Compliance Audit vs. Internal Audit - Differences - ISO 14001

[Randy]

I think it has been explained already. But here'sanother way of putting it.

Do a conformance audit wrong, you have a bad audit

Do a compliance audit wrong, odds are someone can go to prison, there can be other legal hassles and there can be tons of money in the way of fines change hands. (This is dependant upon the country of course)

 

[Seeisoguy - 2011]

Does anyone have a sample form or checklist they can share that can be used as an example?

 

[AndyN]

Does anyone have a sample form or checklist they can share that can be used as an example?

Hello, Seeisoguy! Nice city you're from! We hope you feel at home here at the Cove.

You're question has been asked many times before. If you'd care to do a search or, indeed, check out the attachments (lots of people share their forms, etc) - a quick look around the page will show you - at the bottom - similar threads and - at the top - the attachments links

Have a good one and let us know how it works out for you.

 

[Sidney Vianna]

Does anyone have a sample form or checklist they can share that can be used as an example?

I have already attached a GENERIC ISO 14001 checklist here. Check the attachment list, by clicking on the green "post attachments list" on the header....

 

[Seeisoguy - 2011]

I have already attached a GENERIC ISO 14001 checklist here. Check the attachment list, by clicking on the green "post attachments list" on the header....

I tried seaching and did not find any examples.
Do you remember the specific name of the file?

 

[Sidney Vianna]

ISO_14001_2004 checklist.doc

http://elsmar.com/Forums/attachment.php?attachmentid=4604

 

[Seeisoguy - 2011]

ISO_14001_2004 checklist.doc

http://elsmar.com/Forums/attachment.php?attachmentid=4604

Not quite what I was looking for but that is okay.

I was looking for an example for compliance to 4.5.2 Evaluation of Compliance. Our auditor wants a detailed checklist and proof of compliance to the different regulatory bodies(EPA, OSHA, CALOSHA etc.)

 

[Sidney Vianna]

Not quite what I was looking for but that is okay.

I was looking for an example for compliance to 4.5.2 Evaluation of Compliance. Our auditor wants a detailed checklist and proof of compliance to the different regulatory bodies(EPA, OSHA, CALOSHA etc.)

Next time, please be more specific on what you are looking for. I clearly mentioned in my post that the document I was referring to was a GENERIC ISO 14001 checklist. If you are looking for ways to demonstrate regulatory compliance to Environmental requirements, disregard OSHA and CalOSHA. Those are Occupational Health & Safety entities. Their concerns are outside of Environmental issues.

Unless you have an integrated EH&S Management System and is also in compliance with OHSAS 18001.

 

[qualityboi]

I remember exchanging emails with Charles Cianfrani ( author of ISO 9001: 2000 explained) when we were going to ISO 9001: 2000 requirements. I felt strongly that regulatory requirements could be, but did not have to be within the scope of process audits. My arguement was that there is no way a quality system auditor could be held responsible for knowing legal requirements especially if the company had international clients. I always thought as long as a process exists and is effective to deal with regulatory requirements that I, as an quality system auditor did not have to ensure these requirements are met through audits done to the ISO 9001: 2000 standard. He disagreed and said I should at least be sampling to some legal requirements during my audits. To this day I have not and never had an issue with my registrar. I can't remember our registrar ever doing such a compliance audit or even taking a sample to see if some legal or regulatory standard was met.
We have people in legal, environmental and health audit to those requirements at the site level around the globe with their federal agencies as the oversite, those audits, are totally separate from our audits to ISO 9001, 14001, and 18001. I guess my point is that you don't need to do compliance audits to satisfy IsO audits, and secondly, the experts are not always right.

 

[Sidney Vianna]

To this day I have not and never had an issue with my registrar. I can't remember our registrar ever doing such a compliance audit or even taking a sample to see if some legal or regulatory standard was met.
We have people in legal, environmental and health audit to those requirements at the site level around the globe with their federal agencies as the oversite, those audits, are totally separate from our audits to ISO 9001, 14001, and 18001. I guess my point is that you don't need to do compliance audits to satisfy IsO audits, and secondly, the experts are not always right.

ISO 14001 has a requirement for the organization to establish a procedure for periodically evaluating compliance with applicable legal requirements. It can be outsourced, it can be done with internal resources, but it must be done.