that can be entered into an electronic patient record or other computer system via an automated process (e.g., barcode).

This regulation additionally requires the UDI to be reported as part of a recall/MDR event and may require you to update those procedures.

This represents highlights of our understanding of the rule at this point in time. FDA interpretation, enforcement and final guidance is variable and may change over time.

SoftwareCPR Training Courses:

Being Agile & Yet Compliant (Public)

Our SoftwareCPR unique approach to incorporating agile and lean engineering to your medical device software process training course is now open for registration!

  • Agile principles that align well with medical
  • Backlog management
  • Agile risk management
  • Incremental and iterative software development lifecycle management
  •  Frequent release management
  • And more!

3 days virtual (Zoom) with group exercises, quizzes, examples, Q&A.

Lead Instructor: Mike Russell

Next public offering: Dec 3, 4, & 5, 2024 – 12:00 pm to 5:00 pm CET

Register Now


 

IEC 62304 and other emerging standards for Medical Device and HealthIT Software

Our flagship course for preparing regulatory, quality, engineering, operations, and others for the activities and documentation expected for IEC 62304 conformance and for FDA expectations. The goal is to educate on the intent and purpose so that the participants are able to make informed decisions in the future.  Focus is not simply what the standard says, but what is meant and discuss examples and approaches one might implement to comply.  Special deep discount pricing available to FDA attendees and other regulators.

3-days onsite with group exercises, quizzes, examples, Q&A.

Instructor: Brian Pate

Next public offering:  TBD

Call or email now to schedule a private, in-house class. The fall schedule is filling up!

Email training@softwarecpr.com to request a special pre-registration discount.  Limited number of pre-registration coupons.

Registration Link:

TBD

 


 

Medical Device Cybersecurity (Public or Private)

This course takes a deep dive into the US FDA expectations for cybersecurity activities in the product development process with central focus on the cybersecurity risk analysis process. Overall approach will be tied to relevant standards and FDA guidance documentation. The course will follow the ISO 14971:2019 framework for overall structure but utilize IEC 62304, IEC 81001-5-1, and AAMI TIR57 for specific details regarding cybersecurity planning, risk characterization, threat modeling, and control strategies.

2-days onsite with group exercises, quizzes, examples, Q&A.

Instructor: Dr Peter Rech, 2nd instructor (optional)

Next public offering:  TBD

Corporate Office

15148 Springview St.
Tampa, FL 33624
USA
+1-781-721-2921
Partners located in the US (CA, FL, MA, MN, TX) and Canada.