Product Security

Securing innovation that enables Life Unlimited

At Smith+Nephew, our purpose is to improve lives. As our medical technologies continue to evolve through software, connectivity, and data, we are committed to protecting what matters most - patients, clinicians, and healthcare systems.

Product security is a fundamental part of how we bring our technologies to life. Thoughtfully designed from the start; carefully maintained throughout the lifecycle of each product.

Secure by Design

We apply a Secure by Design approach that integrates security into every stage of the product journey - from concept and development to deployment and ongoing support. This risk-based approach aligns with global regulatory requirements and recognized industry best practices, and is governed with the same discipline as safety, quality, and clinical performance.

In practice, our Secure by Design commitment means we:

Consider cybersecurity risks early in product design
Embed appropriate security controls into software, hardware, and connected systems
Verify security through testing and independent assessment
Support secure use, configuration, and maintenance
Monitor and respond to emerging threats over time

Learn how Smith+Nephew protects personal data

Aligned with industry standards

Smith+Nephew aligns its product security and information protection practices with widely recognized industry standards and regulatory requirements, including but not limited to US FDA, EU MDR, HIPAA, and GDPR, and is independently validated through leading assurance frameworks.

We have achieved SOC 2 attestation and HITRUST certification, demonstrating our commitment to strong, consistent controls for security, availability, and protection of sensitive information.

Title

Text

Explore