A risk-based regulatory framework for health IT: recommendations of the FDASIA working group.

Abstract

The Secretary of Health and Human Services (HHS) acting through the Food and Drug Administration (FDA), and in collaboration with the Federal Communications Commission (FCC) and Office of the National Coordinator for Health IT (ONC) was tasked with delivering a report on an appropriate, risk-based regulatory framework for health information technology (IT). An expert stakeholder group was established under the auspices of the Health IT Policy Committee to help provide input into the development of this framework, including how healthcare IT systems could be stratified in terms of risk and recommendations about how the regulatory requirements currently in place should be adapted. In this paper, we summarize the public deliberations and final public report of the expert stakeholder group, and conclude with key suggestions intended to address the charge to recommend the features of a risk-based regulatory framework that promote innovation, protect patient safety, and avoid regulatory duplication.