The FDA isn’t a monolith. Well, it IS, but it’s also fallible, inconsistent, fluid and sometimes surprising – which is why FDA strategies for medtech innovators in 2025 are evolving faster than ever.
As the agency modernizes its review frameworks, tightens post-market oversight, and expands its digital health and AI guidance, medical device leaders face both uncertainty and opportunity. To stay ahead, medtech companies must rethink how they approach regulatory planning — shifting from reactive compliance to proactive strategy.
That was the clear theme in our recent FDA state of the union address (OK, presentation), where we unpacked the latest trends in pre-submissions, wellness devices, and cybersecurity. What emerged was a candid picture of how the agency is working today, and how companies can navigate it with fewer headaches. (Hint: It ain’t pretty, but it’s doable).
If you missed the live discussion, here are the highlights—and why they matter for your next submission.
Pre-Subs Still Work—If You Know How to Use Them
You are scheduling your pre-subs, right? RIGHT?
The FDA’s pre-submission (Q-sub) program remains one of the most powerful tools companies can use to de-risk product development. But it only works if you use it, and if you’re disciplined. That means coming prepared, citing directly from Appendix 2 of the 2024 Q-sub guidance, and limiting your scope to three or four key topics.
The tail here is simple: a strong pre-sub is less about asking open-ended questions, and more about showing your strategy clearly enough that FDA has to respond in kind.
Inherent Use: The FDA’s New Favorite Weapon
Forget what you think about intended use or indications for use. FDA has added a new layer: inherent use.
Recently, companies like Whoop have faced warning letters not because of their stated claims, but because of what the public would infer. This shift is already reshaping the line between wellness and medical devices. And it means your marketing, labeling, and even social media posts are now part of your regulatory risk. If you don’t have RA approval for every claim, you’re exposed.
When to Push Back on the FDA
One of the boldest takeaways: don’t assume FDA feedback is always correct.
In one case, reviewers told a client that silicone was “carcinogenic, mutagenic, and reprotoxic” and should be justified in testing. The problem? The comment didn’t come from a biocompatibility expert at all—it came from a consulting physician who knew nothing at all about biocompatibility. Or silicone, for that matter.
Knowing when to respectfully challenge the agency isn’t arrogance—it’s survival. And the companies that do it with evidence protect their projects from bad precedent.
The Cross-Division Problem
Here’s a frustration medtech innovators face: devices that straddle two divisions getting stuck in regulatory limbo.
A Foley catheter with a temperature sensor should, in theory, be a straightforward 510(k). But lately FDA reviewers have told companies to file two separate submissions if multiple offices are involved. That not only doubles the burden—it creates contradictory reviews.
Don’t assume common sense will carry the day. Plan for complexity when your product touches multiple specialties.
Clinical Data Rules Are Shifting
Another point of contention: FDA’s stance on outside-U.S. (OUS) clinical trials.
FDA reviewers are looking for US-based trials, even when comparable data from other regions was available. That blanket approach may not make scientific (or financial) sense, but it’s a sign of where the bar is moving, and you need to be prepared.
For startups, this creates a high-stakes decision: either invest in costly U.S. trials, or risk rejection with OUS-heavy datasets. Either way, strategy must start long before first patient enrollment.
Cybersecurity Isn’t Optional Anymore
Finally, a surprising but telling trend: even consultants are being asked for cybersecurity policies.
I recently had a European client who wanted to my firm’s internal security SOPs before moving forwar, and many Fortune 500s and hospitals are now demanding cybersecurity assurances from everyone in their supply chain, whether or not the product is connected.
That means training your team on phishing, access control, and data handling. For medical devices, regulatory risk now extends beyond devices to the people and systems behind them.
Robust FDA Strategies for MedTech Innovators Really DO Matter
The FDA isn’t getting simpler. Between new interpretations like inherent use, stricter demands on clinical data, and rising scrutiny on cybersecurity, the burden is only increasing. But with the right expertise, you can navigate the complexity, push back when necessary, and come out stronger.
Regulatory requirements don’t stand still—and neither should your approach to them.
If you want to go a bit deeper on this, I’ve unpacked some of the practical implications (and a few common pitfalls):
-
The full video presentation: https://youtu.be/R0K9UsbxfLw
- Video: Apple Got Clearance. WHOOP Got a Warning Letter. Here’s What That Signals
Fair warning: none of it is particularly glamorous—but it is the stuff that tends to make or break programs.
