Hi Anonymous.
The simplest question here is - "Does the billing software have any
medical purpose or is it to allow for simplification of billing activities?" In other words does the billing software have any link whatsoever to the medical purpose for the device? If not, and if it does not create any specific new vulnerabilities to the integrity of the data or the device's functioning then FDA likely will not worry about that piece of the software coding. However, I will caution that you should consider whether this billing software could cause or allow a person to hack into the medical device itself and either obtain, manipulate or delete patient data or control or manipulate the preset controls for the device. This to me would be a new vulnerability that you would likely be responsible for mitigating/eliminating.
While FDA might not have any specific issues with your software if the above is not applicable, there are other regulations from FTC, FCC, and potentially the banking regulators regarding encryption of payment methods, etc. You should speak with someone more experience and better versed in these areas to see what you are required to do for these regulatory groups as I cannot speak on this part of the topic from experience.
------------------------------
Victor Mencarelli
Director Regulatory Affairs
United States
------------------------------
Original Message:
Sent: 16-Nov-2019 02:24
From: Anonymous Member
Subject: Billing software as part of medical device
This message was posted by a user wishing to remain anonymous
What would be the regulatory requirements if billing software is made part of medical device ? Are there any standards /regulations that need to be followed?
Thanks