Skip to content
8foldgovernance master
  • Services
    • AI Governance
    • Medical Devices
      • Regulatory Roadmap
      • ISO 13485 Design & Build your QMS
      • Quality Management as a Service
      • Technical File Creation & Registration
      • UK Responsible Person
      • Post Market Surveillance
    • International Standards
      • ISO 13485 Certification
      • ISO 42001 Certification
      • ISO 9001 Certification
      • ISO 27001 Certification
    • DTAC
      • DTAC Management
    • Information Governance
      • Data Security & Protection (DSPT)
      • DSPT Audit
      • HIPAA Compliance
    • Clinical Safety and Risk Management
      • DCB0129
      • DCB0160
      • Clinical Safety Officers (CSO)
    • CQC Services
      • CQC Compliance Assessment
      • CQC Registration Support
      • CQC-as-a-Service
      • CQC Regulatory Review & Strategy
    • Cyber Security
    • Governance, Risk & Compliance Advisory
    • 8foldTraining
  • About
    • Meet the Team
    • Partnerships
    • Join Us
  • Blog
  • Case Studies
  • Contact
  • Services
    • AI Governance
    • Medical Devices
      • Regulatory Roadmap
      • ISO 13485 Design & Build your QMS
      • Quality Management as a Service
      • Technical File Creation & Registration
      • UK Responsible Person
      • Post Market Surveillance
    • International Standards
      • ISO 13485 Certification
      • ISO 42001 Certification
      • ISO 9001 Certification
      • ISO 27001 Certification
    • DTAC
      • DTAC Management
    • Information Governance
      • Data Security & Protection (DSPT)
      • DSPT Audit
      • HIPAA Compliance
    • Clinical Safety and Risk Management
      • DCB0129
      • DCB0160
      • Clinical Safety Officers (CSO)
    • CQC Services
      • CQC Compliance Assessment
      • CQC Registration Support
      • CQC-as-a-Service
      • CQC Regulatory Review & Strategy
    • Cyber Security
    • Governance, Risk & Compliance Advisory
    • 8foldTraining
  • About
    • Meet the Team
    • Partnerships
    • Join Us
  • Blog
  • Case Studies
  • Contact
  • +44 (0)1273 569172
Book a Call

← From our blog

Regulatory Guidance for Ambient Voice Technologies in the NHS

  • Published: June 27, 2025
  • Category: Expert Insights

Share this post

Avatar photo
Ryan Palmer

Share this post

Ambient Voice Technologies have been quickly and quietly growing in popularity across the NHS over the past few years following the explosion of generative AI and Large Language Models across the world.

This was in response to findings that numerous AVT solutions were not compliant with the guidance provided by NHS England, which includes specific reference to the UK Medical Device Regulations. 

However, despite recognition of the value and advocation for use of these tools by frontline healthcare professionals, some suppliers have now fallen foul of guidance published by NHSE on the appropriate regulatory classification and compliance requirements of these technologies. 

On the 9th June, the Chief Clinical Information Officer for England, Alec Price-Forbes, issued a letter to suppliers and NHS providers about compliance requirements for Ambient Voice Technologies (AVTs), building on earlier guidance published by the centre on the 27th April 2025.

Regulatory Guidance Regulatory Guidance for Ambient Voice Technologies in the NHS Regulatory Guidance
Download PDF

We understand at 8fold that interpreting Medical Device Regulations and NHS compliance requirements can sometimes be ambiguous and misleading, so we wanted to help suppliers understand the relevance of these compliance requirements to accelerate adoption for the triple benefit of patients, clinicians and the wider healthcare system. 

In this blog, we will unpack:

  • The compliance requirements for Ambient Voice Technologies in the NHS 
  • The nuances of Medical Device Regulations for AVT technologies in the UK, Europe and the US

Compliance Requirements for Ambient Voice Technologies in the NHS

As laid out in the guidance and minimum requirements for AVT adoption, all suppliers must comply with the NHS Digital Technology Assessment Criteria (DTAC), with the main pillars requiring evidence of compliance with:

DCB0129 DCB 0129

DCB0129, with a Clinical Safety Officer that holds a professional registration

dspt toolkit icon, data security and protection icon

GDPR & the NHS Data Secuirty Protection Toolkit (DSPT)

DSPT Services dspt toolkit , data security and protection, DSPT, ,nhs data security and protection toolkit

Data Protection Impact Assessment (DPIA) signed off by the deploying organisation

DSPT Services dspt toolkit , data security and protection, DSPT, ,nhs data security and protection toolkit

Cyber Essentials Plus

Regulatory Guidance Regulatory Guidance for Ambient Voice Technologies in the NHS Regulatory Guidance

CREST Approved Penetration Testing

Some technologies may also need to comply with the Medical Device Regulations, specifically where the technology undertakes summarisation activities that go beyond basic transcription or dictation. If the product does summarisation, it falls under Class 1 as a self-decalred medical device in the UK. If it provides any further diagnosis, management plan, referral or calculation, it could be a Class IIa device requiring approval by an Approved or Notified Body. 

If you would like to learn more about compliance requirements in the UK for Digital Health solutions, you can find out more in our comprehensive guide: https://8foldgovernance.com/all-about-digital-compliance-in-uk-healthcare/

Medical Device Regulations for AVT

There have been numerous calls by industry commentators for Ambient Scribes to be regulated as Medical Devices due to the ‘scope creep’ of the products to provide summarisation and Clinical Decision Support. However, due to the difference in risk classifications in the United States (where these technologies are not considered a Medical Device) and unspecific guidance from the MHRA, many suppliers have failed to identify that their technology is in fact a regulated product. 

Some time ago, the MHRA published Guidance on medical device stand-alone software including apps (including IVDMDs) where it was made clear that:

Regulatory Guidance Regulatory Guidance for Ambient Voice Technologies in the NHS Regulatory Guidance

if the software/ app performs a calculation or interprets or interpolates data and the healthcare professional does not review the raw data, then this software may be considered a medical device. 

Regulatory Guidance Regulatory Guidance for Ambient Voice Technologies in the NHS Regulatory Guidance

For the most part, Ambient Voice Technologies conducting summarisation of consultations and then providing structured outputs into a clinical record, should be considered Medical Devices in the UK.

However, MHRA’s February guidance on Digital Mental Health Technology further elaborated on their position (although it’s not clear why this was only given in a product-specific guidance document). This guidance explains the types of functionality and purposes the MHRA considers medical device functionality (depending on its purpose), including any processing of data “with an algorithm that is not easily verifiable”.

It’s also a similar case for Europe, the guidance document MDCG 2019-11 associated with the EU Medical Device Regulation (MDR), details:

Regulatory Guidance Regulatory Guidance for Ambient Voice Technologies in the NHS Regulatory Guidance

Software which is intended to process, analyse, create or modify medical information may be qualified as a medical device software if the creation or modification of that information is governed by a medical intended purpose.

Regulatory Guidance Regulatory Guidance for Ambient Voice Technologies in the NHS Regulatory Guidance

By virtue of the fact that AVT can summarise documentation, this puts it squarely in scope of EU MDR. 

However, in the US, the provisions of the 21st Century Cures Act and the FDA’s guidance on Clinical Decision Support Software creates a regulatory environment where tools intended to make recommendations to healthcare professionals that meet four criteria (not for signal acquisition; displays, analyses or prints medical information; supporting a healthcare professional; healthcare professional can assess the basis of the recommendation) are not considered Medical Devices on the US market.

Very similar guidance also exists for the Canadian market.

Whats next for Ambient AI?

With this letter and a renewed focus on safety, trustworithiness and compliance, the AVT market is definitely set for a tumultuous period. Those who have been ahead of the curve on compliance are likely to benefit in the form of access to opportunities, whilst those slower to accept the changes may fall at the way side. 

We’ve already seen this following the boom of digital health apps which entered the market post-COVID, with many of them now having to address compliance as an after thought, or even consider transitioning to being a medical device because of AI-based functionality they want to offer. 

Whats clear is that Ambient AI will not be the first category to fall foul of the regulations for SaMD. 

One thing we know for certain is that this communication from NHSE, alongside the openness of many suppliers to share their regulatory and compliance status, is a promising sign of how AI can be adopted at scale across the NHS with regulatory compliance as a key indicator of safety and performance. 

AI governance in healthcare, EU AI Act compliance, Medical AI compliance, AI risk management, Healthcare AI regulations, ISO 42001 certification, AI regulation

Building AI for Healthcare?

If you’re building Ambient AI for healthcare and are concerned about whether you meet the requirements to do business in the NHS, we would love to help.

Get in touch for a FREE, no-obligation review of your product and compliance documentation. We’ll help you get from where you are, to where you need to

Get in Touch

Other Articles​

Loading...
ROPA

FAQ: What is a Records of Processing Activity (RoPA)?

Read More →

November 24, 2025
Digital Mental Health

Expert Insights: Crisis Signposting in Digital Mental Health

Read More →

July 15, 2025

Navigating the UK’s Health Tech Landscape: Building Foundations for Global Success

Read More →

July 2, 2025
8foldgovernance master

+44 (0) 1273 569172

info@8foldgovernance.com

SERVICES

  • AI Governance
  • Medical Device Registration
  • ISO Compliance
  • Full DTAC Support
  • Information Governance
  • Clinical Safety
  • Data Security & Protection
  • CQC Services
  • Cyber Security
  • 8foldTraining

LINKS

  • Contact
  • About
  • Meet The Team
  • Blog
  • Join Us
  • Case Studies
  • Charity Work
  • Partnerships
  • FAQs
DSPT Data Security And protection Toolkit 8Fold
Information Governance Badge 8 Fold
NPSORE
ABHI Member

 © 2026 8fold | Privacy Policy | Cookie Policy | Terms & Conditions

X We use cookies on our website to give you the most relevant experience by remembering your preferences and repeat visits. By clicking “Accept”, you consent to the use of ALL the cookies. However you may visit Cookie Settings to provide a controlled consent.
Read More ACCEPT Cookie settings
Manage consent

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these cookies, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may have an effect on your browsing experience.
Necessary
Always Enabled
Necessary cookies are absolutely essential for the website to function properly. These cookies ensure basic functionalities and security features of the website, anonymously.
CookieDurationDescription
cookielawinfo-checkbox-analytics11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional11 monthsThe cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy11 monthsThe cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.
Functional
Functional cookies help to perform certain functionalities like sharing the content of the website on social media platforms, collect feedbacks, and other third-party features.
Performance
Performance cookies are used to understand and analyze the key performance indexes of the website which helps in delivering a better user experience for the visitors.
Analytics
Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics the number of visitors, bounce rate, traffic source, etc.
Advertisement
Advertisement cookies are used to provide visitors with relevant ads and marketing campaigns. These cookies track visitors across websites and collect information to provide customized ads.
Others
Other uncategorized cookies are those that are being analyzed and have not been classified into a category as yet.
Save & Accept