Re: Additional control measures for outsourced processes under ISO 9004:2008
What are the additional controlling measures that an organization must take in respect of their processes outsourced to external party under ISO 9001:2008 compared to ISO 9001:2000? What are the major differences and how do we implement the additional requirement? Thank you.
It isn't an 'additional' requirement. At all. There are NO - repeat, NO, new or changed or additional requirements in the 2008 version.
All the 2008 version did was
clarify some points that some folks appeared to be having difficulty with.
In a nutshell: if you outsource processes or parts thereof,
YOU remain responsible for the quality of the product or service. (You always were in the 2000 version, but some misguided people apparently believed that the mere act of outsourcing removed all accountability and responsib ility from them! How on earth they managed this I have no idea).
Therefore, then and now, you must have reasonable controls in place to do that. The how depends upon what you do.