United States, 10 Feb 2026 — In line with USFDA regulations, the U.S. Food and Drug Administration (FDA) has officially issued a major update to its Compliance Program, CP 7382.850, titled “Inspection of Medical Device Manufacturers.” This update, which carries an implementation date of February 2, 2026, fundamentally shifts how the Agency will conduct inspections in the era of the new Quality Management System Regulation (QMSR).
QUALITY MANAGEMENT SYSTEM REGULATION EXECUTIVE SUMMARY: THE 2026 REGULATORY PIVOT
The updated manual provides comprehensive instruction to FDA field and Center staff for inspectional and enforcement activities, in line with USFDA regulations. It reflects the modernization of the FDA’s regulatory framework, most notably the transition from the old Quality System Regulation (QSR) to the Quality Management System Regulation (QMSR), which incorporates international standard ISO 13485:2016 by reference, impacting Food and Drug Administration medical devices.
U.S. FOOD AND DRUG ADMINISTRATION : KEY REGULATORY IMPACTS FOR MANUFACTURERS
1. Full Adoption of Global Standards
As of February 2, 2026, the material in ISO 13485:2016 and Clause 3 of ISO 9000:2015 has the force and effect of law in the United States, under USFDA regulations. Manufacturers must now ensure their quality management systems (QMS) align with these international requirements while still meeting specific Food and Drug Administration medical devices provisions added by the U.S. Food and Drug Administration.
2. Transition to Risk-Based Inspection Models
The U.S. Food and Drug Administration has moved away from a one-size-fits-all inspection model. Under the new program, investigators will utilize one of two models based on the inspection type:
Inspection Model 1: Used for non-baseline surveillance, compliance follow-ups, and “for-cause” assignments. It requires selecting at least one element from each of the six QMS areas.
Inspection Model 2: Used for Baseline Surveillance (firms with no previous FDA history) and PMA Preapproval inspections. This model is more comprehensive, requiring evaluation of specific “minimum” elements across all QMS areas, in line with USFDA regulations.
3. The Six Core QMS Areas of Focus
- Investigators will now evaluate a manufacturer’s QMS by focusing on these integrated areas:
- Management Oversight: Focuses on top management’s commitment to a “culture of quality”.
- Design and Development: Ensures activities result in safe and effective devices.
- Measurement, Analysis, and Improvement: Evaluates how effectively a firm identifies and reduces risks.
- Production and Service Provision: Controls for manufacturing and sterilization.
- Outsourcing and Purchasing: Ensures control over third-party suppliers.
- Change Control: Ensures all changes are evaluated for risk prior to implementation.
CRITICAL "OTHER APPLICABLE FDA REQUIREMENTS" (OAFRS)
Beyond the core QMS areas, the U.S. Food and Drug Administration (FDA) has identified four mandatory categories that must be reviewed during postmarket inspections. These requirements are in line with USFDA regulations for Food and Drug Administration medical devices:
- Medical Device Reporting (MDR) (21 CFR 803): Timely reporting of deaths, injuries, and malfunctions related to medical devices.
- Reports of Corrections and Removals (21 CFR 806): Proper notification of field safety actions taken by manufacturers.
- Medical Device Tracking (21 CFR 821): Requirements for certain life-sustaining or implanted devices.
- Unique Device Identification (UDI) (21 CFR 830): Ensuring labels contain correct UDIs and that data is submitted to the GUDID database.
NEW ENFORCEMENT REALITIES
- Remote Regulatory Assessments (RRAs): The FDA now has the statutory authority to request records in advance of or in lieu of an inspection. Refusal to provide these records can be grounds for deeming a device “adulterated”.
- Internal Audit Access: Under the new QMSR framework, the previous “shield” that generally protected internal audit reports from FDA review has been removed, making these records accessible to investigators.
- Cybersecurity Mandates: For “cyber devices” submitted after March 29, 2023, the FDA will now evaluate compliance with section 524B of the FD&C Act during inspections.