Regulating Clinical AI in the Age of Agents — Why New Rules Are Needed for Health Software

February 23, 2026 • sandra Krishnan • 2 min read
Regulating Clinical AI in the Age of Agents — Why New Rules Are Needed for Health Software

Why Traditional Regulation Struggles with Modern AI

Healthcare software has long been governed by frameworks designed for deterministic medical devices or confined clinical decision support systems (CDSS). These systems have predictable behavior: given specific input, they return a consistent output and can be tested across defined clinical conditions.

However, AI models — especially unconfined non-deterministic systems like large language models — do not behave this way. Their outputs can vary depending on context, input phrasing, and underlying model randomness.

This unpredictability raises concerns because many of these AI applications are used to support clinical decision-making, potentially influencing patient diagnosis, treatment planning, or other sensitive outcomes.

What Makes AI Regulation Especially Challenging

In the article, authors identify several key regulatory obstacles:

  1. Non-deterministic behavior: AI systems do not always produce the same result for the same input, complicating traditional validation and testing.

  2. General-purpose operation: Unlike confined clinical systems, newer AI can generate wide-ranging outputs that extend beyond defined medical device classifications.

  3. Blurred use cases: AI tools originally developed for general health or administrative tasks may be used by clinicians in high-risk contexts without clear oversight.

These issues suggest that AI used in healthcare often doesn’t fit neatly into existing regulatory categories like Software as a Medical Device (SaMD) — a framework based on intended use and output behavior.

The Case for New Governance Paradigms

To address the gaps between AI capabilities and regulation, the authors argue for updated governance approaches that:

  • Account for non-deterministic outputs

  • Include robust safety and quality assurance testing tailored to generative models

  • Integrate risk- mitigation frameworks such as red-teaming, guardrails, and multi-agent system checks

  • Support transparency on model training, validation procedures, and failure modes

Essentially, regulations should evolve to balance innovation with patient safety, accountability, and public transparency, particularly as LLMs and similar systems play larger roles in clinical settings.

Real-World Implications for Providers and Developers

Without updated frameworks, widespread deployment of AI in healthcare may expose patients to risks — including incorrect recommendations, hallucinated clinical guidance, or inappropriate classification of conditions — because these systems are not yet held to the rigorous standards of traditional medical devices.

This gap points to a need for collaboration between regulators, developers, clinicians, and standards bodies to ensure safe AI adoption without stifling beneficial innovation.

Conclusion — A Turning Point for Health AI Governance

As clinical AI evolves, so must the systems that govern it. The article highlights that while AI offers transformative potential in healthcare, its legal and regulatory frameworks remain behind the curve. Updating these frameworks will be critical to ensure technologies are both effective and safe for patients — ushering in the next generation of healthcare innovation with appropriate safeguards in place.