OASIS and Auditor Entering Data - Where is the authority?

dsanabria

Quite Involved in Discussions
The new generation OASIS (Online Aerospace Supplier Information System) has the auditors entering the same data that is in the Forms (1 - 6). Yes, a duplication of documents, my auditors now spends more time entering data in 2 places than actually auditing.

Q. Where is the authority for auditors to become data clerks?.

Note: This is the only information that makes the CB responsible not the auditor.


"IAQG OPMT ICOP Resolutions Log
December 12, 2016 9104-001 Clause 8.5.c and Appendix C

For audits conducted to the 9100:2016 (or later) series of the Aerospace Quality Management System (AQMS) standards; the CB shall be responsible for input of all the required data into the OASIS Next Generation database. This shall include the utilization of the online functionality for audit planning, 9101:2016 (or later) forms completion and corrective action management.

Certified organizations shall support the CB AQMS audit process via direct input into the OASIS Next Generation database, including audit planning data and the online corrective action management process.

For audits conducted to the 9100: 2009 series of the AQMS standards, the CB shall be responsible for input of all the required data into the OASIS Next Generation database by using the legacy .pdf upload functionality."




So should I tell the auditor to continue auditing and completing the forms only?
 

Sidney Vianna

Post Responsibly
Leader
Admin
I've been out of the ICOP Scheme for 4 years now, but I have been following the developments brought by the IAQG.

In the traditional way of conducting audits, there are many "opportunities" for miscommunication between registrants, auditors and CB technical people. The Next Generation (NG) OASIS aims to make the data flow seamless and "transparent" to the involved parties.

As previously mentioned, the IAQG created a large number of guidance material for OASIS NG users and it is available @ OASIS Help – Resources and Information for IAQG OASIS

For the auditor's role, the specific guidance presentation can be accessed here.

But if the question is: who gives the authority for the IAQG to demand this change in data processing and mandate the use of the online OASIS NG, the answer is the IAQG themselves. Remember, participation in the IAQG ICOP Scheme is voluntary; no one forces a CB to apply and become a part of the Scheme. Being an aerospace auditor in the ICOP Scheme is voluntary. If an auditor thinks they are doing double work, or are too busy doing data entry, they can always quit the scheme. But, let's be real: there are some auditors out there who are not keen on "modern technology" such as computers and internet...:notme: Is the real culprit of the problem OASIS NG or auditor's lack of IT savvy?
 

dsanabria

Quite Involved in Discussions
I've been out of the ICOP Scheme for 4 years now, but I have been following the developments brought by the IAQG.

In the traditional way of conducting audits, there are many "opportunities" for miscommunication between registrants, auditors and CB technical people. The Next Generation (NG) OASIS aims to make the data flow seamless and "transparent" to the involved parties.

As previously mentioned, the IAQG created a large number of guidance material for OASIS NG users and it is available @ OASIS Help – Resources and Information for IAQG OASIS

For the auditor's role, the specific guidance presentation can be accessed here.

But if the question is: who gives the authority for the IAQG to demand this change in data processing and mandate the use of the online OASIS NG, the answer is the IAQG themselves. Remember, participation in the IAQG ICOP Scheme is voluntary; no one forces a CB to apply and become a part of the Scheme. Being an aerospace auditor in the ICOP Scheme is voluntary. If an auditor thinks they are doing double work, or are too busy doing data entry, they can always quit the scheme. But, let's be real: there are some auditors out there who are not keen on "modern technology" such as computers and internet...:notme: Is the real culprit of the problem OASIS NG or auditor's lack of IT savvy?

Thanks Sidney, totally agree with the communication or lack of... so I give a copy to the customers, upload the forms to OASIS - with a note: see the actual forms, and the copies to the registrar.

This way if the customer wants to redact certain information, they have all the time to do so and it is never written in the actual database.

The other benefits is that I don't spend time entering data in both places and everyone is on the same page.
 

Sidney Vianna

Post Responsibly
Leader
Admin
This way if the customer wants to redact certain information, they have all the time to do so and it is never written in the actual database.
What type of data should a registrant want to redact? Shouldn't this be cleared during the audit and, at the last possible time, during the closing meeting? What kind of sensitive/confidential information would an experienced aerospace auditor write on his/her reports? Isn't that why level 2 data in OASIS is secured and only the registrant can give access to an inquiring party?

In the past, some CB's blamed auditors lack of timely data submission as an justification excuse for late data processing in OASIS. That's one of the scenarios that the IAQG wants to stop with the OASIS NG database. Fingers being pointed between CB's, auditors and registrants...
 

dsanabria

Quite Involved in Discussions
What type of data should a registrant want to redact? Shouldn't this be cleared during the audit and, at the last possible time, during the closing meeting? What kind of sensitive/confidential information would an experienced aerospace auditor write on his/her reports? Isn't that why level 2 data in OASIS is secured and only the registrant can give access to an inquiring party?

In the past, some CB's blamed auditors lack of timely data submission as an justification excuse for late data processing in OASIS. That's one of the scenarios that the IAQG wants to stop with the OASIS NG database. Fingers being pointed between CB's, auditors and registrants...

The Lawyers at Space company have expressed a desire to review all documents before making them public.

AIQG has limited power or wishes when the customers is expressing a desire to review what is published and they want to see is any sensitive information is written down.

Furthermore, the customers are not comfortable with information and data in OASIS - due to possible hack. Just look around your newspaper and appreciate their concerns.

Note: Attorneys do not attend closing meeting - they are contracted to protect the data - not to attend meetings.
 

Sidney Vianna

Post Responsibly
Leader
Admin
As I said, in my previous post, an experienced lead auditor is always aware of recording any sensitive data and it's implications. And they have the whole audit to ensure whatever evidence is being recorded is factual and will not disclose anything it is not supposed to be disclosed to the interested parties.

As a lead auditor, I would have serious concern if the contents of my reporting gets modified by an uncomfortable or misguided lawyer. If my reporting gets altered in any way where evidence is being deliberately deleted, the output of my work would not be in conformance with standards we are supposed to maintain.

I can only imagine any of the 19,000 OASIS listed sites start claiming the need for lengthy legal reviews before they "authorize" any data being entered into OASIS. What a travesty that would be.
 

dsanabria

Quite Involved in Discussions
As I said, in my previous post, an experienced lead auditor is always aware of recording any sensitive data and it's implications. And they have the whole audit to ensure whatever evidence is being recorded is factual and will not disclose anything it is not supposed to be disclosed to the interested parties.

As a lead auditor, I would have serious concern if the contents of my reporting gets modified by an uncomfortable or misguided lawyer. If my reporting gets altered in any way where evidence is being deliberately deleted, the output of my work would not be in conformance with standards we are supposed to maintain.

I can only imagine any of the 19,000 OASIS listed sites start claiming the need for lengthy legal reviews before they "authorize" any data being entered into OASIS. What a travesty that would be.

Sidney, my reports to the CB and those that are available for ANAB do not get redacted - but those that are published - they are. And it is being done more and more by more clients.

They do protect the integrity of information and that is why I make a statement in OASIS for people to get the reports from the customer because what is in OASIS is redacted.

I don't know why the space representative did not raised this issue at the AIQG level but it is reality.
 

RRRubber

Registered
As I said, in my previous post, an experienced lead auditor is always aware of recording any sensitive data and it's implications. And they have the whole audit to ensure whatever evidence is being recorded is factual and will not disclose anything it is not supposed to be disclosed to the interested parties.

As a lead auditor, I would have serious concern if the contents of my reporting gets modified by an uncomfortable or misguided lawyer. If my reporting gets altered in any way where evidence is being deliberately deleted, the output of my work would not be in conformance with standards we are supposed to maintain.

I can only imagine any of the 19,000 OASIS listed sites start claiming the need for lengthy legal reviews before they "authorize" any data being entered into OASIS. What a travesty that would be.

:applause:
 
Top Bottom