Developing procedure for Determining Company's Context And Interested Parties

[Coury Ferguson]

Your missing the point. It's the register who is putting things in their checklist which go beyond ISO requirements. Who is going to listen if any appeal is made? Sure the auditor was incompetent (really he was), but if the register management don';t get it what chance does an appeal have?

Could you provide some of the issues you are having with the Appeal Process, what were the actual findings?

This would help us determine how to help you resolve the organization's issues.

 

[Kronos147]

Your missing the point. It's the register who is putting things in their checklist which go beyond ISO requirements. Who is going to listen if any appeal is made? Sure the auditor was incompetent (really he was), but if the register('s) management don't get it what chance does an appeal have?

I guess you are assuming that all of the top management at the registrar knows about the checklist. It couldn't possibly be what some scheme manager created in good conscience but outside of the scope of the regular process for the registrar.

(Side note: as an auditor, I called these people 'rogue operators'. People trying to do something they think is good not realizing they are going against the grain of all previous system planning.)

Perhaps an appeal would have the organization look at the scheme manager and either provide the necessary training or change the scheme manager.

 

[JoShmo]

I guess you are assuming that all of the top management at the registrar knows about the checklist. It couldn't possibly be what some scheme manager created in good conscience but outside of the scope of the regular process for the registrar.

(Side note: as an auditor, I called these people 'rouge operators'. People trying to do something they think is good not realizing they are going against the grain of all previous system planning.)

Perhaps an appeal would have the organization look at the scheme manager and either provide the necessary training or change the scheme manager.

I know the register - a small outfit. Management know, trust me.

 

[Alienraver]

Wow, this doesn't give me confidence as I approach my audit in 3 weeks. What I want to know is how can they ask for formal risk assessment when the standard itself even states that it's not a requirement? Annex A4 says so, it states that there is no requirement for formal methods of risk management or a documented risk management process. It says we get to decide what is best for us. Unless you are making some serious product, which may impact lives I don't see a reason to have a formal process or management of risk.

 

[LUV-d-4UM]

Wow, this doesn't give me confidence as I approach my audit in 3 weeks. What I want to know is how can they ask for formal risk assessment when the standard itself even states that it's not a requirement? Annex A4 says so, it states that there is no requirement for formal methods of risk management or a documented risk management process. It says we get to decide what is best for us. Unless you are making some serious product, which may impact lives I don't see a reason to have a formal process or management of risk.

Please try not to worry. Here are the 6 things that you need to complete before going through this audit: Management Review per ISO9001:2015, Internal Audit to the new standard, Context of the organization, risk, internal/external issues. If you've done those things, you need not worry.

 

[JoShmo]

Please try not to worry. Here are the 6 things that you need to complete before going through this audit: Management Review per ISO9001:2015, Internal Audit to the new standard, Context of the organization, risk, internal/external issues. If you've done those things, you need not worry.

That's only waht the standard says! Everything my client expeirenced was beyond the standard and was the register's requirements. I'd be worried.

 

[charanjit singh]

While listing out the interested parties, I have a doubt. If a Certification Body is considered as an interested party, can we classify it as an external provider of service? After all, they deliver the organisation a certificate and get paid for their 'service'.

 

[LUV-d-4UM]

While listing out the interested parties, I have a doubt. If a Certification Body is considered as an interested party, can we classify it as an external provider of service? After all, they deliver the organisation a certificate and get paid for their 'service'.

Absolutely!! They are considered as external interested parties.

 

[charanjit singh]

Yes, you are quire right. But my question is "can we consider them as external service providers?"

 

[LUV-d-4UM]

Yes, you are quire right. But my question is "can we consider them as external service providers?"

Yes they are.