PDMS stands for patient data management system. These clinical information systems are typically used in hospitals, especially in departments that treat patients in intensive care.
PMDS are experiencing a new boom in Germany as a result of the funding provided by the Hospital Future Act (Krankenhaus-Zukunftsgesetz, KHZG).
This article provides
Patient data management systems (PDMS) must fulfill many requirements and offer many functions:
On the one hand, PDMS have the functionalities of a “normal” clinical workstation, such as managing patient master data, medical histories, diagnoses, findings (e.g. laboratory), medication and other therapies.
On the other hand, they are characterized by close integration with medical technology: They record data from patient monitors (e.g. blood pressure, pulse, oxygen saturation) and also from ventilators.
A PDMS must be able to collect and integrate patient data from various sources, such as patient monitors, ventilators, electronic health records (EHR), laboratory information systems, radiology information systems (RIS), and other clinical systems.
This data often includes patient demographics, medical history, test results, imaging studies, and medication information, as well as “device data” from, e.g., ventilators.
A PDMS should provide real-time patient monitoring to detect changes in the patient's condition and alert caregivers. This includes monitoring vital signs, medication, ventilation, and other parameters specific to the patient's health.
Advanced reporting and analysis functionality is common with PDMS. This helps hospitals with
Many PDMS help generate reports on
Clinical information systems used exclusively for documentation (as many manufacturers claim for their hospital information systems) do not fall under the definition of “medical device.”
A system only becomes a medical device if it is used for the treatment or diagnosis of diseases and injuries or for monitoring physiological parameters.
Although many PDMS allow the monitoring of physiological parameters, some manufacturers argue that these records are for documentation purposes only.
However, if the intended purpose includes calculations, e.g., concerning the patient's fluid balance or the interaction or contraindications of medication, it can no longer be denied that the PDMS is used for therapy. Alarm functions are also likely to serve this purpose.
The PDMS is, therefore, a medical device (usually a class IIa or IIb device) that must be developed and operated in accordance with the legal requirements.
This is why most PDMS now count as medical devices. Consequently, manufacturers must fulfill and demonstrate compliance with the General Safety and Performance Requirements (GSPR). The EU Medical Device Regulation MDR determines GSPRs in Annex I, among others:
This article describes the seven steps required to “certify” medical devices such as a PDMS and to obtain the CE mark. The process from decision to “certification” and declaration of conformity typically takes between 9 and 24 months.
In addition, PDMS operators are subject to data protection requirements (e.g., requirements of the GDPR). These can only be fulfilled if the manufacturers of PDMS create the technical prerequisites for this, including the option to delete specific data.
Since the 21st Century Cures Act, many software applications no longer count as medical devices. The FDA has published a guidance document that addresses the characteristics and classifications of data acquisition systems in hospitals. These include Medical Device Data Systems, Medical Image Storage Devices, and Medical Image Communications Devices.
The Johner Institute's regulatory experts team helps PDMS manufacturers define a regulatory strategy. This includes defining the markets and their sequence and determining the intended purpose so that the PDMS qualifies as required.
Get in touch to arrange a free, non-binding meeting in the next few days. We would then take the first steps of your regulatory strategy together and thus create the conditions for rapid approval.
The rules for qualifying medical devices differ in Europe and the USA. However, the FDA's requirements for medical devices (if they are qualified as such) are comparable to the requirements of the MDR. It is, therefore, advisable to prepare the approval documents for both markets together.
However, manufacturers of PDMS in the USA should consider further regulatory requirements:
The MDR requires an acceptable benefit-risk ratio. This means that PDMS manufacturers should quantify their benefits and weigh them against the risks.
Examples of the benefits of a PDMS are:
Manufacturers must also demonstrate the benefits they describe in their risk management file in the clinical evaluation. This is not always easy. The choice of medical claims is therefore crucial.
The Johner Institute's clinical experts can help you quantitatively describe these benefit claims and provide "audit-proof" evidence.
Get in touch with the team of experts!
To ensure that the benefits actually outweigh the risks, manufacturers are obliged to avoid or at least minimize typical errors.
Examples of these errors are
Use the ISO 25010 taxonomy as a checklist to check the software quality characteristics of your PDMS.
These errors can result in hazards, for example:
The Johner Institute's risk management and IT security experts have identified the risks for countless clinical information systems (including through pen testing), helped manage these risks, and prepared approval documents. With this support, you can get your safe devices approved and on the market quickly and on schedule.
Get in touch and benefit from this wealth of experience. You will reach your objective faster and at a lower cost.
Patient data management systems (PDMS) have become indispensable in hospitals, especially in intensive care units. Without these systems, it would be difficult for clinical staff to keep track of the flood of data generated by medical devices in particular and to monitor and treat patients adequately.
Because PDMS are almost always used to monitor and treat illnesses and injuries, they count as medical devices. Therefore, PDMS manufacturers must comply with the legal requirements for medical devices and observe other regulatory requirements.
The regulatory requirements and handling of PDMS differ only slightly from those of other SaMD (Software as a Medical Device).
However, the risks and benefits of a PDMS are specific to this product class. The risks also depend on the specific installation and the associated medical devices and software applications.
When developing a PDMS, consult our experts on time for the regulatory and clinical strategy. This way, you can be sure that you
If your devices have been on the market for a long time, you must continuously determine and comply with the state of the art. Particularly during the transition of certificates from MDD to MDR, manufacturers would do well to check or restore the conformity of their systems with the help of a neutral outside perspective.
In many cases, existing products suffer from a defect in IT security. This is where we can help with subsequent activities such as threat modeling or penetration tests.
Risk management is the central regulatory requirement. Experience has shown that many manufacturers find it difficult to keep their documentation up to date through their own post-market surveillance. We can support you with advice and assistance by reviewing your risk management files or through our post-market surveillance services.
An internal device or system audit by our experienced auditors, who have also worked for notified bodies, helps you identify and close gaps early before an assessment by the notified body.