The old "preventive action" requirement was responsible for some of the longest, most controversial and inconclusive threads we had (and for the sake of knowledge management, still have) at The Cove. It is disheartening to see (imo) that risk based thinking will now become the "die-hard" subject for ISO 9001. Easy to see that we will have (the same) endless, inconclusive, protracted discussions on RBT.
I had suggested a few years ago that RBT should had never made it to ISO 9001. It should have been codified as a (broken link removed) in ISO 9000. Inserting into ISO 9001 without proper guidance, just creates confusion in the marketplace, as we can easily see here.
The word risk(s) appear 25 times in ISO 9001:2015, 33 times in ISO/TS 9002:2016; our friends in the ISO TC 176 created a number of free, downloadable files such as:
And, not surprisingly, confusion still permeates practitioners the world over. It is about time the TC 176 should reflect on the quality of their products and react accordingly. Because if (requirements) standards, guidance standards and guidance documents don't deliver on the intended outcome of making their products clear and value added system standardization, there is a problem to be solved and with new chairmanship in the SC2, maybe this is the time for things to happen.