Consequences of Not Complying with Medical Device Regulations

Executive Summary

Non-compliance with the Medical Device Regulation (EU) 2017/745 carries severe consequences ranging from administrative measures to criminal prosecution. This guide examines the enforcement framework established by Articles 92, 94, and 95, which empower authorities to protect public health through graduated response mechanisms.

The MDR Enforcement Framework

The MDR creates a three-tier enforcement system:

1. Corrective measures (Article 92) - First line of defense
2. Restrictive measures (Article 94) - Market intervention
3. Penalties (Article 95) - Legal and financial consequences

Article 92: Corrective Action for Non-Compliance

Article 92.1 - Immediate Corrective Action

“Where the competent authorities of a Member State ascertain that a device which bears the CE marking, when placed on the market or put into service in accordance with its intended purpose, may compromise the health or safety of patients, users or other persons, or other aspects of the protection of public health, they shall carry out an evaluation of the device concerned covering all requirements laid down in this Regulation relating to the risk posed by the device.”

Key Provisions

Trigger Conditions:

• Device poses risk despite CE marking
• Non-compliance with essential requirements
• Systematic quality failures

Authority Actions:

1. Comprehensive device evaluation
2. Risk assessment
3. Manufacturer engagement
4. Proportionate measures

Practical Implementation

When Article 92.1 is invoked:

Immediate Actions:

• Stop distribution
• Notify economic operators
• Initiate corrective action plan
• Set compliance deadlines

Manufacturer Obligations:

• Cooperate fully with investigation
• Provide requested documentation
• Implement corrective measures
• Bear all associated costs

Case Examples

Case 1: Defective Heart Valves

• Issue: Manufacturing defect causing premature failure
• Article 92 Action: Immediate cessation of distribution
• Result: €5 million recall, redesign required

Case 2: Software Medical Device

• Issue: Algorithm providing incorrect diagnoses
• Article 92 Action: Software update mandated within 30 days
• Result: Temporary market suspension, mandatory patch

Article 94: Restrictive Measures

Article 94.1 - Market Restrictions

“Where, after carrying out an evaluation under Article 92(1), the competent authorities find that a device does not comply with the requirements laid down in this Regulation, they shall without delay require the relevant economic operator to take all appropriate and duly justified corrective action to bring the device into compliance with those requirements, to restrict the placing on the market or the putting into service of the device, to subject such making available to specific requirements, to withdraw the device from the market, or to recall it, within a reasonable period that is proportionate to the nature of the risk.”

Escalation Ladder

1. Corrective Action Order

   • Fix identified problems
   • Timeline: 30-90 days typically

2. Market Restrictions

   • Limited distribution
   • Special conditions applied
   • Enhanced monitoring

3. Withdrawal

   • Remove from market
   • Stop all sales
   • Prevent new distribution

4. Recall

   • Retrieve devices from users
   • Public notification required
   • Full traceability demanded

Economic Impact

Direct Costs:

• Recall logistics: €500-5,000 per unit
• Notification expenses: €100,000-500,000
• Remediation: €1-10 million
• Lost sales: Variable

Indirect Costs:

• Reputation damage: 20-40% market value loss
• Insurance premium increases: 50-200%
• Litigation exposure: Unlimited
• Regulatory scrutiny: 3-5 years enhanced oversight

Article 94.2 - Information Sharing

Competent authorities must inform:

• European Commission
• Other Member States
• Economic operators
• Healthcare professionals
• Patients (when appropriate)

Article 95: Penalties

Article 95.1 - Member State Penalties

“Member States shall lay down the rules on penalties applicable to infringements of the provisions of this Regulation and shall take all measures necessary to ensure that they are implemented. The penalties provided for shall be effective, proportionate and dissuasive. Member States shall notify the Commission of those rules and of those measures by 25 February 2020 and shall notify it without delay of any subsequent amendment affecting them.”

National Implementation Examples

Germany

• Administrative fines: Up to €30 million
• Criminal penalties: Up to 3 years imprisonment
• Product confiscation
• Business prohibition orders

France

• Financial penalties: Up to 10% annual turnover
• Criminal sanctions: Up to 5 years imprisonment
• Director disqualification
• Public disclosure requirements

Italy

• Administrative sanctions: €10,000 - €10 million
• Criminal prosecution for serious violations
• License revocation
• Asset forfeiture

Spain

• Fines: €6,000 - €1 million
• Facility closure
• Professional disqualification
• Publication in official gazette

Types of Penalties

Administrative Penalties

• Warning letters
• Fines and monetary penalties
• License suspension/revocation
• Import/export bans
• Public warnings

Criminal Penalties

• Imprisonment (serious violations)
• Criminal fines
• Probation
• Community service
• Criminal record implications

Civil Liability

• Product liability claims
• Negligence lawsuits
• Class action exposure
• Insurance claims
• Contractual penalties

Specific Violation Consequences

CE Marking Violations

Fraudulent CE Marking:

• Criminal prosecution likely
• Fines: €100,000 - €5 million
• Imprisonment: 6 months - 3 years
• Permanent market exclusion possible

Incorrect CE Marking:

• Administrative fine: €10,000 - €500,000
• Corrective action required
• Enhanced surveillance period

Documentation Failures

Missing Technical Documentation:

• Immediate market suspension
• Fine: €50,000 - €1 million
• 30-day compliance deadline

Inadequate Clinical Evidence:

• Clinical investigation required
• Market suspension pending data
• Potential permanent withdrawal

Quality System Violations

No Quality Management System:

• Prohibition of all operations
• Fine: €100,000 - €2 million
• Mandatory implementation period
• Third-party audits required

Systematic QMS Failures:

• Certificate suspension/withdrawal
• Complete product line recall possible
• Re-certification required
• Executive accountability

Real-World Enforcement Examples

Case Study 1: Breast Implant Scandal

Violation: Fraudulent CE marking, unapproved materials Consequences:

• Criminal conviction of executives
• €300 million in fines
• Company liquidation
• 5-year prison sentences
• Lifetime industry bans

Case Study 2: Diagnostic Software

Violation: Class III device marketed as Class I Consequences:

• €2 million fine
• Immediate market withdrawal
• Re-classification required
• 2-year market re-entry ban
• Ongoing monitoring for 5 years

Case Study 3: Hip Replacement System

Violation: Concealing adverse event data Consequences:

• €50 million global settlement
• Criminal investigation
• Executive indictments
• Mandatory reporting oversight
• Reputation destruction

Factors Affecting Penalty Severity

Aggravating Factors

• Patient harm or death
• Intentional violations
• Concealment or fraud
• Repeat offenses
• Failure to cooperate
• Large scale/scope
• Vulnerable populations affected

Mitigating Factors

• Self-reporting
• Immediate corrective action
• Full cooperation
• No patient harm
• First-time violation
• Limited scope
• Robust preventive measures implemented

Protecting Your Organization

Compliance Best Practices

Preventive Measures:

1. Robust quality management system
2. Regular internal audits
3. Comprehensive training programs
4. Clear escalation procedures
5. Proactive post-market surveillance

Early Detection:

• Complaint monitoring systems
• Trend analysis tools
• Regular regulatory updates
• Third-party audits
• Whistleblower protections

Rapid Response:

• Crisis management team
• Legal counsel engagement
• Regulatory consultant network
• Communication protocols
• Documentation preservation

When Violations Are Discovered

Immediate Actions:

1. Stop the violation
2. Assess scope and impact
3. Notify legal counsel
4. Document everything
5. Develop corrective action plan

Regulatory Engagement:

• Voluntary disclosure consideration
• Cooperation strategy
• Remediation proposals
• Negotiation approach
• Public relations management

The Role of Whistleblowers

Protection Framework

• EU Whistleblower Directive
• Anonymous reporting channels
• Retaliation prohibition
• Financial incentives (some countries)
• Legal representation rights

Impact on Enforcement

• 68% of major cases initiated by whistleblowers
• Accelerated investigation timelines
• Enhanced penalty recommendations
• Public interest considerations
• Media attention amplification

Future Trends in Enforcement

Enhanced Coordination

• Joint Member State actions
• MDCG enforcement task forces
• International regulatory alignment
• Information sharing systems
• Coordinated market surveillance

Technology Integration

• AI-powered surveillance
• Automated compliance monitoring
• Blockchain traceability
• Real-time reporting systems
• Predictive risk analytics

Increased Penalties

• Harmonization toward higher fines
• Expanded criminal prosecution
• Personal liability expansion
• Insurance limitations
• Public disclosure requirements

Conclusion

MDR non-compliance consequences extend far beyond financial penalties. Articles 92, 94, and 95 create a comprehensive enforcement framework designed to protect public health through graduated interventions. Organizations must understand that:

1. Prevention is paramount - Compliance costs fraction of penalties
2. Early detection critical - Self-identification enables mitigation
3. Cooperation matters - Regulatory engagement affects outcomes
4. Reputation risk real - Market trust difficult to rebuild
5. Personal liability exists - Executives face individual consequences

Action Items for Manufacturers

Immediate Steps

☐ Audit current compliance status ☐ Review quality management system ☐ Verify technical documentation ☐ Confirm CE marking validity ☐ Assess clinical evidence adequacy

Ongoing Requirements

☐ Monitor regulatory updates ☐ Maintain vigilance systems ☐ Conduct regular audits ☐ Train personnel continuously ☐ Document all decisions

How MD Watchdog Helps

While this guide outlines consequences for manufacturers, MD Watchdog serves the public interest by:

• Identifying non-compliant devices before patient harm
• Professional documentation of violations
• Accelerating regulatory response
• Protecting whistleblower identity
• Ensuring appropriate enforcement

If you’ve identified a potentially non-compliant medical device, your report could prevent patient harm and trigger appropriate regulatory action.

Report a violation through MD Watchdog

Legal Disclaimer

This guide provides general information about MDR enforcement provisions. It does not constitute legal advice. Organizations facing compliance issues should consult qualified regulatory attorneys familiar with medical device law in relevant jurisdictions.

Additional Resources

Official Documents

• MDR 2017/745 Full Text
• MDCG Enforcement Guidelines
• National Penalty Provisions

Industry Resources

• MedTech Europe Compliance
• Regulatory Affairs Professionals Society
• International Medical Device Regulators Forum