Hi everyone, hopefully I'm not duplicating a thread here but if so I apologise. I got thrown a scenario last week.
Covid-19 has accelerated a move by our global business to move to a virtual/digital model supported by a small number of key processing centres. We have ISO 9001 and ISO 27001 in some of our offices - although actually not yet for all of the processing centres being retained.
I don't know exactly how this will look yet but in short, most offices on our ISO 9001 (and 27001) certificate, including HQ, are not going to have their lease renewed. The people, the processes and the systems are still there but it's all done virtually. There might be no physical office address to list on the certificate and there would be no site for an auditor to visit on re-certification / surveillance.
So if, 'the business' decides that we want to keep them within scope (and as they virtual support / manage the retained sites we might have to?!) then can we do this without an actual office to audit?
Covid-19 has accelerated a move by our global business to move to a virtual/digital model supported by a small number of key processing centres. We have ISO 9001 and ISO 27001 in some of our offices - although actually not yet for all of the processing centres being retained.
I don't know exactly how this will look yet but in short, most offices on our ISO 9001 (and 27001) certificate, including HQ, are not going to have their lease renewed. The people, the processes and the systems are still there but it's all done virtually. There might be no physical office address to list on the certificate and there would be no site for an auditor to visit on re-certification / surveillance.
So if, 'the business' decides that we want to keep them within scope (and as they virtual support / manage the retained sites we might have to?!) then can we do this without an actual office to audit?