Contents
- 1. Regulatory Status
- 2. UKCA Marking
- 3. Intended Purpose
- 4. Contraindications
- 5. Standards Compliance
- 6. Quality Management
- 7. Clinical Safety
- 8. Risk Management
- 9. Data Protection
- 10. Information Security
- 11. Vigilance
- 12. Software Lifecycle
- 13. Training & Support
- 14. Document Availability
- 15. Regulatory Contact
- 16. Revision History
1 Regulatory Status
1.1 Medical Device Registration
HaemoSync is a registered medical device in the United Kingdom.
MHRA Registration
Medicines and Healthcare products Regulatory Agency
| Attribute | Detail |
|---|---|
| Regulatory Authority | Medicines and Healthcare products Regulatory Agency (MHRA) |
| Registration Reference | 2025112801448253 |
| Device Classification | Class I Medical Device |
| Regulation | UK Medical Devices Regulations 2002 (SI 2002 No. 618, as amended), Part II |
| GMDN Code | 61087 |
| GMDN Term | Clinical management support software |
| UKCA Marked | Yes |
| UKCA Marking Date | 29 November 2025 |
1.2 Manufacturer
| Attribute | Detail |
|---|---|
| Legal Manufacturer | BMZ Ethical Investments Ltd |
| Registered Address | 20-22 Wenlock Road, London, England, N1 7GU |
| Contact Email | admin@lambertsportsclinic.co.uk |
| Contact Telephone | 0208 133 5694 |
2 UKCA Marking
UK Conformity Assessed
HaemoSync bears the UKCA (UK Conformity Assessed) marking, indicating conformity with the applicable requirements of UK legislation.
2.1 Declaration of Conformity
We declare under our sole responsibility that HaemoSync conforms to the relevant provisions of the UK Medical Devices Regulations 2002.
Document Request
A copy of the Declaration of Conformity is available upon request by contacting admin@lambertsportsclinic.co.uk.
2.2 Conformity Assessment
As a Class I medical device, HaemoSync has undergone self-certification conformity assessment in accordance with Annex VII of Directive 93/42/EEC as transposed into UK law.
3 Intended Purpose
3.1 Intended Use Statement
HaemoSync is a clinical decision support software intended to:
Pre-Analysis
Assist healthcare professionals in designing personalised blood test panels based on patient history, symptoms, and clinical requirements through an intuitive interface or natural language input.
Post-Analysis
Generate comprehensive reports from blood test results, including:
- Clinical summaries with suggested next steps for healthcare professionals
- Patient-friendly informational reports
3.2 Intended Users
- Qualified healthcare professionals (doctors, nurses, clinical practitioners)
- Registered clinics and medical practices
- Laboratories and diagnostic service providers
3.3 Intended Patient Population
- Adult patients undergoing routine or diagnostic blood testing
- Patients referred by healthcare professionals for blood panel analysis
3.4 Intended Use Environment
- Clinical settings (GP surgeries, private clinics, hospitals)
- Laboratory environments
- Remote/telemedicine consultations (with appropriate clinical oversight)
4 Contraindications and Limitations
4.1 Contraindications
HaemoSync is NOT intended for:
- Use by members of the general public for self-diagnosis or self-treatment
- Emergency, critical care, or life-threatening situations requiring immediate clinical intervention
- Providing definitive medical diagnoses
- Replacing clinical examination, professional judgement, or patient consultation
- Paediatric use without appropriate clinical oversight
- Veterinary use
4.2 Limitations
Important Limitations
- The accuracy of outputs depends on the quality and completeness of input data
- The software should be used in conjunction with clinical guidelines and professional expertise
- AI-generated recommendations require verification by qualified healthcare professionals
- The software does not account for all possible patient-specific factors or rare conditions
- Results should be interpreted within the context of the patient's full clinical picture
5 Standards Compliance
HaemoSync has been designed and developed in accordance with the following harmonised standards:
BS EN ISO 13485:2016
Medical devices – Quality management systems
BS EN ISO 14971:2019
Medical devices – Application of risk management
BS EN 62304:2006+A1:2015
Medical device software – Software life cycle processes
BS EN 62366-1:2015
Medical devices – Application of usability engineering
BS EN ISO 27001:2022
Information security management systems
6 Quality Management System
6.1 QMS Overview
BMZ Ethical Investments Ltd maintains a Quality Management System (QMS) compliant with ISO 13485:2016 for the design, development, and maintenance of HaemoSync.
6.2 Key QMS Elements
Design Controls
Documented design and development processes with verification and validation
Risk Management
Ongoing risk assessment and mitigation per ISO 14971
Document Control
Controlled documentation and change management
CAPA
Corrective and Preventive Action procedures
Post-Market Surveillance
Continuous monitoring of device performance and safety
Internal Audits
Regular audits to ensure ongoing compliance
7 Clinical Safety
7.1 Clinical Evaluation
HaemoSync has undergone clinical evaluation in accordance with MEDDEV 2.7/1 Rev 4 guidance, including:
- Review of relevant scientific literature
- Analysis of clinical data from equivalent devices
- Evaluation of software performance and accuracy
- Assessment of benefit-risk profile
7.2 Clinical Evidence
Validated in partnership with Alderley Lighthouse Laboratory
7.3 Post-Market Clinical Follow-Up
We conduct ongoing post-market clinical follow-up (PMCF) to:
- Monitor clinical performance in real-world use
- Identify any previously unknown risks
- Gather feedback from healthcare professionals
- Update clinical evaluation as new evidence emerges
8 Risk Management
8.1 Risk Management Process
HaemoSync is subject to a comprehensive risk management process in accordance with ISO 14971, including:
- Hazard identification and risk analysis
- Risk evaluation against acceptability criteria
- Risk control measures implementation
- Residual risk assessment
- Benefit-risk analysis
- Production and post-production monitoring
8.2 Key Risk Controls
| Hazard | Risk Control Measure |
|---|---|
| Incorrect panel recommendation | Clear labelling as decision support; requires professional verification |
| Misinterpretation of results | Clinical disclaimers; recommended for use by qualified professionals only |
| Data entry errors | Input validation; confirmation prompts |
| System unavailability | Redundant infrastructure; backup procedures |
| Data breach | Encryption; access controls; security monitoring |
| Software errors | Rigorous testing; version control; incident reporting |
9 Data Protection Compliance
9.1 UK GDPR Compliance
HaemoSync is designed to support compliance with the UK General Data Protection Regulation (UK GDPR) and Data Protection Act 2018.
| Principle | Implementation |
|---|---|
| Lawfulness, fairness, transparency | Clear privacy policy; lawful basis documented |
| Purpose limitation | Data used only for specified healthcare purposes |
| Data minimisation | Only necessary data collected |
| Accuracy | User controls to update/correct data |
| Storage limitation | Defined retention periods; secure deletion |
| Integrity and confidentiality | Encryption; access controls; security measures |
| Accountability | Documentation; DPIAs; records of processing |
9.2 Data Processing Role
| Scenario | BMZ Ethical Investments Ltd Role |
|---|---|
| Account/registration data | Data Controller |
| Patient data entered by clinics | Data Processor |
| Usage analytics (anonymised) | Data Controller |
Data Processing Agreement
A Data Processing Agreement (DPA) is available for organisations using HaemoSync to process patient data. Contact admin@lambertsportsclinic.co.uk to request.
10 Information Security
10.1 Security Framework
Our information security management is aligned with ISO 27001:2022 and includes:
Access Control
Role-based access; multi-factor authentication
Encryption
TLS 1.2+ in transit; AES-256 at rest
Network Security
Firewalls; intrusion detection; DDoS protection
Application Security
Secure coding practices; regular penetration testing
Physical Security
UK-based data centres with physical access controls
Incident Response
Documented procedures; breach notification processes
10.2 Data Location
All data is stored and processed within the United Kingdom in secure, certified data centres.
10.3 Business Continuity
- Automated backups with geographically redundant storage
- Disaster recovery procedures with defined RTOs and RPOs
- Regular testing of backup and recovery processes
11 Vigilance and Incident Reporting
11.1 Adverse Event Reporting
We maintain a vigilance system for monitoring and reporting adverse events and field safety corrective actions in accordance with MHRA requirements.
11.2 Reporting an Incident
Healthcare professionals or users who experience or become aware of any incident involving HaemoSync should report it to:
Incident Reporting
Email: admin@lambertsportsclinic.co.uk
Subject Line: HaemoSync Incident Report
Telephone: 0208 133 5694
Please include:
- Description of the incident
- Date and time of occurrence
- Patient impact (if any)
- Software version
- Screenshots or supporting information
11.3 MHRA Reporting
Serious Incidents
Serious incidents may also be reported directly to the MHRA:
MHRA Yellow Card Scheme
Website: https://yellowcard.mhra.gov.uk
Telephone: 0800 731 6789
12 Software Lifecycle Management
12.1 Version Control
HaemoSync follows a structured version control system:
| Version Type | Description | Example |
|---|---|---|
| Major | Significant new features or changes | V2.0 |
| Minor | Enhancements and improvements | V1.1 |
| Patch | Bug fixes and security updates | V1.0.1 |
12.2 Current Version
HaemoSync Version 1.0
Release Date: 29 November 2025
12.3 Update Policy
- Security patches are applied promptly
- Users are notified of significant updates via email and in-app notifications
- Release notes are provided for all updates
- Critical safety updates may be applied automatically
13 Training and Support
13.1 User Training
We provide:
- Online user guides and documentation
- Video tutorials
- Onboarding support for new organisations
- Webinars and training sessions (upon request)
13.2 Technical Support
| Channel | Availability |
|---|---|
| admin@lambertsportsclinic.co.uk | |
| Telephone | 0208 133 5694 (Mon-Fri, 9am-5pm) |
| Response Time | Within 24 hours (standard); 4 hours (critical issues) |
14 Document Availability
The following documents are available upon request:
| Document | Availability |
|---|---|
| Declaration of Conformity | On request |
| Summary of Safety and Clinical Performance | On request |
| Instructions for Use (IFU) | Within software / on request |
| Data Processing Agreement | On request |
| Technical Documentation Summary | On request (under NDA) |
Request Documents
Contact: admin@lambertsportsclinic.co.uk
15 Regulatory Contact
For regulatory enquiries, please contact:
Regulatory Affairs
BMZ Ethical Investments Ltd
20-22 Wenlock Road, London, England, N1 7GU
admin@lambertsportsclinic.co.uk
0208 133 5694
16 Revision History
| Version | Date | Changes |
|---|---|---|
| 1.0 | 29 November 2025 | Initial release |