Insights

28 August 2023

Why the UK & EU have different plans to regulate med-tech AI

The UK government and the European Medicines Agency have both published draft roadmaps to regulate the use of AI in the medical technology industry.

In this edition of The GRC Story, we explore the key similarities and differences in plans, and what they’re hoping to achieve.


The use of artificial intelligence (AI) and machine learning (ML) in the medical technology industry has grown rapidly in recent years, but the constant development of programs has meant regulating its use is becoming increasingly challenging.

The UK and EU have both this year published roadmaps setting out guidance ahead of upcoming legislation.

The UK’s Software and AI as a Medical Device Change Programme roadmap is separated into 11 work packages, with eight to reform the software as a medical device (SaMD) lifecycle and another three to consider the challenges AI as a medical device (AIaMD) can pose.

The EU’s draft proposal, a reflection paper on the use of Artificial Intelligence (AI) in the medicinal product lifecycle, examines the use of AI across seven stages of medicinal product development: drug discovery; non-clinical development; clinical trials; precision medicine; product information; manufacturing; and post-authorisation.

Following a consultation period, the European Medicines Agency (EMA) is set to finalise its reflection paper, which will provide additional guidance on risk management and update existing guidance to address AI/ML-specific issues. The timeline matches with the European Parliament’s plans for MEPs to reach an agreement on the EU AI Act, the world’s first comprehensive AI law, by the end of 2023.

The key differences

While the overall aim of both approaches is to keep patients safe by regulating the use of AI, there are important differences between the UK and EU over what they are hoping to achieve, as well as how they are planning to regulate.

The UK government has stated that its ‘change programme’ will not only protect patients and the public, but also ensure the UK is globally recognised as a home of responsible innovation for medical device software. 

Alison Dennis and Nicholas Vollers at global law firm Taylor Wessing point out that this recognition will be particularly important in a “post-Brexit UK”. They add that the focus of the regulations will need to remain in line with existing international requirements, as too much divergence would make it difficult for manufacturers to enter the UK’s AI ecosystem.

The most notable disparity between the EU and UK regulations is that the EU places the responsibility – of ensuring algorithms, models and datasets are in line with the regulations – on the marketing authorisation applicant or marketing authorisation holder. 

In contrast, the UK regulations place this responsibility on the manufacturer. Its roadmap includes plans to introduce regulatory guidance on the definition of a manufacturer to address grey areas, such as when open-source code has been modified. 

The UK has made more progress than the EU on the path to introducing AI regulation, as the UK’s change programme builds in response to the government’s already-closed future regulation of medical devices consultation, while the EU’s draft proposals will be open to consultation for the rest of the year.

Where is the overlap?

Despite some differences between the UK and EU approaches, there are some similarities between the roadmaps. Both roadmaps emphasize a ‘human-centered’ approach, focusing on keeping human users in mind when designing systems and software and prioritizing human factors when assessing devices.

Both roadmaps also focus on reforming existing regulations, with the idea that AI-based technologies should primarily fall into the same category as existing medical devices. As such, both are opting to primarily introduce new guidance for companies on issues such as what medical device requirements mean in the context of software and AI.

Both also highlight the importance of inclusive innovation in the sector, as the use of AI in other contexts has highlighted that software can have a racial bias if inappropriately designed. The UK roadmap includes plans to build on wider work that examines health inequalities in medical device regulation.

The EU proposals note that AI/ML models’ data-driven foundations make them vulnerable to the integration of human bias: “All efforts should be made to acquire a balanced training dataset, considering the potential need to over-sample rare populations, and taking all relevant bases of discrimination as specified in the EU principle of non-discrimination and the EU fundamental rights into account.”

The reaction

Commentators have been widely positive about both sets of regulations. 

Brett Lambe, senior associate in the technology team at law firm Ashfords LLP, praised  the new EU regulations, suggesting it could help to accelerate the realization of AI’s potential in the medtech sector and emphasizing the importance of regulation in a field where the dramatic speed of progress by providers has led to anxiety for some groups.

The UK’s commitment to ensure the reforms are in line with international regulations was highlighted by Charlotte Harpin, Partner, Health and Social Care at law firm Browne Jacobson. She claimed complying with regulations across jurisdictions will be “a key concern for many developers.”

0
Search
Recent posts
LATEST INSIGHTS
2 August 2024
FDIC Proposes Sweeping Changes to Brokered Deposits Rules
The Federal Deposit Insurance Corporation (FDIC) has proposed a significant overhaul of its brokered deposits rules. This move, announced on July 30, 2024, could reshape the landscape for banks, neobanks, fintechs, and other financial industry players.
2 August 2024
Explaining the FCA's Public Offer Platform rules
The UK's Financial Conduct Authority (FCA) has released a consultation paper outlining proposed rules for the new public offer platform (POP) regime.
25 July 2024
What new ARGA legislation will mean for UK GRC
The King's Speech has unveiled plans for a Draft Audit Reform and Corporate Governance Bill, signalling significant changes in the UK's regulatory landscape. MBK Search has pulled out these crucial aspects that risk managers and compliance professionals need to understand:
24 July 2024
FTC sets its sights on surveillance pricing: Key points
The Federal Trade Commission (FTC) has launched a significant investigation into "surveillance pricing" practices, signalling a new frontier in consumer protection and data privacy. This will have implications for risk managers and compliance professionals across financial services. Here are five key aspects to consider:
css.php