Healthcare user research: methods, compliance, and best practices
Healthcare user research operates under stricter constraints than any other vertical. This guide covers the right methods, compliance requirements, and recruitment approaches for health product teams.
Healthcare user research: methods, compliance, and best practices
Healthcare user research means studying how patients, caregivers, and clinicians interact with health products and services, so that teams can design technology that is safer, easier to use, and genuinely improves care outcomes. It draws on the same core UX methods as any other domain but adds a layer of regulatory, ethical, and clinical complexity that changes how studies are designed, run, and documented.
This guide covers the main methods used in health product research, the compliance requirements that shape every study decision, and practical approaches to recruiting participants in one of the hardest verticals for panel access.
Why healthcare user research is different
Health products sit at the intersection of high stakes and high complexity. A poorly designed medication administration interface can cause dosing errors. A confusing patient portal can delay care. A chronic disease management app that patients abandon after two weeks delivers no clinical benefit regardless of its feature set.
That context changes the research agenda in two concrete ways.
First, the consequences of getting it wrong are higher. This pushes teams toward methods that surface safety-critical failures rather than just preference signals. Moderated usability testing with task-completion analysis matters more here than it does for a social media app.
Second, the regulatory environment imposes specific study requirements that most other verticals do not face. FDA Human Factors guidance, IEC 62366 for medical devices, HIPAA data handling rules, and IRB oversight requirements all shape what you can study, how you can study it, and what records you need to keep.
Core methods for healthcare user research
Moderated usability testing
For medical devices and clinical software, moderated usability testing is the gold standard. The FDA’s guidance on applying human factors to medical devices{rel=“noopener”} describes two categories of testing: formative testing (iterative, used during development) and summative testing (formal validation conducted with the intended use population, often included in 510(k) or PMA submissions).
Summative studies require representative participants, scripted use scenarios based on known hazard analysis, and detailed documentation of critical errors. Formative studies are more flexible and can be run iteratively as prototypes evolve.
For consumer health apps outside FDA scope, moderated testing still works well for surfacing friction in onboarding flows, medication tracking interactions, appointment booking, and symptom reporting UIs.
Patient interviews and contextual inquiry
In-depth interviews reveal the lived experience of managing a condition, navigating a care system, or using a health product across a full day. They are particularly valuable for understanding workarounds, informal support systems, and the emotional context around health behavior that surveys cannot capture.
Contextual inquiry, conducted in clinical environments, extends this by observing actual workflows in the environment where the product will be used. Watching a nurse use an EHR at a busy workstation reveals interruption patterns, screen-glare issues, and keyboard constraints that no remote session will surface.
See how to recruit healthcare professionals for research for practical guidance on accessing clinical participants.
Diary studies for longitudinal patient experience
Diary studies are well suited to chronic condition management research, where the relevant behaviors (symptom tracking, medication adherence, physical therapy compliance) unfold over days or weeks rather than in a single session. Participants log entries via mobile prompts, voice memos, or structured daily check-ins.
The tradeoff is dropout. Healthcare diary studies face higher attrition than consumer studies because participants are managing real health challenges alongside research participation. Shorter study windows (5 to 10 days rather than 4 to 6 weeks), lighter daily time commitments, and thoughtful check-in design help maintain completion rates. See diary studies for healthcare and patient experience for a method-specific breakdown.
Patient journey mapping research
Journey mapping in healthcare goes beyond standard customer journey work because it spans multiple touchpoints across providers, payers, caregivers, and self-managed periods. Primary research for journey mapping typically combines retrospective patient interviews with quantitative touchpoint data from claims, EHR logs, or appointment records.
The output identifies where care fragmentation creates confusion, where patients disengage, and where digital interventions can reduce burden. For a deep-dive into this method, see patient journey research: complete guide for healthcare UX teams.
Surveys and quantitative measurement
Validated survey instruments matter more in healthcare than in many other verticals because credibility with clinical and payer stakeholders depends on measurement rigor. Instruments like CAHPS (Consumer Assessment of Healthcare Providers and Systems) for satisfaction measurement, PSSUQ or SUS for usability, and condition-specific PRO (patient-reported outcome) tools provide benchmarkable data that aligns with healthcare norms.
Custom surveys work for product-specific questions but should be piloted carefully with the target population, since health literacy varies widely and response patterns differ significantly from general consumer samples.
Compliance foundations: HIPAA, IRB, and FDA
HIPAA
HIPAA applies when your research involves protected health information. PHI includes anything that identifies an individual and relates to their health condition, care, or payment for care. If your study requires reviewing medical records, working with a hospital to recruit patients based on diagnosis, or collecting data that could be linked to identifiable health status, HIPAA governs data handling.
Practical implications: participant data must be stored securely, de-identified before analysis wherever possible, and covered by appropriate business associate agreements with any vendors who process the data. IRBs at academic medical centers will check HIPAA compliance as part of their review.
Research on general health app UX that involves no PHI and no covered entities typically falls outside HIPAA scope.
IRB
IRB review is required when research involves human subjects, falls under the federal Common Rule (45 CFR 46), and is intended to generate generalizable knowledge rather than internal quality improvement. Studies conducted with patient populations at hospitals, universities, or any federally funded institution almost always require IRB oversight.
For commercial product teams running UX research at private companies, many studies qualify as quality improvement and do not require IRB review, but this determination should be made with legal counsel for any study involving vulnerable populations, PHI, or claims of contributing to scientific literature.
FDA Human Factors
For regulated medical devices and combination products, FDA expects documented human factors engineering throughout the product development lifecycle. This includes use-related risk analysis, iterative formative testing, and a summative validation study with the actual intended use population. The level of rigor scales with risk: a Class III implantable device faces more demanding requirements than a Class I wellness app.
Recruiting for healthcare user research
Recruitment is consistently cited as the biggest bottleneck in health UX research. The reasons are structural: clinical staff have limited time, patients may have health limitations that constrain participation, gatekeepers (IRBs, department heads, patient advocacy organizations) add process layers, and standard consumer panels have thin healthcare professional coverage.
Effective approaches:
Patient populations: Patient advocacy organizations, condition-specific online communities, health system patient portals, and panels screened by health condition. Incentive design matters: many patients prefer gift cards over checks to avoid confusion with public benefit eligibility.
Clinicians and clinical staff: Hospital or clinic recruitment coordinators, professional association networks, and B2B research panels with verified occupational profiles. Scheduling must work around shift patterns. Physicians in procedural specialties (surgeons, anesthesiologists) are harder to reach than primary care physicians and require higher incentives and flexible session formats.
Caregivers: Often overlooked but critical for pediatric, geriatric, and chronic condition research. Caregiver recruitment channels include disease-specific support groups, social media communities, and caregiver-focused nonprofits.
Platforms like CleverX offer screened B2B healthcare panels that include verified nurses, pharmacists, hospital administrators, and specialty physicians, reducing the recruitment overhead for clinical UX studies that would otherwise require weeks of institutional coordination.
Ethical considerations in healthcare research
Healthcare research involves populations who may be vulnerable, in distress, or in dependent relationships with providers. A few ethical principles apply across all study types.
Therapeutic misconception: Participants may confuse research participation with receiving treatment or expect their feedback to directly change their care. Informed consent materials must clearly distinguish between the research context and care delivery.
Sensitive disclosures: Health topics often prompt unexpected personal disclosures. Researchers need a protocol for situations where participants reveal distress, unsafe behavior, or suicidal ideation. Know when to pause a session and what resources to offer.
Inclusion of underrepresented groups: Health disparities research has documented how products designed with narrow participant samples fail populations with different health literacy, language needs, or access patterns. Deliberate recruitment across demographics improves both product quality and equity outcomes.
Building a healthcare UX research practice
Teams starting or scaling healthcare UX research typically benefit from a few structural investments.
A research compliance checklist reduces per-study setup time by standardizing consent template language, data handling protocols, and IRB determination processes. This is particularly valuable when running multiple concurrent studies with different participant populations.
A mixed-methods approach, combining moderated usability testing for safety-critical flows with diary studies for longitudinal engagement and interviews for experience depth, gives fuller coverage than any single method.
Maintaining a trusted participant panel, even a small one of 20 to 30 patients or clinicians with existing consent to be re-contacted, dramatically accelerates ongoing research cycles compared to starting from scratch each study.
For more on usability testing specifically within health apps, see usability testing for healthcare apps: a product manager’s guide.
Frequently asked questions
What is healthcare user research? Healthcare user research is the practice of studying how patients, caregivers, and clinicians interact with health products, services, and care environments. It uses qualitative and quantitative methods, such as user interviews, usability testing, and diary studies, to surface unmet needs, identify friction points, and inform the design of safer, more effective health technology. Studies must comply with HIPAA, IRB requirements, and often FDA guidance on usability, depending on the product type.
What methods are most commonly used in healthcare user research? The most common methods are moderated usability testing (critical for FDA-regulated devices), contextual inquiry in clinical settings, in-depth patient interviews, diary studies for longitudinal patient experience, and surveys for large-sample satisfaction measurement. For regulated medical devices, formative and summative usability testing following IEC 62366 and FDA Human Factors guidance are required. For consumer health apps, the method mix depends on research goals and target audience.
How does HIPAA affect user research studies? HIPAA applies when research involves protected health information (PHI), which includes medical records, diagnoses, demographic data linked to health status, and identifiable patient data. If your study collects PHI, you need a valid written authorization from each participant or a HIPAA waiver granted by an IRB. Researchers must also work with covered entities (hospitals, clinics, insurers) under a data use agreement. Non-PHI research on general health app UX typically falls outside HIPAA scope.
When do you need IRB approval for healthcare user research? IRB approval is required when research involves human subjects and is intended to contribute to generalizable knowledge, particularly in clinical, pharmaceutical, or medical device contexts. UX research conducted purely for internal product improvement at a private company is often considered quality improvement rather than human subjects research and may not require IRB review. However, any study involving patient populations at a hospital, university, or federally funded setting almost always requires IRB oversight.
How do you recruit patients and clinicians for health UX research? Recruitment options include working through hospital or clinic recruitment coordinators, partnering with patient advocacy groups, using healthcare-specific research panels, and posting to condition-specific online communities. Clinician recruitment often requires institutional gatekeepers (department heads, hospital administrators) and scheduling around shift constraints. Verified B2B panels with screened healthcare professional profiles reduce the time needed to reach hard-to-find participants like intensivists, pharmacists, or specialist nurses.
What are the biggest differences between consumer health app research and clinical/medical device research? Consumer health app research (fitness trackers, mental wellness apps, chronic disease management tools) follows standard UX research practices with added sensitivity around health data. Clinical and medical device research is far more regulated: it requires formative and summative usability testing, documented risk analysis, and often FDA submission. Participant pools are smaller, sessions must be conducted with the actual intended use population, and safety-critical errors carry real-world consequences that cannot be treated as ordinary UX issues.