US

RegulationsStandardsOther relevant documents

• The Food, Drug, and Cosmetic Act (FD&C Act)
• The Health Insurance Portability and Accountability Act (HIPAA)

• ISO 13485:2016 Medical devices --- Quality management systems --- Requirements for regulatory purposes
• ISO 14971
• ISO/IEC 27001:2022 Information security, cybersecurity abd orivacy protection - Information Security Management Systems - Requirements
• ISO/IEC 27701:2019 Security techniques

• Device Advice: Comprehensive Regulatory Assistance
• Cybersecurity for Networked Medical Devices Containing Off-the-Shelf (OTS) Software Guidance for Industry
• International Medical Device Regulators Forum (IMDRF) Principles and Practices for Medical Device Cybersecurity