SBS - The best value in QMS software

Auditor requests confidential information via Email

#11
The Auditor should know that "confidential" information is exactly that. They should also know that asking for something like that to be emailed would be a potential breach of ethical or legal standards. Any documents that need to be reviewed, of a confidential nature, be reviewed on-site, not via email. This is just my humble opinion on the requirements of ISO 19011, which they have been trained on.
Are you certain? ISO/IEC 17021 (and the rest) have replaced the 19011 requirements for CBs...
 
Elsmar Forum Sponsor

Silex7

Involved In Discussions
#12
You should (and probably already do) have a confidentiality agreement with the CB. Just remind the auditor that the documents are confidential and ask that they be destroyed when the review is complete. I would send them using FTP, not email.
Yes we do, and he 'd probably mention the meeting confidentiality on his opening meeting which I'll find it very illogical, in my opinion he is trying to ease his On-site auditing process , to make it easier for himself for his record, but this is too un-professional just to mention,
 

Silex7

Involved In Discussions
#13
What some people don't realize is that a number of CB auditors also work as consultants. Some of the unscrupulous ones collect a lot of intellectual property (such as procedures, documents, even drawings, etc.) from the organizations they audit and "repackage" them as their creation for other consulting clients. Be very careful with providing electronic versions of any documents to external parties without protecting yourself against IP theft.
Exactly!! I had known some auditors indeed who were using some materials as a models and worked as a consultant for some start-up companies to pave a Quality Management System for them.
I am too paranoid about sharing such information, specially with people who declared their un-professionalism in the first place!
 

rickpaul01

Involved in HankyPanky
#15
Exactly!! I had known some auditors indeed who were using some materials as a models and worked as a consultant for some start-up companies to pave a Quality Management System for them.
I am too paranoid about sharing such information, specially with people who declared their un-professionalism in the first place!
If you do not trust your CB, don't do business with them.
 
B

buzzjaw

#18
You should (and probably already do) have a confidentiality agreement with the CB. Just remind the auditor that the documents are confidential and ask that they be destroyed when the review is complete. I would send them using FTP, not email.
I wouldn't make them available electronically to the auditor at all. If the company being audited has their act together they've probably employed information protection policies which would prevent the easy transfer of the documents anyway.
 

Coury Ferguson

Moderator here to help
Staff member
Super Moderator
#19
Are you certain? ISO/IEC 17021 (and the rest) have replaced the 19011 requirements for CBs...
Andy,

Yes I know that ISO 17021 is the driving force for CBs. I was addressing the issue using 19011 as the reference since it (even though it might be leaning to more IA) still the requirement to be trained in for Auditing QMS. Am I wrong there?
 
Thread starter Similar threads Forum Replies Date
R CB/Auditor Requiring a change in scope ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 8
J IATF 16949 Internal Audit question - Auditor's responsibility Internal Auditing 6
W Redacting Info Before Giving to Auditor ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 5
T Quality auditor legal right to see Board meeting minutes ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 12
V Certified Auditor - Need of additional certification specific to industry ( GMPs) ASQ vs ECA vs others Professional Certifications and Degrees 1
V Internal Auditor Competency KPI IATF 16949 - Automotive Quality Systems Standard 14
R American Petroleum Institute - Becoming an API Auditor Professional Certifications and Degrees 2
B Lowest cost way to pass Lead Auditor exam ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 2
B Internal Auditor Competency - Product Auditors Internal Auditing 9
U Internal Auditor not trained but done Audit for some process Nonconformance and Corrective Action 5
Z Auditor Findings ISO 14001:2015 vs. 45001:2015 ISO 14001:2015 Specific Discussions 6
B IATF16949 audit requirement - Auditor request UCL and LCL must be show Xbar-R, IATF 16949 - Automotive Quality Systems Standard 7
A Becoming an ISO27001 3rd Party Auditor Career and Occupation Discussions 4
L ASQ's Biomedical Auditor Course Test ASQ - American Society for Quality 1
M Tips on preparing for IATF 16949 Internal Lead Auditor exam Manufacturing and Related Processes 1
G Same parts but new customer - What will the auditor ask me? IATF 16949 - Automotive Quality Systems Standard 2
Gun46 ISO 9001 : 2015 Lead Auditor Exam General Auditing Discussions 16
K %GRR was between 10-30% so we have to have a "backup plan" per auditor IATF 16949 - Automotive Quality Systems Standard 15
S ISO 13485 Lead Auditor - Debate between our Quality Team and Regulatory Auditor - Internal Auditor Training ISO 13485:2016 - Medical Device Quality Management Systems 23
R ISO 45001 Lead Auditor Exam paper Training - Internal, External, Online and Distance Learning 1
B Internal and external auditor competency to CSR's IATF 16949 - Automotive Quality Systems Standard 20
A Our auditor told if we didn't have a patent we would have to do a validation or verification ISO 13485:2016 - Medical Device Quality Management Systems 6
W Certification for IATF Lead Auditor will expire in 2020 IATF 16949 - Automotive Quality Systems Standard 2
D Impartiality of Internal Auditor ISO 9001/13485 ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 18
Ed Panek Auditor driving us nuts - ESD requirements ISO 13485:2016 - Medical Device Quality Management Systems 23
A OHSAS 18001 external auditor finding personal interpretation? Occupational Health & Safety Management Standards 5
S IRCA Lead Auditor training and Exam tips Training - Internal, External, Online and Distance Learning 5
L ASQ CBA biomedical auditor - CBA primer material is enough to study? ISO 13485:2016 - Medical Device Quality Management Systems 6
B VDA 6.3 Qualification as Process Auditor training course and exam VDA Standards - Germany's Automotive Standards 0
F ISO 21001 Educational Organizations Management - How to become an auditor Other ISO and International Standards and European Regulations 1
J Getting training either from ASQ or from SAI Global - ISO 9001 Lead Auditor training Training - Internal, External, Online and Distance Learning 1
P ASQ Certified Biomedical Auditor (CBA) Certification Preparation 2019 ASQ - American Society for Quality 3
M Medical Device Design Control Auditor Recommentations General Auditing Discussions 19
G Third party auditor mentions no grace period for calibration Calibration Frequency (Interval) 22
D Where (in US) can I get the VDA Auditor Edition book? VDA Standards - Germany's Automotive Standards 3
S AIAG CQI Auditor Qualification and 3rd Party Certification Requirements General Auditing Discussions 2
M IATF 16949 7.2.3 Internal Auditor Competency - Trainer's competency Internal Auditing 7
C Recommendations for UK-based ISO 13485 internal auditor training ISO 13485:2016 - Medical Device Quality Management Systems 1
Sidney Vianna AS9100 News July 2019 AAQG/RMC CB Auditor Workshop - Presentation Materials AS9100, IAQG, NADCAP and Aerospace related Standards and Requirements 0
D Scope of Facility - Our auditor asked us last week for our "Scope of the Facility" AS9100, IAQG, NADCAP and Aerospace related Standards and Requirements 12
A ISO 9001 lead auditor as Full time career India Career and Occupation Discussions 2
J Manufacturing Process Auditor Requirements - IATF 16949 IATF 16949 - Automotive Quality Systems Standard 9
GreatNate ISO 9001:2015 Lead Auditor Course? (who to take with) ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 15
A External Auditor issue with Internal Audits Internal Auditing 7
Q Internal Auditor competence for ISO 14001 ISO 14001:2015 Specific Discussions 11
S IATF 16949: Is "Certified" Internal Auditor mandatory? IATF 16949 - Automotive Quality Systems Standard 9
S Internal Auditing for API Spec Q1 - auditor qualification requirements Oil and Gas Industry Standards and Regulations 6
J Your opinion on the better training org for IATF16949 Internal auditor and Lead Auditor IATF 16949 - Automotive Quality Systems Standard 3
K Turtle diagram or process interaction chart - Making it easier for an auditor Process Maps, Process Mapping and Turtle Diagrams 23
C TL-9000 Certifying Body Issue - Auditor failed to find an issue for 10 years TL 9000 Telecommunications Standard and QuEST 16

Similar threads

Top Bottom