top of page
Search

Understanding the Revised MDSAP Audit Approach and Its Impact on Quality Systems

  • 7 hours ago
  • 4 min read

The Medical Device Single Audit Program (MDSAP) plays a critical role in how medical device manufacturers meet regulatory requirements across multiple countries. On February 2, 2026, the MDSAP audit approach underwent a significant revision, with the official update dated February 6, 2026. This change aligns the audit process more closely with the U.S. Food and Drug Administration’s (FDA) Quality Management System Regulation (QMSR). Understanding these updates is essential for manufacturers who want to maintain compliance and improve their quality systems.


This post explains the key changes in the revised MDSAP audit approach, why they matter, and how manufacturers can adapt their quality systems to meet the new expectations.



Eye-level view of a medical device quality control lab with audit documents and ISO standards
Updated MDSAP audit approach aligning with ISO 13485 and FDA QMSR


What Changed in the MDSAP Audit Approach?


The revised MDSAP audit approach removes references to the FDA’s former Quality System Regulation (QSR) and instead maps audit tasks directly to ISO 13485 clauses and country-specific requirements. This shift reflects the FDA’s move to the Quality Management System Regulation (QMSR), which focuses on integrated quality systems rather than separate regulatory frameworks.


Key changes include:


  • Removal of direct references to 21 CFR Part 820 except in specific areas such as complaint handling and design controls.

  • Stronger emphasis on ISO 13485 as the foundation for audits, with FDA requirements integrated into this framework.

  • Clear mapping of audit tasks to ISO 13485 clauses and country-specific regulations for Canada, Brazil, Japan, and Australia.

  • Focus on harmonized quality systems that meet both ISO and FDA expectations without duplication.


This update means that audits will assess quality systems more holistically, looking at how well processes support compliance across multiple regulatory bodies simultaneously.


Why the Revision Matters


Manufacturers participating in MDSAP must understand why this revision is important:


  • Simplifies compliance by reducing conflicting or overlapping requirements.

  • Encourages integrated quality management that supports global market access.

  • Reflects FDA’s current regulatory approach through the QMSR, which emphasizes risk management, process control, and continuous improvement.

  • Improves audit consistency by using ISO 13485 as the main reference, which is internationally recognized.

  • Supports better alignment between regulatory expectations and industry best practices.


For manufacturers, this means fewer surprises during audits and clearer guidance on how to build and maintain compliant quality systems.


How the Revised Approach Affects Quality Systems


The revised MDSAP audit approach requires manufacturers to review and possibly update their quality management systems. Here are practical steps to consider:


1. Align Processes with ISO 13485 Clauses


Since the audit tasks now map directly to ISO 13485, manufacturers should:


  • Review their quality manual and procedures to ensure full coverage of ISO 13485 requirements.

  • Confirm that documentation clearly links processes to specific ISO clauses.

  • Use ISO 13485 as the primary framework for training and internal audits.


2. Integrate FDA QMSR Requirements


While the focus is on ISO 13485, FDA-specific requirements remain important, especially in:


  • Complaint handling

  • Design controls

  • Corrective and preventive actions (CAPA)


Manufacturers should ensure these FDA areas are explicitly addressed within their ISO-based quality system.


3. Harmonize Country-Specific Requirements


MDSAP covers multiple regulatory authorities. Manufacturers must:


  • Identify country-specific requirements for Canada, Brazil, Japan, and Australia.

  • Integrate these requirements into the quality system without creating separate processes.

  • Maintain clear records demonstrating compliance with each country’s rules.


4. Enhance Risk Management and Continuous Improvement


The FDA’s QMSR emphasizes risk-based thinking and ongoing improvement. Manufacturers should:


  • Embed risk management into all quality processes.

  • Use data from audits, complaints, and CAPA to drive improvements.

  • Document how risk assessments influence decision-making.


5. Prepare for Audits with Updated Checklists


Audit preparation should reflect the revised approach:


  • Update internal audit checklists to align with the new MDSAP model.

  • Train audit teams on the changes to FDA QMSR and ISO 13485 integration.

  • Conduct mock audits focusing on harmonized quality systems.


Examples of Impact on Specific Processes


Complaint Handling


Previously, complaint handling might have been audited separately under FDA QSR. Now, it is integrated into the ISO 13485 framework but still requires compliance with FDA-specific rules. Manufacturers should:


  • Ensure complaint records meet FDA documentation standards.

  • Link complaint investigations to risk management and CAPA processes.

  • Demonstrate timely and effective complaint resolution.


Design Controls


Design controls remain a critical FDA focus area. Under the revised approach:


  • Design control processes should align with ISO 13485 design and development clauses.

  • Documentation must show traceability from user needs to design outputs and verification.

  • Risk management must be integrated throughout design activities.


CAPA Processes


CAPA is a key element of both ISO 13485 and FDA QMSR. Manufacturers should:


  • Use CAPA to address nonconformities identified across all regulatory requirements.

  • Document root cause analysis and corrective actions clearly.

  • Show evidence of effectiveness checks and continuous monitoring.


Preparing Your Organization for the Revised MDSAP Audit


To adapt successfully, manufacturers should take a structured approach:


  • Conduct a gap analysis comparing current quality systems against the revised MDSAP audit approach.

  • Update quality manuals and procedures to reflect integrated ISO 13485 and FDA QMSR requirements.

  • Train staff and auditors on the new audit model and expectations.

  • Implement risk-based thinking throughout quality processes.

  • Engage with certification bodies and regulatory consultants for guidance.


By taking these steps, organizations can reduce audit risks and improve overall quality system performance.



 
 
bottom of page