SBS - The best value in QMS software

External Auditor asking for other Audit Findings

Big Jim

Super Moderator
#21
As I look back at the posts from Boris I realize that his concern was that CB auditors should not be looking at customer's audits because it could create a bias. I mistakenly pursued internal audits, which was not as much in question.

So, Jane, what is your position on CB auditors reviewing customer audits? Do you feel they are out of bounds?
 
Elsmar Forum Sponsor

somashekar

Staff member
Super Moderator
#22
I apologize if this question has been asked before. I did a search and couldn't find the response. My ISO auditor is asking for the findings of my internal audit, as well as my state and federal audit. I was always taught never to give the findings of any other audit to another auditor, because it might bias their audit. They should be able to find any issues on their own. I thought we are only required to show that an audit was conducted. Please advise and cite the section that supports your argument.

Thank you in advance.
Have a good reading into your agreement with the CB for the certification process and the attached confidentiality clauses that are stated.
During the process of the audit, if the auditor comes across, or is lead to, an other audit detail that has direct relevance to the scope being audited., you are required to disclose and co-operate with the audit proceedings.
It will be know by the auditor that internal audits are performed and questions about this will be asked as a part of ISO audit process. Therefore you better be open about the internal audit details.
 

Paul Simpson

Trusted Information Resource
#23
Most of us seem to look at management review near the beginning of the audit. Why would you wait until the end to discover a weakness you should have probed earlier?

Please explain this concept about how looking at the performance of the QMS creates a bias. I don't see it. Instead I see an excuse for a lack of due dilligence.
If you're not going to me read my posts I'm not going to engage in debate.

Once again. Nobody has said you don't look at internal audits (and now management review) so your point about due diligence is misplaced. The original question I answered (for those that haven't lost the will to live) was about the potential for biasing an audit sample based on the results coming out of an internal audit programme.

Thanks to JaneB for the references. The field of psychology is cognitive bias.
 

Sidney Vianna

Post Responsibly
Staff member
Admin
#24
Our collective ability to digress is in top shape. Not always a bad thing. I still think that, at this time, we can only speculate on why the CB auditor wants to review other audit results. It can be for good or bad reasons. Any information an external auditor has access to can be misused, including customer complaints, product recalls, etc. As I mentioned in my previous post, the FDA protocol in the past was NOT to have their inspectors evaluating the internal audit results. They could only ask to see evidence that internal audits had been conducted, which in itself is a joke by the way.
 

Big Jim

Super Moderator
#25
Our collective ability to digress is in top shape. Not always a bad thing. I still think that, at this time, we can only speculate on why the CB auditor wants to review other audit results. It can be for good or bad reasons. Any information an external auditor has access to can be misused, including customer complaints, product recalls, etc. As I mentioned in my previous post, the FDA protocol in the past was NOT to have their inspectors evaluating the internal audit results. They could only ask to see evidence that internal audits had been conducted, which in itself is a joke by the way.
Interesting insight on how FDA auditors are instructed to not look at internal audits, only the results. It would be equally interesting to have an explanation from the FDA as to why not.

But let us not forget that the OP is asking about ISO audits. Which ISO audit wasn't disclosed, which could be helpful.
 

Big Jim

Super Moderator
#26
If you're not going to me read my posts I'm not going to engage in debate.

Once again. Nobody has said you don't look at internal audits (and now management review) so your point about due diligence is misplaced. The original question I answered (for those that haven't lost the will to live) was about the potential for biasing an audit sample based on the results coming out of an internal audit programme.

Thanks to JaneB for the references. The field of psychology is cognitive bias.
Auditors indeed need to be aware of the potential of bias as they are auditing, including the posibility of becoming biased from looking at other audits, but that should not keep them performing their duty, only to guard against bias.
 

Big Jim

Super Moderator
#27
If you're not going to me read my posts I'm not going to engage in debate.

Once again. Nobody has said you don't look at internal audits (and now management review) so your point about due diligence is misplaced. The original question I answered (for those that haven't lost the will to live) was about the potential for biasing an audit sample based on the results coming out of an internal audit programme.

Thanks to JaneB for the references. The field of psychology is cognitive bias.
As long as we are talking about the POTENTIAL for bias, we are in agreement. To declare that we cannot look at part of the QMS because we will become biased is just wrong.
 

Sidney Vianna

Post Responsibly
Staff member
Admin
#28
But let us not forget that the OP is asking about ISO audits.
Actually, the OP is asking if it is OK for the CB auditor (there is NO ISO auditor nor ISO audit) :mad: to have a look at
  1. his internal audit results
  2. state (?) audit results
  3. federal (agency? FDA? FAA?) audit results
 

Big Jim

Super Moderator
#29
Actually, the OP is asking if it is OK for the CB auditor (there is NO ISO auditor nor ISO audit) :mad: to have a look at
  1. his internal audit results
  2. state (?) audit results
  3. federal (agency? FDA? FAA?) audit results
Actually, I'm quoting the OP:

"My ISO auditor is asking for the findings of my internal audit, as well as my state and federal audit."

Most of us are likely assuming that he is refering to ISO 9001:2008 and in particular a CB auditor for ISO 9001:2008, but that's a detail that has been left out.

I used the term "ISO auditor" because that is what the OP used.
 

Sidney Vianna

Post Responsibly
Staff member
Admin
#30
Most of us are likely assuming that he is refering to ISO 9001:2008 and in particular a CB auditor for ISO 9001:2008, but that's a detail that has been left out.
Very likely, this would be an ISO 13485 audit(or).

I used the term "ISO auditor" because that is what the OP used.
That practice just perpetuates misnomers. Whenever I can, I try to use the proper terminology.
 
Thread starter Similar threads Forum Replies Date
B Internal and external auditor competency to CSR's IATF 16949 - Automotive Quality Systems Standard 20
A OHSAS 18001 external auditor finding personal interpretation? Occupational Health & Safety Management Standards 5
A External Auditor issue with Internal Audits Internal Auditing 7
S ISO9001:2015 Clause 9.1 - What the external auditor will look at? ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 12
S Risk Approach doesn't address External Issues (Auditor's Comment) ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 30
K EMS Manual - External auditor expectations Miscellaneous Environmental Standards and EMS Related Discussions 5
R Can a external auditor raise a finding that is already identified in Internal Audit ? ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 11
W Hiring an External Auditor to perform our AS9100 Compliance Audits AS9100, IAQG, NADCAP and Aerospace related Standards and Requirements 5
N Corporate direction - External Auditor Influenced by Corporate Management ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 13
F VDA 6.3 Level C Certificate Requirements for External Auditor VDA Standards - Germany's Automotive Standards 3
E Help needed on the TS 16949 External Auditor Exam IATF 16949 - Automotive Quality Systems Standard 8
J Can An External Auditor Also Write The Same Non-Conformance As An Internal Auditor? ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 6
J Changing External Auditor Service General Auditing Discussions 13
D Is our external auditor acting within the rules? General Auditing Discussions 9
K Can I join External or Online Internal Auditor Courses Apart from my Company...? Training - Internal, External, Online and Distance Learning 4
P How to Qualify as External Auditor in ISO Quality Systems General Auditing Discussions 2
J Repeat Visits By Same External Auditor for the Last 10 Years General Auditing Discussions 22
S External Auditor Findings when an Internal Audit found a Nonconformance Yesterday Document Control Systems, Procedures, Forms and Templates 11
B Incompetent External Auditor - Is the Auditor Liable or the CB? General Auditing Discussions 25
D Advised by external auditor to change all QMS?s procedures to Flow charts Document Control Systems, Procedures, Forms and Templates 16
Z Interviewing an External Auditor? Choose a Registrar for ISO 9001 Registration Registrars and Notified Bodies 30
B External Auditor Confidentiality Agreement General Auditing Discussions 8
J Verifying the Effectiveness of Corrective Action - Challenge with an external auditor Nonconformance and Corrective Action 16
P External Contract Auditor for Internal Quality Audit Internal Auditing 18
B Keeping an External Auditor on because he's "useless"... ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 55
H External Auditor asked that we Improve in 4 Areas - ISO9001 - help needed ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 20
W External Consultant as Internal Auditor - Can NC be issued by TS Auditor? Internal Auditing 18
D Can an external ISO Auditor view FDA inspection results General Auditing Discussions 9
W Conflict with External Auditor in ISO 9001- Number of Fire extinguishers General Auditing Discussions 48
B Internal Auditor Training - Shadowing external auditor? Internal Auditing 18
M Need input - Potential poor external auditor? My first ISO 14001 registration audit ISO 14001:2015 Specific Discussions 4
K 7.5.5 Identification of Stored Product - External auditor identified storage problem ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 16
L External auditor agenda General Auditing Discussions 17
J External third party audits Registrars and Notified Bodies 1
J Help settle a disagreement: Should external providers of preventive maintenance be on your ASL? AS9100, IAQG, NADCAP and Aerospace related Standards and Requirements 5
J Requirement for Retention of Records of Withdrawn Documents of External Origin Document Control Systems, Procedures, Forms and Templates 3
M Calibration Certificate Result issued by an accredited external laboratory General Measurement Device and Calibration Topics 9
L IATF external audit virtual (remote) IATF 16949 - Automotive Quality Systems Standard 13
A IEC 62304 safety classification, External Controls and off-label use related risks IEC 62304 - Medical Device Software Life Cycle Processes 5
R External Audit and Certificate prorogation due to the pandemic General Auditing Discussions 10
N Audit non-compliance API Q1 - Use of External Documents 4.4.4 in Product Realization Oil and Gas Industry Standards and Regulations 8
J 510(k) for a control kit for an external IVD test kit 21 CFR Part 820 - US FDA Quality System Regulations (QSR) 1
R Is it required to have an SOP for external audits? Medical Device and FDA Regulations and Standards News 7
Pmarszal External Standards and Regulations Management Process Document Control Systems, Procedures, Forms and Templates 10
I What kind of wine best complements the Friday that you close out your external audit findings? Opinions are welcome. Coffee Break and Water Cooler Discussions 12
B How to apply external voltage to SIP/SOP IEC 60601 - Medical Electrical Equipment Safety Standards Series 2
P Qualifying commercial off the shelf (COTS) external suppliers ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 10
N IATF 16949:2016 7.1.5.3.2 External Laboratory - How to approve the Testing Laboratory without accreditation scope IATF 16949 - Automotive Quality Systems Standard 2
L External power supplies: How close does the safety report have to match the end-use application? IEC 60601 - Medical Electrical Equipment Safety Standards Series 4
D Reduction of software class based on multiple external risk controls IEC 62304 - Medical Device Software Life Cycle Processes 5

Similar threads

Top Bottom