ISO 9001:2008 Surveillance Audit Frequency Requirements

H

Hilary

Can anyone advise on the requirements for ISO 9001:2008 surveillance audits? Is there a rule requiring 6 monthly audits or is the frequency decided on a whim by the certification company? My company was having annual TS16949 audits but we have recently moved out of manufacturing so will only be certified to 9001 in future. Our certification body has stipulated 6 monthly surveillance. It seems bizarre that TS required only annual audits but ISO 9001 requires 6 monthly!
I know there has been a discussion on a similar subject previously but I was not able to confirm the answer to my question so I hope someone can give me up to date help.

Many thanks for any advice. We will struggle to manage this, in addition to all the other certifications required by customers - SPICE, CMMI....
 

Stijloor

Leader
Super Moderator
Re: ISO 9001:2008 surveillance audit frequency

Welcome to The Cove Forums! :bigwave: :bigwave:

The standards you mentioned do not provide requirements for 3rd Party certification and frequency of surveillance audits. The audits and their frequency must be arranged between you and your Certification Body (CB).

Stijloor.
 

AndyN

Moved On
Re: ISO 9001:2008 surveillance audit frequency

Can anyone advise on the requirements for ISO 9001:2008 surveillance audits? Is there a rule requiring 6 monthly audits or is the frequency decided on a whim by the certification company? My company was having annual TS16949 audits but we have recently moved out of manufacturing so will only be certified to 9001 in future. Our certification body has stipulated 6 monthly surveillance. It seems bizarre that TS required only annual audits but ISO 9001 requires 6 monthly!
I know there has been a discussion on a similar subject previously but I was not able to confirm the answer to my question so I hope someone can give me up to date help.

Many thanks for any advice. We will struggle to manage this, in addition to all the other certifications required by customers - SPICE, CMMI....

Hello Hilary - how are things in the UK?

The requirement is for a certain amount of time to be spent annually - it's the IAF MD5 table here . After that, it's up to you, the CB and circumstances (like past performance of your QMS) to determine if the visits should be 6 or 12 monthly.
 
K

keres

The frequency of surveillance audits depends on the certification body (CB). There is a table wich requires number of audit days in accordance to company's staff number. CB may deploy these audits days in three year period of certification. But the schema may be comment with CB - 2 days/1 year, 1 day/ 6 months etc.
 

Howard Atkins

Forum Administrator
Leader
Admin
As said there is a minimum requirement for annual surveillance.
There should be some document from the CB explaining their policy. This should be part of the contract with them.
You should ask for this and everything in the agreement should be negotiable with the CB.
You are the customer.
 
V

vanputten

Hello keres:

The frequency of surveillance audits does not depend on the certification body (CB). The frequency of audits depends on the agreement between the customer (the auditee) and the supplier (the CB).

The IAF requirements must be met in terms of audit days. But the frequency is an agreement between the customer and the supplier as long as it does not exceed 12 months as Randy has pointed out.
 
H

Hilary

Re: ISO 9001:2008 surveillance audit frequency

Thank you to everyone who answered. I think you have confirmed what I thought - that there is no requirement for 6 monthly audits. As a small business, this can be very disruptive and costly in loss of revenue.
 
H

Hilary

By the way - I am amused to be described as "Shy Poster". Anyone who knows me would have an argument with that:D
 
Top Bottom