Contact Us

How Does Saudi Arabia Regulate Healthtech and SAMDS?

  • Home
  • How Does Saudi Arabia Regulate Healthtech and SAMDS?
Saudi Arabia Healthtech Regulations: SFDA Rules Explained

When the Saudi Food and Drug Authority (SFDA) published MDS-G027, its Guidance on Digital Health Products, on 11 August 2025, it marked an important consolidation of the Kingdom’s regulatory thinking on one of healthcare’s fastest-moving areas. The document should be read alongside earlier SFDA instruments that have gradually built Saudi Arabia’s digital health regulatory architecture over the past decade or so. Its significance lies less in creating an entirely new regime than in clarifying how existing rules apply to a fast-expanding range of digital products. 

The Framework Before MDS-G027

  • The SFDA’s work on Software as a Medical Device (SaMD) began with MDS-G23 (Guidance on Software as a Medical Device), first circulated for public comment in March 2018 and finalised in April that year. That guidance incorporated the four foundational IMDRF SaMD documents, covering definitions, risk categorisation, quality management, and clinical evaluation. It established that SaMD is standalone software with a medical purpose, adopted the IMDRF two-dimensional risk matrix, and confirmed that mobile apps meeting the definition are regulated as medical devices. However, MDS-G23 was framed as “considerations” so it functioned more as interpretive guidance than hard law.
  • Manufacturers seeking to place medical devices, including SaMD, on the Saudi market must obtain Medical Devices Marketing Authorization through the GHAD portal, appoint a Saudi Authorized Representative if based abroad, prepare a technical file, demonstrate ISO 13485-compliant quality management, and follow the risk-based classification scheme in MDS-G5, which divides devices into Classes A through D. That framework applies equally to hardware and software, with a product’s intended use and risk profile determining its class.
  • A more specialised layer came with MDS-G010 in January 2023, SFDA’s Guidance on Artificial Intelligence (AI) and Machine Learning (ML) technologies based Medical Devices. That document covers the device lifecycle, including data quality, algorithm validation, post-market change notification, and links explicitly with the SFDA’s cybersecurity guidance. It also signals that Saudi regulation is not limited to static software but already contemplates AI-enabled products and their governance.

What MDS-G027 Adds

  • Against that background, MDS-G027 is mainly clarificatory and integrative. Its stated purpose is to define the categories of digital health products within SFDA scope and distinguish regulated medical devices from general wellness products. That matters because digital health now includes mHealth apps, digital therapeutics, telemedicine systems, wearables, VR/AR tools, AI-enabled software, and other products that do not always fit neatly into older device categories. Similar regulatory classification issues are increasingly being examined by technology lawyers in UAE as digital health solutions continue to expand across the region.
  • The guidance maps eight product categories and treats SaMD as the master concept under which most regulated digital health products fall. Its clearest contribution is the practical treatment of the SaMD/SiMD boundary, using a decision flow that asks whether software is an accessory or hardware driver, whether it analyses data beyond storage or archiving, and whether it is intended to benefit individual patients. This gives manufacturers a more operational way to assess classification than existed before.
  • MDS-G027 also improves the handling of IVD-related software. The SFDA’s earlier IVD framework and general device rules already applied in principle, but the new guidance shows more explicitly how software that generates diagnostically relevant information from IVD data should be categorised. That is especially useful for laboratory analytics, point-of-care software, and AI-powered diagnostic platforms. 

Wellness and Consumer Products

  • Another useful contribution is the section on general wellness devices. This area had not previously been codified in a systematic way for digital health products in Saudi Arabia. MDS-G027 adopts a two-part test: a product is a wellness device if it makes no disease-specific claim, or if any disease reference is limited to lifestyle management rather than diagnosis, cure, prevention, or treatment. The guidance also requires bilingual labelling in Arabic and English for non-medical products, reflecting the Kingdom’s regulatory environment.
  • The guidance additionally addresses the risk of reclassification where a wellness product is knowingly recommended for medical purposes. In such cases, the manufacturer must report the issue to the SFDA. This is important because it prevents companies from using wellness branding to avoid medical device obligations while effectively marketing a medical product.

Limits and Open Questions

  • The guidance does not resolve the hardest global question in digital health regulation: how to deal with continuously learning algorithms after authorisation. MDS-G027 confirms that AI/ML enabled software with a medical purpose is regulated as SaMD and cross-refers to MDS-G010 on validation, transparency, human oversight, and lifecycle change management. But it does not address more advanced issues such as predetermined change control plans or software that materially changes its performance over time. That is likely to require either an updated MDS-G010 or a dedicated future guidance document.
  • The SFDA has also shown, in practice, that it will apply independent scrutiny rather than relying on foreign approvals. A recent rejection of an AI/ML powered SaMD intended to predict type 2 diabetes risk illustrates that the authority expects products to meet Saudi safety and efficacy standards on their own merits. For market entrants, that is an important signal that regulatory strategy must be built specifically for the Kingdom.

Regulatory Direction

  • As of the article’s date, no later SFDA digital health guidance has been published after MDS-G027. The current framework now consists of MDS-G23 on SaMD, MDS-G010 on AI/ML medical devices, cybersecurity guidance, and the innovative medical devices pathway. Taken together, these instruments give Saudi Arabia one of the more structured digital health regulatory frameworks in the region. Regulatory developments of this nature are also closely followed by a healthcare law firm in UAE advising clients on digital health, medical device compliance, and cross-border healthcare regulations.
  • The practical message is that intended use remains the key classification trigger. MDS-G027 gives manufacturers better tools to determine whether a product is a medical device or a wellness product, and whether it falls within SaMD, SiMD, or IVD-related categories. But once a product is classified as a medical device, the full regulatory machinery applies, including technical documentation, clinical evaluation, cybersecurity, AI validation where relevant, post-market surveillance, and local regulatory representation. In that sense, MDS-G027 clarifies the gate, but not the obligations beyond it.

Authors: Shantanu Mukherjee, Varun Alase

Other Posts

Our Clients

Spektar
Engrail
UltraHuma
WSA
Kelix
Karkinos
Trampoline-1
Power
temple
Konfer-1
Xplorazzi
SBS-1

Awards & Recognitions

Add Your Heading Text Here
Add Your Heading Text Here
Add Your Heading Text Here
Add Your Heading Text Here
Add Your Heading Text Here

Testimonials

My relationship with Ronin Legal and Shantanu has advanced exponentially in a very positive direction in a very short time. The Ronin team is zealous in their partnership with us to advance the mission of our small start-up to become a world leader in neuroscience development. Ronin has taken the lead with review of our legal and technical documents and contracts. They are subject matter experts in general counsel services across our global environment. It is a pleasure to work with a team that is pragmatic and responsive in all circumstances. They are second to none.

Janet Flisak

Executive Director, Clinical Development, Engrail Therapeutics

Shantanu and the team at Ronin have been invaluable partners for our investment firm’s expansion into co-development of specialty pharmaceutical drugs. As we made the transition from more traditional VC investing to direct drug development collaborations, the team at Ronin have utilized their deep domain expertise in cross border pharma to help us set up an effective and compliant structure for our project. I would highly recommend Ronin to any organization in the life sciences space that is looking for legal partners with in depth understanding of the various nuances of this dynamic sector.

Zarvaan Merchant

Managing Director, Spektar Therapeutics

I’ve been very happy with Ronin’s ability to ramp resources up or down depending on what we require in a particular week or month. In addition, the ability to connect with multiple lawyers across jurisdictions quickly (US, UK, UAE, Singapore), help us to assess international law firms and then work with them to get the best legal advice is very appreciated.

Bhuvan Srinivasan

Chief Business Officer, Ultrahuman

Shantanu and the Ronin team have been very pragmatic and responsive business partners, working with Konfer – an agentic genAI product for confident continuous compliance to Regulations. They analysed the state of AI regulation in various countries, and reviewed the EU AI Act and other relevant AI legislation offerings of our product. The team’s ability to align complex legal information to product offerings has been invaluable to us. Ronin Legal has negotiated our business contracts for partnerships. They’re solution-oriented and cost-effective, and I would highly recommend Ronin Legal to startups and tech companies everywhere, and especially those building AI powered businesses.

Debu Chatterjee

CEO, Founder, Konfer.AI.

I have worked with the Shantanu, and his team, for a number of years during which time his insight and acumen have helped us greatly in the negotiation of a number of pharmaceutical licensing agreements and in the formation of new subsidiaries. I thoroughly recommend Ronin Legal to anyone seeking advice and guidance in pharmaceutical deal making.

Damon Smith

Chairman, Altus Group of Companies

Shantanu and team Ronin were meticulous, detailed, persevering and most importantly batting entirely for our side through our seed round fundraise and beyond. They were always approachable, available and balancing principle with pragmatism. I would highly recommend the team for any startup related legal matter.

Abhik Ghosh

Founder, 26 Décor

First of all, of behalf of SIIX Corporation, we wish to congratulate you & team on the launch of your new website!

 

We are very happy to be engaged with you & your professional team on our business venture in India and on establishing our JV initiatives. With your expertise, integrity, and commitment to providing trusted legal guidance, we truly believe to achieve our goals and successfully complete our JV partnership and, to expand our business in India with your support.

Shanmugam Gurusamy

Managing Director, SiiX India Private Limited

Ronin Legal has become an integral part of our deal process. Their solution-oriented mindset, combined with consistently high-quality work and exceptional responsiveness, makes contract negotiations smoother and more efficient. They truly understand our business needs

Dr. Madeha Khan

Working with Shantanu and Ronin Legal has been truly transformative for my startup. From our very first meeting, Shantanu stood out with his approachable manner and deep commitment to understanding my business. He consistently showed genuine interest and empathy, always providing clear, practical advice that’s perfectly tailored to our needs.

 

What truly sets Shantanu and Ronin Legal apart is their unique blend of legal expertise and a true partnership mindset. They deeply understands the challenges of building a startup, cutting through jargon to give advice that’s actually useful and helping us avoid costly mistakes without any pressure. It feels less like a traditional client relationship and more like having a dedicated co-pilot invested in our journey. They have become an invaluable ally, that we trust and depend on.

Tani Tasopoulou

Founder & CEO, OrgDesignWays Consulting

I cannot speak highly enough about the exceptional service provided by Ronin Legal. Their team made what could’ve been a complicated and stressful IP process feel smooth and manageable. From the outset, their team demonstrated a deep understanding of intellectual property law, offering not only expert legal guidance but also a strategic mindset advising on protection of our brand in various regions. They were responsive, thorough, and truly acted as partners in safeguarding our IP assets. Their attention to detail, clarity in communication, and professionalism gave us complete confidence throughout the process thus far. I wouldn’t trust anyone else with our intellectual property.

Karen Liao

The Wrong Gym

In The Media

MAPPING THE LANDSCAPE — INAUGURAL ISSUE: Private Wealth, Complex Assets & Cross-Border Matters
How the UAE Ensures Your Biometric Data is Protected: A Closer Look
What Biden's Support To TRIPS Waiver Proposal Means For The Fight Against Covid-19 Pandemic
Deep Pockets, Strong Relations: Corporate Hope for COVID Shots
Jab of Indemnity: A Lowdown on Why This Features on Pfizer, Moderna Wish List
Slouching towards oversight - artificial intelligence and the law
Fitness Wearables and the Law Part III: India
E-pharmacies and the law: an uneasy balance
America’s AI Action Plan: A Heady Cocktail of Techno-optimism, Culture Wars and Geopolitics
The Increased Need to Protect Health Data Privacy in a post- Roe World
Oracle, Cerner, and the Quest for Health Care Data
The ADGM’s New Cyber Risk Management Framework: A Closer Look
Fitness Wearables and the Law in EU
How Do We Regulate Chatbots? A Closer Look
How is Biometric Data Protected Under Indian Law?
Is Your Watch FDA Approved? Fitness Wearables and the Law
Cabinet Decision No. 35 of 2025: When Do Foreign Entities Owe UAE Tax?
The Regulation of Telemedicine: A Global Comparative Analysis
View All

Legal updates

When Can Personal Data Be Processed for Research in The EU And UAE?
June 25, 2026

When Can Personal Data Be Processed for Research in The EU And UAE?

How Does Saudi Arabia Regulate Healthtech and SAMDS?
June 24, 2026

How Does Saudi Arabia Regulate Healthtech and SAMDS?

India’s Top Court Proposes Rules for Use of AI in Courts
June 8, 2026

India’s Top Court Proposes Rules for Use of AI in Courts

View ALL

Stay Updated.

To subscribe to our newsletter, click on the link below

SUBSCRIBE NOW

Copyright © 2025  |  Ronin Legal   |   Website Maintained by LawStrings Management  |  Privacy Policy  |  Cookie Policy  |  Terms of Use

Leave Us A Message

Cookie Consent with Real Cookie Banner