Slashdot Mirror
FDA Will Regulate Some Apps As Medical Devices
chicksdaddy writes "In an important move, the U.S. Food & Drug Administration (FDA) has released final guidance to mobile application developers that are creating medical applications to run on mobile devices. Some applications, it said, will be treated with the same scrutiny as traditional medical devices. The agency said on Monday that, while it doesn't see the need to vet 'the majority of mobile apps,' because they pose 'minimal risk to consumers,' it will exercise oversight of mobile medical applications that are accessories to regulated medical devices, or that transform a mobile device into a regulated medical device. In those cases, the FDA said that mobile applications will be assessed 'using the same regulatory standards and risk-based approach that the agency applies to other medical device.' The line between a mere 'app' and a 'medical device' is fuzzy. The FDA said it will look to the 'intended use of a mobile app' when determining whether it meets the definition of a medical 'device.' The Agency may study the labeling or advertising claims used to market it, or statements by the device maker and its representatives. In general, 'when the intended use of a mobile app is for the diagnosis of disease or other conditions, or the cure, mitigation, treatment or prevention of disease, or it is intended to affect the structure of any function of the body of man, the mobile app is a device.'"
So you want an app that's controlling an IV pump to be written to the same standards as your average fart app?
That's what this is about. The FDA neither has the time nor energy to look at every stupid 'medical' app in the store. They're only going to deal with ones that have an interaction to hardware that can cause problems or if the app is really, egregariously touting some medical benefit that it can't possibly provide.
Faster! Faster! Faster would be better!
Stating the app is only for entertainment/educational purposes only.
So you want an app that's controlling an IV pump to be written to the same standards as your average fart app?
Why the fuck would you use a mobile app to control an IV pump? That's like running a production database for a fortune 500 company off of Arch Linux.
You don't use something that isn't stable to run something as important and life critical as an IV pump. Nor would any hospital do so and any individual that tried would simply be a victim of natural selection.
Why would you put a poorly-tested embedded bluetooth stack in a pacemaker that crashes under fuzzing? Crazy, right?
If it's anything like it was when I was in medical software, the FDA is more concerned with process than specifics of implementation. If you're practicing good software development and QA methodologies and you can impress your ISO9001 auditor, then the FDA won't be too tough. Then again, "those were the days", so maybe somebody can update this - last time I flew to FDA for a development seminar was the first time I got wanded by TSA.
My God, it's Full of Source!
OUTSIDE_IP=$(dig +short my.ip @outsideip.net)
Would they then be subject to the O-care medical device tax? Let's not forget what it was all about to begin with.
http://www.youtube.com/watch?v=r2Kevz_9lsw
http://www.youtube.com/watch?v=BLiexzoAq7E
"Now, I doubt any of you would prefer a rolled up newspaper as a weapon against a dictator or a criminal intruder."
A wide variety of medical devices currently use Windows (often XP) to provide the client interface. Most Doctors have smart phones, so getting the buggy, unreliable, insecure Windows box out of the picture may appeal to some ... and leveraging the technology that the staff already have is not unreasonable (yes, there's some OTHER computer actually monitoring the flow. But setting the rates? Receiving alerts? ... why not use the smartphone?).
As to whether the FDA does a good or bad job (or a bit of both), it neither seems odd that some people would want to leverage the control (think Cochlear implant devices and programming adjustments) that folks already have, to manage their devices (durable, not just hospital based). Nor, if one accepts that the FDA has a role of any sort, why they should not be involved JUST because something is a software app as opposed to the software running in the otherwise regulated device.
You know what else they don't have in Somalia?
1. Patent trolls.
2. DMCA.
3. Central Government Spying.
So if you are in any way against any of those things then you want America to be exactly like Somalia. Thank you for playing the deluded Straw Man game!
AntiFA: An abbreviation for Anti First Amendment.
Why the fuck would you use a mobile app to control an IV pump?
The point is really two-fold. First, we already regulate medical devices like infusion pumps and radiology information systems. Under the proposed regime, one does not simply avoid regulatory scrutiny and obligations by offloading them to an app.
Second, if a app makes claims to do things things that would ordinarily be regulated, you don't escape the regulatory regime simply by saying, I'm just an iPhone app.
Both prongs make some sense if you accept the basic assumption that FDA regulation of devices makes sense at all.
I think Apple's terms of service says it all and that all medical apps need tossed out since they would break the tos of the device. Or am I missing something. http://www.apple.com/legal/sla/docs/iOS7.pdf
7.5 YOU FURTHER ACKNOWLEDGE THAT THE iOS SOFTWARE AND SERVICES ARE NOT INTENDED OR SUITABLE FOR USE IN SITUATIONS OR ENVIRONMENTS WHERE THE FAILURE OR TIME DELAYS OF, OR ERRORS OR INACCURACIES IN, THE CONTENT, DATA OR INFORMATION PROVIDED BY THE iOS SOFTWARE OR SERVICES COULD LEAD TO DEATH, PERSONAL INJURY, OR SEVERE PHYSICAL OR ENVIRONMENTAL DAMAGE, INCLUDING WITHOUT LIMITATION THE OPERATION OF NUCLEAR FACILITIES, AIRCRAFT NAVIGATION OR COMMUNICATION SYSTEMS, AIR TRAFFIC CONTROL, LIFE SUPPORT OR WEAPONS SYSTEMS.
Paul: Father... father, the sleeper has awakened! - Dune
You don't use something that isn't stable to run something as important and life critical as an IV pump. Nor would any hospital do so and any individual that tried would simply be a victim of natural selection.
From your mouth to God's Ears.
But just in case someone was thinking of doing this the FDA is going to step in and set guidelines.
Why: Because people are re-purposing cellphones for all sorts of stuff, most of it not well thought out.
You can find examples which contain unvetted information on the Google Play store. Some of this might find its way into actual use in the field, because in all too many cases doctors and computers live in two different worlds, and may come to trust something that looks approximately right, only to find out its horribly wrong in some places:
Examples (with no allegations of incorrectness or danger, simply to show examples that already exist):
https://play.google.com/store/apps/details?id=com.shahlab.anesthesiologist
https://play.google.com/store/apps/details?id=net.klier.blutdruck
https://play.google.com/store/apps/details?id=com.qxmd.calculate
https://play.google.com/store/apps/details?id=com.mobisystems.msdict.embedded.wireless.mcgrawhill.ivdh
https://play.google.com/store/apps/details?id=com.sekos.dosagecalc
So yeah you might thing such doesn't exist, and these might be harmess infomation apps, but who's to know when nobody is watching.
And with NFC built into every phone these days, who's to say someone won't find another use for it?
Sig Battery depleted. Reverting to safe mode.
These days they have ISO 13485. It's a lot like ISO 9001, but drops the more marketing continual improvement and customer feedback and adds additional requirement for creation of requirements, something more-or-less non existent in 9001.
So theoretically, 13485 would require you to recognize risks (e.g. fuzzing) and add mitigation (e.g. not crashing) to your requirements, which would then be tested and all the in a similar matter to 9001. I'd say that as a result it's about as good as can really be expected. The only real other steps would be for the FDA to bring in experts to verify the considered risks and possibly verify the testing, which starts to become unrealistic.
For completeness it's worth mentioning that when it comes to diagnostic software (I believe this started in the last couple years) they also require clinical trials to verify effectiveness somewhat like they do for medicine. Therefore if you write an application that, say, helps determine if someone is concussed (the case which started diagnostic software, IIRC) then you actually have to collect data for concussed and non-concussed people (verified by traditional means) and prove that it can provide a meaningful diagnosis.
Can't have cheap apps cutting into the business of big campaign donors.
Speaking as a Diabetic- yes I do.
I wear an infusion pump already. And a continuous monitor. They're plastic screens and buttons I clip to my belt. They have to be easily accessible because there is so much variance day-to-day.
Having everything talk via ANT or BT or something. Having one controller for it all. It'd be wonderful. I think your point is that it's too dangerous to put all that burden on a single piece of commodity hardware. And that's a valid point, in theory. But in reality, if I can replace the pump UI and CGM UI with a phone **that I'm already carrying** I end up with a whole lot fewer widgets to keep track of. Also, by virtue of commoditization, I could replace the software stack infinitely easier than a purpose-built controller, Dangerous? Sure. But understand the position we're in now:
I don't care if it's dangerous or voids the warranty or puts the FDA boogey-man on me. If a development like this occurs in the future and the FDA impedes it, I would like the opportunity to get it. Running on an open stack, even a quasi-open stack, is the only viable way for that to happen. And for today, smartphones are the best way to make that happen.
Implicit Evaluation with PHP
Nanny State to the rescue!
Bullshit, regulating medical devices isn't being nanny-state, outlawing marijuana is. I, for one am damned glad that the FDA had to approve the device they inserted surgically into my eyeball. I'm damned glad that drugs are regulated, so I won't underdose or overdose on a needed medicine because a supplier is incompetent or dishonest.
Do you scream "nanny state" when the cops go after armed robbers? Did you scream Nanny State when they jailed Madoff?
Sorry, kid, but your comment is just brain-dead stupid. Read a little history, look up "patent medicine" and "snake oil". Read Upton Sinclair's The Jungle (public domain, it's at gutenberg).
Free Martian Whores!
Oh get off. The stated goal of the agency (to prevent companies and individuals selling products which are patently unsafe, causing harm to consumers, or making medical claims which are patently false) is a necessary one, otherwise scumbags would be (taking it to the extreme) selling cyanide pills and claiming they cure cancer.
Whether the agency is living up the goal they claim, or acting in a corrupt fashion is another story entirely.
For a site about things like basic rights, Slashdot users sure do like to censor "dissent".
My mum is in her late 70's and has a $6k hearing aid that is tuned on a PC. The FDA don't want to prevent people tuning their hearing aid with their mobile phone, they want to ensure they can't accidentally blast their brains out with a 130db screech in the pitch of a 6yo girl. They will also want to look at the hearing aid to ensure it can't be used as an audio torture device in the first place.
It's well known that principles are expensive. The majority of the $6k for the device and software represents the cost compliance with the "first do no harm" principle that has been central to western medical practice for over 2000yrs, money well spent IMHO.
Pre-emptive "free market" retort: Hearing aids and the software that interacts with them are tested, certified, and sold as a standalone "system". Everyone is "free" to play in that "market", although individuals and groups have varying degrees of influence on how the market works, they are not "free" to dictate the rules of trade that constitute the market itself, that's the role of government.
And did you exchange a walk on part in the war for a lead role in a cage? - Pink Floyd.
DISCLAIMER: I am, (among other hats) a software developer for a medical device manufacturer in the United States.
Seriously, people. The FDA's stance has *ALWAYS* been that if something has a medical purpose or is an accessory to a medical device, then it *IS* a medical device, even with software. See: Guidance for the Content of Premarket Submissions for Software Contained in Medical Devices, dated 2005.
So, yes, apps with a medical purpose are medical devices, just like any other piece of software.
Which means they *ARE* subject to the "Obamacare Tax" -- Which is *NOT* a "sales tax" to be paid by the consumer. It's an "income tax" to be paid by the manufacturer / developer.
This also means that if your app is categorized as a medical device, you (the developer) have to register with the FDA as a device manufacturer, which costs a couple thousand dollars a year, and means that every few years, the FDA sends someone out to review your quality control system, which includes your testing methodologies, what complaints you've received and how you've handled them, how you document your development process, etc.
AND what your software does determines what kind of medical device the FDA calls it. And the kind of medical device determines whether you are required to get the FDA's permission before you distribute it. (even if you distribute it for free) And yes, applying for that permission costs money, whether it's approved or not.
And, by the way: Each country makes its own rules about what makes a medical device and what you're required to do to be able to legally distribute it in that country. And in most countries that includes software.
No, I'm not wrong. People aren't wrong just because they disagree with you. That is an example of a lack of integrity, and probably explains why all your accounts have a starting score of -1. Because even if you were right (and frankly I believe you are not) you come across as a dick.
For a site about things like basic rights, Slashdot users sure do like to censor "dissent".