Introduction: Why Post-Market Surveillance Is No Longer Optional
Post-Market Surveillance (PMS) has shifted from a “nice to have” to a mandatory compliance requirement. Yet, many manufacturers continue to overlook PMS until it becomes a problem — usually when an audit reveals gaps.
Real-world audits conducted by Notified Bodies and regulators consistently highlight one truth: checklist-style PMS systems no longer satisfy auditors. Instead, authorities expect a data-driven, risk-based approach that integrates seamlessly into your quality management system.
At Patient Guard, we’ve seen first-hand how companies struggle with PMS. This article unpacks the most common audit failures, lessons from the field, and practical steps to strengthen your PMS framework.
What Is Post-Market Surveillance (PMS)?
Post-Market Surveillance (PMS) is the continuous process of monitoring the safety and performance of medical devices once they are placed on the market. While pre-market testing validates a product’s intended use, PMS ensures the device continues to perform safely in real-world conditions.
A robust PMS system allows manufacturers to:
- Detect potential issues earlier
- Reduce patient safety risks
- Meet regulatory obligations under EU MDR, IVDR, and UK regulations
- Provide updated evidence for Clinical Evaluation Reports (CERs) and Risk Management Files
- Protect their brand reputation and maintain market access
In short, PMS is not just about compliance; it is about building safer, higher-quality products that stand the test of time.
Why PMS Matters More Than Ever
Auditors and regulators are sending a clear message: PMS is a core element of compliance, not an afterthought.
Some of the latest PMS trends include:
- Data-driven monitoring – relying on actual user feedback, complaint handling, vigilance reports, and registries.
- Risk-based evaluation – ensuring that surveillance activities align with the device’s risk classification and intended use.
- Integration into QMS – making PMS a living process that feeds back into clinical evaluation, CAPAs, and product improvements.
- Transparency – demonstrating clear evidence of monitoring, analysis, and corrective actions.
Companies that fail to embed PMS into their operations risk audit findings, product recalls, regulatory sanctions, or even loss of CE marking.
Lessons from Real-World Audits
Auditors are no longer accepting generic PMS Plans. They expect to see documents tailored to the specific device and its risk profile.
❌ Audit failure: PMS plan that simply repeats regulatory requirements without referencing the actual device risk file.
✅ Best practice: Create a PMS plan that clearly links to your risk management documentation, defines data sources, and establishes measurable methods for evaluation.
1. PMS Plans Must Align with Risk Files
Auditors are no longer accepting generic PMS Plans. They expect to see documents tailored to the specific device and its risk profile.
❌ Audit failure: PMS plan that simply repeats regulatory requirements without referencing the actual device risk file.
✅ Best practice: Create a PMS plan that clearly links to your risk management documentation, defines data sources, and establishes measurable methods for evaluation.
2. Data Collection Goes Beyond Complaints
A common audit finding is that manufacturers rely solely on complaints or incident reports. This approach ignores valuable sources of real-world performance data.
❌ Audit failure: PMS system that only reviews internal complaints.
✅ Best practice: Include diverse data sources such as:
- Customer/user surveys and feedback
- Vigilance and incident databases (EUDAMED, FDA MAUDE)
- Scientific literature and registries
- Supplier and distributor feedback
This holistic approach strengthens your PMS evidence and demonstrates active monitoring.
3. Trending Analysis Is Non-Negotiable
One of the most frequent PMS audit failures is the absence of trending analysis. Collecting data is only step one — regulators expect to see statistical methods applied to identify patterns and emerging risks.
❌ Audit failure: PMS report with raw complaint numbers but no trend interpretation.
✅ Best practice: Apply statistical trending tools (e.g., control charts, risk signals) to detect early warning signs and document them in your PMS reports.
4. Clinical Evaluation Must Be Updated
PMS is directly tied to your Clinical Evaluation Report (CER). Yet many companies fail to update CERs with post-market data, leading to audit non-conformities.
❌ Audit failure: Clinical evaluation that relies solely on pre-market data.
✅ Best practice: Integrate PMS findings into your CER on an ongoing basis, demonstrating continuous evaluation of safety and performance.
5. CAPAs Must Be Proactive, Not Reactive
Corrective and Preventive Actions (CAPAs) are a natural output of PMS. However, some companies only initiate CAPAs after an incident, rather than proactively addressing early signals.
❌ Audit failure: CAPAs only triggered by serious incidents.
✅ Best practice: Define thresholds for CAPA initiation based on trends or risk signals and document actions taken. This proactive approach demonstrates strong control.
6. PMS Reports Require Clear Conclusions
Auditors frequently flag PMS reports with vague or inconclusive summaries. A “no issues found” statement without supporting data will not pass.
❌ Audit failure: PMS report with a generic conclusion and no data analysis.
✅ Best practice: Each PMS report should clearly state findings, include supporting data, outline trends, and explain any corrective actions.
Common Audit Failures in PMS (Summary)
To recap, the most frequent PMS-related audit non-conformities include:
- No trending analysis performed
- PMS plan not linked to device risk file
- Failure to update clinical evaluation with PMS data
- Over-reliance on complaints as the only data source
- Vague PMS report conclusions
- Lack of proactive CAPAs
Building a Strong PMS System: Best Practices
Step 1: Develop a Tailored PMS Plan
Start with a plan that is specific to your device, its intended use, and associated risks. Define data sources, analysis methods, and reporting timelines.
Step 2: Collect Diverse Real-World Data
Cast a wide net when gathering PMS data. Go beyond complaints and include surveys, feedback, registries, literature, and supplier input.
Step 3: Apply Risk-Based Analysis
Analyze data with risk in mind. Class III and high-risk devices require more intensive surveillance than Class I devices.
Step 4: Update Risk and Clinical Files
Ensure PMS findings feed back into your Risk Management and Clinical Evaluation files to maintain alignment with real-world evidence.
Step 5: Act on Findings Through CAPAs
Define thresholds for CAPA initiation and document your actions thoroughly. Demonstrate that PMS is a closed-loop system driving improvement.
Step 6: Report with Transparency
Write PMS reports that are clear, data-driven, and actionable. Avoid vague language and support conclusions with hard evidence.
How Patient Guard Helps with PMS
- Development of customised PMS plans
- Assistance with data collection strategies
- Support with trending analysis and statistical methods
- Integration of PMS into Clinical Evaluation and Risk Management files
- Preparation of robust PMS reports for audits
- Training for QA/RA teams on proactive PMS practices
Conclusion: Don’t Treat PMS as an Afterthought
Post-Market Surveillance is not just a regulatory checkbox. It is a powerful tool for patient safety, quality improvement, and audit success.
Real-world audits have shown that regulators expect manufacturers to move beyond superficial PMS systems. By taking a data-driven, risk-based approach, updating clinical files, and acting on findings, you can build a PMS framework that satisfies auditors and strengthens your products.
👉 At Patient Guard, we help you prepare before the auditors come knocking. Let’s talk about your PMS strategy today. www.patientguard.com/contact-us
Frequently Asked Questions (FAQs)
Post-Market Surveillance is the continuous monitoring of medical devices after they reach the market to ensure ongoing safety, performance, and regulatory compliance.
Common audit failures include lack of trending analysis, outdated clinical evaluation reports, and vague PMS conclusions. Auditors expect clear, data-driven evidence.
PMS findings must feed into Clinical Evaluation Reports and Risk Management files to provide real-world evidence and maintain compliance under MDR and IVDR.
Develop a tailored PMS plan, collect diverse data sources, apply risk-based analysis, proactively initiate CAPAs, and write transparent PMS reports.
