ISO 14971 is an ISO standard for the application of risk management to medical devices. The ISO Technical Committee responsible for the maintenance of this standard is ISO TC 210 working with IEC/SC62A through Joint Working Group one (JWG1). This standard is the culmination of the work starting in ISO/IEC Guide 51, and ISO/IEC Guide 63. The latest significant revision was published in 2007 with a minor update published in 2009. In 2013, a technical report ISO/TR 24971 was published by ISO TC 210 to provide expert guidance on the application of this standard.
This standard establishes the requirements for risk management to determine the safety of a medical device by the manufacturer during the product life cycle. Such activity is required by higher level regulation and other quality management system standards such as ISO 13485. Specifically, ISO 14971 is a nine-part standard which first establishes a framework for risk analysis, evaluation, control, and management, and also specifies a procedure for review and monitoring during production and post-production.
In 2012, a European harmonized version of this standard was adopted by CEN as EN ISO 14971:2012. This version is harmonized with respect to the three European Directives associated with medical devices Medical Devices Directive 93/42/EEC, In-vitro Diagnostic Medical Device Directive 98/79/EC, and Active Implantable Medical Device Directive 90/385/EEC through the three 'Zed' Annexes (ZA, ZB & ZC). This was done to address the presumed compliance with the 3 Directives that is obtained through notified body certification audits and regulatory submissions that claim compliance to this standard.
EN ISO 14971:2012 applies only to manufacturers with devices intended for the European market; for the rest of the world, ISO 14971:2007 remains the standard recommended for medical device risk management purposes.
ISO 14971 risk management options
Inherent safety by design
- Use specific connectors that cannot be connected to the wrong component.
- Remove features that can be mistakenly selected or eliminate an interaction when it could lead to use error.
- Improve the detectability or readability of controls, labels, and displays.
- Automate device functions that are prone to use error when users perform the task manually.
Protective measures in the medical device itself or in the manufacturing process
- Incorporate safety mechanisms such as physical safety guards, shielded elements, or software or hardware interlocks.
- Include warning screens to advise the user of essential conditions that should exist prior to proceeding with device use, such as specific data entry.
- Use alerts for hazardous conditions, such as a “low battery” alert when an unexpected loss of the device’s operation could cause harm or death.
- Use device technologies that require less maintenance or are “maintenance free.” 
Information for safety
- Provide written information, such as warning or caution statements in the user manual that highlight and clearly discuss the use-related hazard.
- Train users to avoid the use error.
- List of ISO standards
- ISO 13485
- Medical technology
- Medical device
- Medical Devices Directive
- Clinical Engineering
- ISO 690
- ISO Catalogue: Medical devices -- Application of risk management to medical devices
- "Medical devices -- Application of risk management to medical devices". ISO. Retrieved 13 September 2015.
- Manookian, Brian. "Technical Information About ISO 14971". Cummings Manookian. Retrieved 13 September 2015.
- "Applying Human Factors and Usability Engineering to Medical Devices" (PDF). U.S. Department of Health and Human Services Food and Drug Administration. February 3, 2016. This article incorporates text from this source, which is in the public domain.
- One or more of the preceding sentences incorporates text from a work now in the public domain: Applying Human Factors and Usability Engineering to Medical Devices, U.S. Department of Health and Human Services Food and Drug Administration