Artifact GuideEU

EU MDR Post-Market Surveillance and Vigilance

Under Regulation (EU) 2017/745, post-market surveillance is not a complaint inbox. For each device, the manufacturer must run a documented PMS system that gathers, records, and analyses quality, performance, and safety data across the device lifetime.

Use this page to structure PMS plans, PMS reports or PSURs, PMCF updates, vigilance decisions, trend reporting, EUDAMED submissions, and the records reviewers will ask to see.

Back to main artifactReview sources
Author
Sorena AI
Published
May 9, 2026
Updated
May 9, 2026
Sections
6

Structured answer sets in this page tree.

Primary sources
4

Cited legal and guidance references.

Publication metadata
Sorena AI
Published May 9, 2026
Updated May 9, 2026
Overview

EU MDR post-market surveillance and vigilance should connect field data to technical documentation, clinical evaluation, risk management, corrective action, and authority reporting. The practical control is a traceable record: what signal was received, how it was assessed, what MDR route applied, what was reported or updated, and what evidence remains in the technical file.

Section 1

Build the PMS system around device-specific signals

Article 83 requires a post-market surveillance system for each device that is proportionate to risk class and appropriate for the device type. The system belongs inside the manufacturer's quality management system, so support tickets, complaint handling, service records, distributor feedback, literature review, registry data, and clinical follow-up should feed the same controlled process.

The output is not only a log. MDR PMS data is used to update benefit-risk determination, risk management, design and manufacturing information, instructions for use, labelling, clinical evaluation, the summary of safety and clinical performance where relevant, and needs for preventive, corrective, or field safety corrective action.

  • Define PMS intake sources by device, version, intended purpose, risk class, market, and responsible owner.
  • Classify each signal as complaint, non-serious incident, serious incident candidate, expected side-effect, trend signal, PMCF input, CAPA input, or non-device issue.
  • Link each PMS conclusion to the records it may update: risk file, clinical evaluation report, PMCF plan or report, IFU, labelling, SSCP, technical documentation, PMS report, or PSUR.
  • When PMS identifies preventive or corrective action, document the measure, authority or notified-body communication if applicable, and post-action monitoring.
Sources for this answer
Regulation (EU) 2017/745 on medical devices
Articles 83 and 84 require a device-specific PMS system and PMS plan, and identify how PMS data updates risk management, clinical evaluation, labelling, technical documentation, and corrective action.
Section 2

Keep the PMS plan, PMS report, and PSUR distinct

The PMS plan is the operating design for collecting and analysing post-market data. Article 84 points to Annex III and requires the plan to be part of technical documentation for devices other than custom-made devices.

The report type depends on class. Class I manufacturers prepare a PMS report summarising analysis results, conclusions, and the rationale and description for preventive and corrective actions. Class IIa, IIb, and III manufacturers prepare a PSUR for each device, or where relevant each category or group of devices, with conclusions from benefit-risk determination, main PMCF findings, sales volume, user population estimates, and usage frequency where practicable.

  • For class I, keep the PMS report current when necessary and available for competent-authority request.
  • For class IIa, update the PSUR when necessary and at least every two years.
  • For class IIb and class III, update the PSUR at least annually.
  • For class III and implantable devices, route PSUR submission through the Article 92 electronic system to the notified body involved in conformity assessment; keep the notified-body evaluation with the record.
  • For other PSUR devices, keep the PSUR available to the notified body and competent authorities when requested.
Sources for this answer
Regulation (EU) 2017/745 on medical devices
Articles 84, 85, and 86 define the PMS plan, PMS report, PSUR content, update cadence, and submission or availability routes by device class.
Section 3

Use PMCF to update clinical evaluation and risk management

PMCF is part of PMS, but it has a clinical evidence job. MDR Annex XIV treats PMCF as a continuous process that updates clinical evaluation and requires a documented PMCF plan. MDCG 2020-7 gives a practical structure for the plan: manufacturer and device details, PMCF activities, links to technical documentation, clinical evaluation and risk management references, equivalent or similar device data, standards or guidance, and the estimated date of the PMCF evaluation report.

A usable PMCF record explains why each activity is needed, what data quality is expected, which endpoints or questions are being answered, what limitations exist, when analysis and reporting will happen, and how findings flow back into the clinical evaluation report, technical documentation, and risk controls.

  • Include general methods such as clinical experience, user feedback, scientific literature, and other clinical data sources.
  • Use specific methods where justified, such as registries, PMCF studies, real-world evidence analyses, healthcare professional surveys, patient or user surveys, and case report review.
  • State the PMCF objective: confirming safety and performance, monitoring side-effects and contraindications, detecting emerging risks, confirming benefit-risk acceptability, or identifying systematic misuse or off-label use.
  • Document PMCF findings in a PMCF evaluation report and use the conclusions to update clinical evaluation and risk management; implement preventive or corrective measures when PMCF identifies the need.
Sources for this answer
Regulation (EU) 2017/745 on medical devices
Annex XIV Part B requires PMCF to update clinical evaluation, specifies minimum PMCF plan content, and requires PMCF findings to be documented and fed back into clinical evaluation and risk management.
MDCG 2020-7 PMCF plan template
MDCG 2020-7 provides a non-binding PMCF plan template and examples of PMCF activities, objectives, rationale, limitations, timelines, and evaluation-report planning.
Section 4

Separate serious incident, FSCA, and trend decisions

Vigilance starts with triage. Article 87 requires manufacturers to report serious incidents involving devices made available on the Union market, except expected side-effects that are clearly documented, quantified in technical documentation, and subject to trend reporting. The same article covers field safety corrective actions, including third-country FSCAs for a device also legally made available on the Union market when the reason is not limited to the third-country device.

Trend reporting is a different route. Article 88 covers statistically significant increases in the frequency or severity of non-serious incidents or expected undesirable side-effects that could significantly affect benefit-risk analysis and may create unacceptable health or safety risks. The PMS plan should specify the methodology, observation period, and handling approach for those trend signals.

  • For each event, record awareness date, device identification, market, seriousness assessment, causality assessment, expected side-effect status, trend threshold check, and reporting route.
  • Use the MDR vigilance clocks only when grounded in Article 87: not later than 15 days after awareness for serious incidents after causal relationship is established or reasonably possible, 10 days for death or unanticipated serious deterioration, and 2 days for serious public health threat.
  • For FSCAs, record the field safety notice, affected UDI or device identifiers, SRN if issued, user actions, competent-authority review where applicable, and evidence that users were informed without delay.
  • After a serious incident report, keep investigation records, risk assessment, final report, corrective action decision, and communications with competent authorities and the notified body where relevant.
Sources for this answer
Regulation (EU) 2017/745 on medical devices
Articles 87 to 89 define reportable serious incidents, FSCAs, expected side-effect exceptions, vigilance reporting clocks, trend reporting, investigations, final reports, and field safety notices.
Section 5

Handle EUDAMED as the reporting channel, with contingency records

MDR Article 92 establishes the electronic system for vigilance and PMS information, including serious incident and FSCA reports, periodic summary reports, trend reports, PSURs, field safety notices, and competent-authority exchanges. Treat the EUDAMED submission record as part of the evidence file, not as a substitute for investigation, risk, clinical, and CAPA records.

Commission Implementing Regulation (EU) 2021/2078 adds operating rules for EUDAMED access, support, and malfunctions. If a malfunction prevents required submissions, the record should show the malfunction notice, any suspension of submission periods, interim information sent to the Commission, competent authorities, or notified body when required, and the later EUDAMED entry once the malfunction ceased.

  • Keep EUDAMED receipts, submission identifiers, final report uploads, PSUR submissions, FSN public entries, and notified-body evaluations with the related PMS or vigilance case.
  • Maintain a fallback communication log for technical unavailability: who was informed, what data was provided, which authority-prescribed channel was used, and when the EUDAMED entry was completed.
  • Do not rely on EUDAMED module status as a reason to skip internal MDR records; keep the PMS, PMCF, risk, clinical, and vigilance evidence controlled in the technical documentation and QMS.
Sources for this answer
Regulation (EU) 2017/745 on medical devices
Article 92 identifies the PMS and vigilance information handled by the electronic system, including serious incident reports, FSCAs, trend reports, PSURs, field safety notices, and competent-authority exchanges.
Commission Implementing Regulation (EU) 2021/2078 on EUDAMED
Sets rules for EUDAMED access, technical support, machine-to-machine services, and contingency handling when malfunctions hinder required submissions.
EUDAMED portal
European Commission portal for the EUDAMED production system and information centre used to support operational submission evidence.
Recommended next step

Review MDR PMS and vigilance evidence

Check whether your PMS plan, PMCF plan, PSUR or PMS report, vigilance triage, FSCA process, trend method, and EUDAMED records tell one consistent device-level story.

Research workflow
Open Research Copilot

Answer MDR PMS, PMCF, PSUR, and vigilance questions with cited outputs.

Explore next step
Talk to Sorena
Talk through implementation

Review your PMS evidence model, reporting workflow, clinical updates, and next actions.

Explore next step
Section 6

Evidence records to keep together

A reviewer should be able to reconstruct the full chain from signal to decision. Keep records at device and version level, and preserve links between PMS analysis, clinical evaluation, risk management, PMCF, vigilance reports, field safety actions, CAPA, notified-body review, and EUDAMED submission evidence.

Avoid unsupported timeline claims or national penalty detail in the PMS file. The stronger record is factual: MDR article route, device scope, data source, method, assessment, decision, report or update made, authority communication, and follow-up monitoring.

  • PMS plan, data-source map, statistical methods for trend detection, observation periods, and escalation criteria.
  • PMS report or PSUR with benefit-risk conclusions, PMCF findings, sales or use estimates where required, preventive and corrective actions, and update history.
  • PMCF plan, activity protocols, data-quality rationale, PMCF evaluation report, clinical evaluation updates, and risk-management updates.
  • Vigilance triage records, serious incident reports, FSCA decisions, field safety notices, final investigation reports, periodic summary reporting agreements if used, and competent-authority or notified-body correspondence.
  • EUDAMED submission receipts, malfunction contingency communications, post-malfunction data entry evidence, and records showing that users received field safety notices when applicable.
Sources for this answer
Regulation (EU) 2017/745 on medical devices
Articles 83 to 92 and Annex XIV support the required record chain across PMS, PMCF, PSURs, vigilance, trend reporting, corrective actions, technical documentation, and EUDAMED submissions.
MDCG 2020-7 PMCF plan template
Supports practical PMCF evidence fields, including activity source, description, objectives, methods, rationale, timelines, and PMCF evaluation-report planning.
Primary sources

References and citations

EUDAMED portal
webgate.ec.europa.eu
Referenced sections
  • European Commission portal for the EUDAMED production system and information centre used to support operational submission evidence.
"EUDAMED is the IT system"
MDCG 2020-7 PMCF plan template
health.ec.europa.eu
Referenced sections
  • Supports practical PMCF evidence fields, including activity source, description, objectives, methods, rationale, timelines, and PMCF evaluation-report planning.
"Activities related to PMCF"
Regulation (EU) 2017/745 on medical devices
eur-lex.europa.eu
Referenced sections
  • Articles 83 to 92 and Annex XIV support the required record chain across PMS, PMCF, PSURs, vigilance, trend reporting, corrective actions, technical documentation, and EUDAMED submissions.
"The technical documentation shall be updated accordingly."
Related guides

Explore more topics

Custom-made medical devices under the EU MDR | EU MDR FAQ
Concise EU MDR FAQ on custom-made device definition, mass-produced exclusions, Annex XIII statements, documentation, conformity assessment, PMS, vigilance, and records to retain.
EU MDR Annex II and III Technical Documentation
Build an MDR technical documentation index for Annex II device files and Annex III post-market surveillance evidence, including GSPR, risk, clinical, PMS, UDI, and EUDAMED records.
EU MDR Annex VIII Classification Guide
Classify EU MDR medical devices under Annex VIII using intended purpose, duration, invasiveness, active device and software rules, and conformity assessment impact.
EU MDR Annex XVI products without a medical purpose
source-linked EU MDR guide for Annex XVI products: listed product groups, common specifications, clinical evidence, notified-body route, UDI, EUDAMED, PMS, and vigilance evidence before launch.
EU MDR Applicability Test
Test whether a product, accessory, software function, or Annex XVI product falls under the EU Medical Device Regulation, and record the evidence for the next classification step.
EU MDR change assessment workflow
Assess EU MDR device, design, software, intended purpose, QMS, clinical, PMS, UDI, classification, and notified-body impacts before releasing a medical device change.
EU MDR Checklist for Medical Device Compliance
Practical EU MDR checklist covering qualification, classification, conformity assessment, technical documentation, GSPR, clinical evidence, UDI, EUDAMED, PMS, vigilance, QMS, and legacy transition evidence.
EU MDR classification workflow
A concrete EU MDR classification workflow for intended purpose, device or accessory qualification, Annex VIII rule selection, Rule 11 software review, class outcome, and notified body impact.
EU MDR Clinical Evaluation Overview
EU MDR clinical evaluation overview covering Article 61, Annex XIV, clinical data sources, equivalence, PMCF, CER evidence, notified body review, GSPR, and benefit-risk support.
EU MDR Clinical Evaluation Report Template
A source-linked EU MDR clinical evaluation report template covering intended purpose, GSPR linkage, clinical data appraisal, equivalence limits, PMCF, conclusions, and reviewer signoff.
EU MDR clinical evidence guide
source-linked EU MDR guide to clinical evaluation, clinical investigations, equivalence, PMCF, GSPR support, technical documentation, and notified-body review.
EU MDR compliance obligations
EU MDR compliance guide for device qualification, classification, conformity assessment, QMS, technical documentation, UDI, EUDAMED, PMS, vigilance, and legacy transition controls.
EU MDR conformity route workflow
source-linked EU MDR workflow for classifying a device, choosing the conformity assessment route, preparing technical and QMS evidence, and reaching certificate, DoC, UDI, EUDAMED, and CE outputs.
EU MDR deadlines and compliance calendar
Grounded EU MDR calendar for application, legacy-device transition, UDI, EUDAMED, and recurring QMS, technical documentation, clinical, PMS, vigilance, certificate, and change reviews.
EU MDR Device Classification Guide
Classify an EU MDR medical device by intended purpose, Annex VIII duration, invasiveness, active-device and software rules, then document the conformity route impact.
EU MDR EUDAMED and UDI registration
source-linked MDR guide to Basic UDI-DI, UDI-DI, EUDAMED device registration, actor roles, labels, technical documentation, and UDI data governance.
EU MDR FAQ: qualification, evidence, UDI, and transition
Concise EU MDR FAQ covering device qualification, software classification, accessories, custom-made devices, clinical evidence, UDI, EUDAMED, notified bodies, significant changes, and legacy transition.
EU MDR Legacy Device Transition
source-linked EU MDR legacy device transition guide covering Regulation (EU) 2023/607 conditions, certificate validity, significant-change limits, surveillance, PMS, vigilance, QMS, and evidence records.
EU MDR notified body route selection
Choose an EU MDR conformity assessment route by device class, Article 52 option, notified body designation scope, QMS readiness, technical documentation, clinical evidence, and certificate evidence.
EU MDR penalties and enforcement risk
source-linked EU MDR penalties and enforcement-risk guide covering Article 113, Member State penalty rules, market restrictions, recalls, certificate consequences, and evidence.
EU MDR PMS and Vigilance Guide
EU MDR guide to post-market surveillance, PMCF updates, PMS reports, PSURs, serious incident reporting, FSCA/FSN handling, trend reporting, and evidence records.
EU MDR PMS Plan Template for Medical Devices
A source-linked EU MDR post-market surveillance plan template covering device scope, PMS data sources, PMCF linkage, vigilance, trend reporting, PMSR or PSUR outputs, roles, cadence, and evidence records.
EU MDR QMS and technical file evidence map
Map EU MDR Article 10 QMS duties to Annex II and Annex III technical documentation, PMS, vigilance, UDI records, and notified-body review evidence.
EU MDR QMS requirements under Article 10
EU MDR QMS guide for Article 10 manufacturer controls covering regulatory strategy, design, risk, clinical evaluation, PMS, vigilance, UDI, suppliers, CAPA, and conformity records.
EU MDR qualification and borderline products
EU MDR qualification guide for medical purpose claims, accessories, software, Annex XVI products, and borderline routes to classification and conformity assessment.
EU MDR qualification workflow
A concrete EU MDR workflow for deciding whether a product is a medical device, accessory, Annex XVI product, IVD interface, medicinal-product interface, or non-MDR product before classification and conformity assessment.
EU MDR requirements checklist
Concrete EU MDR requirements for medical-device scope, classification, GSPR, conformity assessment, technical documentation, QMS, clinical evidence, UDI, EUDAMED, PMS, vigilance, and economic-operator records.
EU MDR Rule 11 software classification
Classify MDR medical device software under Rule 11 using intended purpose, diagnosis or therapy decision impact, physiological monitoring, conformity route, clinical evidence, and software-change records.
EU MDR significant changes FAQ: legacy-device transition and notified-body review
FAQ on MDR significant changes for legacy devices, including intended-purpose, design, software, material, sterilisation, clinical, QMS, notified-body, and evidence impacts.
EU MDR Transition Timelines: practical guide
EU Medical Device Regulation guide to Transition Timelines with scope decisions, owner actions, evidence records, source-linked citations, and practical next steps.
EU MDR UDI and EUDAMED registration guide
EU MDR guide to Basic UDI-DI, UDI-DI, UDI carriers, EUDAMED actor and device registration, change impacts, and evidence governance.
EU MDR vigilance reporting workflow
Concrete EU MDR vigilance workflow for incident intake, serious incident assessment, FSCA and FSN handling, trend reporting, EUDAMED caveats, CAPA, PMS, clinical evaluation updates, and records.
How should Basic UDI-DI and UDI-DI be assigned under the EU MDR? | EU MDR FAQ
EU MDR FAQ explaining what Basic UDI-DI and UDI-DI identify, how they connect to UDI carriers, EUDAMED records, change triggers, and retained evidence.
MDR vs AI Act for medical-device software
Compare MDR software qualification, classification, clinical evidence, QMS, PMS, UDI, EUDAMED, and notified-body evidence boundaries against cautiously scoped AI Act overlap.
MDR vs GPSR: medical-device boundary checks
Compare MDR medical-device scope with general product-safety fallback questions for borderline, non-medical, and Annex XVI products.
MDR vs IVDR: medical devices and IVDs compared
Compare EU MDR and IVDR scope, classification, conformity routes, technical documentation, clinical or performance evidence, UDI, EUDAMED, PMS, and vigilance.
MDR vs Product Liability Directive evidence comparison
Compare EU MDR market-access evidence with Product Liability Directive exposure without treating compliance records as a liability outcome.
What should an EU MDR PMCF plan and report cover? | EU MDR FAQ
Under the EU MDR, PMCF is part of PMS and clinical evaluation. See what the plan, activities, report, updates, and retained evidence should cover.
What should manufacturers do when an EU MDR classification changes? | EU MDR FAQ
Concise EU MDR FAQ on classification changes, intended purpose, software, notified-body route impact, certificates, technical documentation, and retained evidence.
When can clinical equivalence be used under the EU MDR?
EU MDR FAQ on clinical equivalence, including technical, biological, and clinical characteristics, access to equivalent-device data, class III and implantable-device limits, clinical evaluation, PMCF, and retained evidence.
When do software or products make medical purpose claims under the EU MDR? | EU MDR FAQ
EU MDR FAQ on medical purpose claims, intended purpose evidence, software qualification, Annex XVI contrasts, and records to keep.
When is a PSUR required under the EU MDR and what should it contain? | EU MDR FAQ
EU MDR FAQ on PSUR scope, content, update cadence, PMS and PMCF links, notified-body handling, EUDAMED submission, and evidence to retain.
When is an accessory regulated under the EU MDR? | EU MDR FAQ
EU MDR FAQ on when an article is a medical device accessory, how intended purpose affects classification, and what evidence to keep.
When is software regulated as SaMD under the EU MDR? | EU MDR FAQ
Concise EU MDR FAQ on software qualification, intended medical purpose, Rule 11 classification, modules, clinical evidence, change assessment, UDI, and EUDAMED.
Which devices need an SSCP under the EU MDR and what should it include? | EU MDR FAQ
EU MDR FAQ on when an SSCP is required, who prepares, validates, uploads, and updates it, and what evidence should support the summary.
Which EUDAMED modules matter under the EU MDR? | EU MDR FAQ
EU MDR FAQ mapping EUDAMED modules to actor registration, UDI/device data, certificates, clinical investigations, vigilance/PMS, market surveillance, and practical records.