ISO 14971 is an ISO standard for the application of risk management to medical devices. The ISO Technical Committee responsible for the maintenance of this standard is ISO TC 210 working with IEC/SC62A through Joint Working Group one (JWG1). This standard is the culmination of the work starting in , and . The latest significant revision was published in 2019. In 2013, a technical report ISO/TR 24971 was published by ISO TC 210 to provide expert guidance on the application of this standard.
This standard establishes the requirements for risk management to determine the safety of a medical device by the manufacturer during the product life cycle. Such activity is required by higher level regulation and other quality management system standards such as ISO 13485. Specifically, ISO 14971 is a nine-part standard which first establishes a framework for risk analysis, evaluation, control, and review, and also specifies a procedure for review and monitoring during production and post-production.
In 2012, a European harmonized version of this standard was adopted by CEN as EN ISO 14971:2012. This version is harmonized with respect to the three European Directives associated with medical devices Active Implantable Medical Device Directive 90/385/EEC, Medical Devices Directive 93/42/EEC, and In-vitro Diagnostic Medical Device Directive 98/79/EC, through the three 'Zed' Annexes (ZA, ZB & ZC). This was done to address the presumed compliance with the 3 Directives that is obtained through notified body certification audits and regulatory submissions that claim compliance to this standard.
EN ISO 14971:2012 applies only to manufacturers with devices intended for the European market; for the rest of the world, ISO 14971:2007 and the latest version, 14971:2019, remain the standard recommended for medical device risk management purposes.
ISO 14971 risk management options
Inherent safety by design
- Use specific connectors that cannot be connected to the wrong component.
- Remove features that can be mistakenly selected or eliminate an interaction when it could lead to use error.
- Improve the detectability or readability of controls, labels, and displays.
- Automate device functions that are prone to use error when users perform the task manually.
Protective measures in the medical device itself or in the manufacturing process
- Incorporate safety mechanisms such as physical safety guards, shielded elements, or software or hardware interlocks.
- Include warning screens to advise the user of essential conditions that should exist prior to proceeding with device use, such as specific data entry.
- Use alerts for hazardous conditions, such as a “low battery” alert when an unexpected loss of the device’s operation could cause harm or death.
- Use device technologies that require less maintenance or are “maintenance free.” 
Information for safety
- Provide written information, such as warning or caution statements in the user manual that highlight and clearly discuss the use-related hazard.
- Train users to avoid the use error.
Changes in the ISO 14971:2019 edition
The third edition of the standard from 2019 differs from 14971:2007 not only by a new chapter structure, but also by focus on the benefit-risk ratio. For this, the concept of (medical) benefit is now defined. In addition, there is a stronger focus on the "information from the production and the downstream phases". Some explanations or appendices from the previous standard are outsourced in ISO / TR 24971:2019.
- List of ISO standards
- ISO 13485
- Medical technology
- Medical device
- Medical Devices Directive
- Clinical Engineering
- ISO 690
- ISO Catalogue: Medical devices -- Application of risk management to medical devices
- "ISO/IEC Guide 51:2014 - Safety aspects -- Guidelines for their inclusion in standards". www.iso.org.
- "ISO/IEC Guide 63:2012 - Guide to the development and inclusion of safety aspects in International Standards for medical devices". www.iso.org.
- "ISO/TR 24971:2013 - Medical devices -- Guidance on the application of ISO 14971". www.iso.org.
- "Medical devices -- Application of risk management to medical devices". ISO. Retrieved 13 September 2015.
- Manookian, Brian. "Technical Information About ISO 14971". Cummings Manookian. Retrieved 13 September 2015.
- Council Directive 90/385/EEC of 20 June 1990 on the approximation of the laws of the Member States relating to active implantable medical devices
- Council Directive 93/42/EEC of 14 June 1993 concerning medical devices
- Directive 98/79/EC of the European Parliament and of the Council of 27 October 1998 on in vitro diagnostic medical devices
- "Applying Human Factors and Usability Engineering to Medical Devices" (PDF). U.S. Department of Health and Human Services Food and Drug Administration. February 3, 2016. This article incorporates text from this source, which is in the public domain.
- One or more of the preceding sentences incorporates text from a work now in the public domain: Applying Human Factors and Usability Engineering to Medical Devices, U.S. Department of Health and Human Services Food and Drug Administration