Data Storage and Back-Up Requirements - Paper Documents and Records

[andywinfield1966]

At a recent aerospace supplier assessment, I discovered that the route cards for the parts supplied were stored in hard copy form only, no back up of any kind in any format was available.

Can anyone tell me the minimum requirements for aerospace first tier data storage, surely they have to keep at least on form of data back-up?

thanks in advance

Andy

 

[BadgerMan]

Re: Data storage and back-up requirements

Absent any requirements imposed by customers or regulatory agencies, I would say that there are no requirements to duplicate the hardcopy records as long as they are adequately protected from loss or damage of any kind.

By the way, good question and welcome.

 

[Jen Kirley]

Re: Data storage and back-up requirements

Welcome to the Cove!

In past threads like Does AS9100 have "special" retention times for any items? and 4.2.4 Control of Records - Registered to ISO9001:2000, ISO 13485 and AS9100. I saw some interesting posts.

I see a consensus that there is no particular set of document retention requirements, but organizations must define their methods and customers can stipulate requirements. So I found a third thread titled Boeing Letter Re: AS9003 and ICOP - D6-82479, Boeing Quality Management System (BQMS) included an attached Boeing supplier quality document.

When you open these threads, see also the links to related threads at the bottom of the page.

I hope this helps!

 

[andywinfield1966]

Thanks for the replies, I'll have a look thru the older threads.

Thanks

Andy

 

[dsanabria]

At a recent aerospace supplier assessment, I discovered that the route cards for the parts supplied were stored in hard copy form only, no back up of any kind in any format was available.

Can anyone tell me the minimum requirements for aerospace first tier data storage, surely they have to keep at least on form of data back-up?

thanks in advance

Andy

While there are no requirements (they removed the 7 years requirements from AS9120) in section 4.2.4

A company must remember to adhere to the requirements of Section 4.2.4, specifically the following

.. and I quote
The organization shall establish a documented procedure to define the controls needed for the identification, storage, protection, retrieval, retention and disposition of records.

Yes, there are companies that do have paper only. The biggest factor that must be considered is RISK MANAGEMENT in protecting the records.

Make sure that section 6.3 and section 6.4 are also descriptive and appropriate in the procedure or annotation by including actions or environment for the safe retention of records.

Paper or electronic format - not an issue - Protection YES!

 

[andywinfield1966]

Thanks for the information, I've recommended improved protection facilities or risk management in another form, example, scan and store on server off site.

Thanks again for everyone's input, really helpful!