One eye on the business

There is a version of regulatory affairs that most businesses recognise: the department that reviews labels, submits technical files, manages notified body audits, and tells the commercial team that what they want to do is not possible. It is a function defined, in the organisational imagination, by what it prevents rather than what it produces. A cost centre and a necessary overhead.

I want to suggest that this is not only an ungenerous characterisation, but a commercially costly one.

The data that doesn't travel

The data that flows through a regulatory affairs function in the ordinary course of its work is, if you look at it with a commercial eye, remarkable. State of the art searches conducted for clinical or performance evaluation reports survey the competitor landscape systematically — device by device, clinical claim by clinical claim. Post-market surveillance aggregates complaint data, vigilance reports, and published literature into a continuous picture of how your products, and your competitors' products, are performing in clinical use. Supplier audits generate a detailed risk profile of your supply chain. Registration records map, in real time, where you are authorised to sell, at what regulatory cost, and over what horizon. Benchmarking exercises for technical documentation reveal, with some granularity, where a competitor's clinical evidence is strong and where it is thin.

None of this is generated for commercial purposes. It is generated because MDR or IVDR, ISO 14971 and other standards require it. But the commercial utility of the intelligence is real, regardless of why it was produced. The problem is that it rarely travels. It sits in technical files, CAPA records, PMS reports, and audit trails — and the people making decisions about market entry, product portfolio, supplier strategy, and competitive positioning rarely see it.

Make or buy — the wrong conversation

Take the make-or-buy decision. In most businesses, this is a finance-led exercise: margin analysis, capital requirements, overhead absorption. Regulatory affairs is consulted to confirm whether a subcontractor holds the right certifications. That is a narrow use of a function that already holds the operational intelligence that can influence the decision. Non-conformance trends, CAPA histories, and technical file dependencies on specific subcontractors tell you considerably more about the true risk profile of a supply relationship than a margin model does. Furthermore, subcontracting is not always a cost decision — sometimes it is the rational choice for containing a specific risk within the supply chain rather than importing it into the main facility. A component incorporating high-risk animal tissue brings contamination risk, specialist handling requirements, and a particular regulatory complexity that a dedicated subcontractor is structurally better placed to manage. RA understands this calculus.

Geographic expansion, seen from the inside

The same logic applies to geographic expansion. Decisions about which markets to enter next are commercial decisions, shaped by revenue opportunity and sales capability. But RA holds a live map of registration status, submission pathway complexity, renewal timelines, and the resource cost of maintaining a registration in each jurisdiction. That is, in effect, a ranked view of market opportunity adjusted for regulatory cost and time-to-market.

Post market surveillance as a commercial roadmap

Post-market surveillance deserves particular attention, because it is probably the most underused source of commercial intelligence in medtech. The regulatory obligation is clear enough — you must collect and analyse post-market data, identify trends, feed findings back into risk management. What is less routinely acknowledged is that complaint patterns and adverse event data reveal things that no market research exercise will tell you: the use cases the device was not designed for, the workarounds clinicians have developed, the clinical needs the current design does not satisfy. That is a product development input. It is also a commercial roadmap.

Regulatory change is competitive change

Then there is regulatory change monitoring — the ongoing task of tracking evolving standards, updated guidance, and shifts in what regulators expect by way of clinical evidence. Most businesses treat this as compliance housekeeping. It is also competitive intelligence. A raised bar on clinical evidence requirements, a new post-market obligation, or a tightening standard in a particular device category will not affect all competitors equally. Smaller players with thinner clinical evidence packages, or less mature quality systems, will feel it more acutely. RA sees this coming. The commercial team rarely hears about it until the market has already moved.

The structural problem worth closing

I am not arguing that RA should become a strategy function, or that regulatory professionals should be recast as commercial analysts. The regulatory job is demanding enough, and its existing responsibilities — patient safety and compliance — should not be diluted. But there is a structural problem in how most medtech businesses are organised that means commercially relevant intelligence is being generated continuously and used for compliance purposes only.

RA professionals are, in effect, running a continuous commercial intelligence operation. They are surveying the market, profiling competitors, assessing supplier risk, mapping geographic opportunity, and monitoring the competitive implications of regulatory change — as a byproduct of doing their regulatory jobs. Most of them do not think of it in those terms. Neither does leadership. That, more than anything, is the gap worth closing.