ISO 13485 QMS certification as a Supplier

E

Emaru

Registered
Hi everyone,
Whilst there is a lot of content regarding manufacturer's evaluation, control and so on over suppliers, is there a way to find content from the Supplier's perspective and what their obligations (and exemptions) are when becoming certified under the ISO 13485 standard? How to best adapt the QMS to reflect supplier status?
 
William55401

William55401

Quite Involved in Discussions
Welcome to the Cove! Please tell us more. What sort of supplier are you? Components? Services? This information may help you get a better response.
 
E

Emaru

Registered
Thanks so much for the welcome and happy holidays!
So we are a supplier of non-critical components and already have our QMS ISO 13485 certified however we must now address the non-conformities that were brought about by our lack of knowledge regarding what applies or what doesn't apply to us in having supplier status as opposed to manufacturer. Funnily enough it is proving more difficult to know what to exclude rather than know that we must cover all of the requirements.
 
Tagin

Tagin

Trusted Information Resource
Emaru said:
So we are a supplier of non-critical components and already have our QMS ISO 13485 certified however we must now address the non-conformities that were brought about by our lack of knowledge regarding what applies or what doesn't apply to us in having supplier status as opposed to manufacturer.
Click to expand...

Can you provide the text of the NCs?
 
Tagin

Tagin

Trusted Information Resource
Emaru said:
Frustratingly so it very broadly only states that we should 'carefully read the standard' and assess its applicability to us as a supplier
Click to expand...

Hmm, that doesn't sound like a proper NC. It should be specific and it should reference the exact clause that the NC is against.
 
William55401

William55401

Quite Involved in Discussions
Here's a start. You can justify not following requirements for sections 6, 7, and 8. However, you must explicitly address requirements from sections 1 to 5. One more. You say your firm makes non-critical components. Be careful with this language. Your customer, not you, is responsible for intended use and overall Risk Mgmt File per EN14971. For you to be a good supplier (and partner) and to follow the intent of the 13485:2016, risk management is important. If you implement your QMS correctly (IMHO), you take great care with your customer's highest risk features (important to quality / safety / process / function) and take action in a commensurate way. What does this mean? A critical feature (per your customer) that is nonconforming should have the proportionate level of handling to disposition that NC. What if your customer does not identify critical features? I would make this a part of contract review (yes, a dated term) to ensure your org knows what is important about each and every item you make.

I agree with prior responders that the NC from your Notified Body sounds broad.

HTH. Have fun. Enjoy the ride.
 
E

Emaru

Registered
William55401 said:
Here's a start. You can justify not following requirements for sections 6, 7, and 8. However, you must explicitly address requirements from sections 1 to 5. One more. You say your firm makes non-critical components. Be careful with this language. Your customer, not you, is responsible for intended use and overall Risk Mgmt File per EN14971. For you to be a good supplier (and partner) and to follow the intent of the 13485:2016, risk management is important. If you implement your QMS correctly (IMHO), you take great care with your customer's highest risk features (important to quality / safety / process / function) and take action in a commensurate way. What does this mean? A critical feature (per your customer) that is nonconforming should have the proportionate level of handling to disposition that NC. What if your customer does not identify critical features? I would make this a part of contract review (yes, a dated term) to ensure your org knows what is important about each and every item you make.

I agree with prior responders that the NC from your Notified Body sounds broad.

HTH. Have fun. Enjoy the ride.
Click to expand...

This is quite helpful advice and insight, thank you so much.
 
chris1price

chris1price

Trusted Information Resource
I would suggest the most important point is to identify what your customer wants from you. Certification to ISO13485 is the first step. How and when you communicate change controls and how you respond to complaints and CAPAs tend to be the more important quality related issues. Get these right and you'll have a good relationship.
 
You must log in or register to reply here.

Similar threads

J
ISO 13485 - Control of Records (4.2.5) question
2
Replies
10
Views
565
Tidge
T
S
ISO 13485 certification for components
Replies
1
Views
293
EmiliaBedelia
E
K
Looking for ISO 13485:2016 online courses with certification
2
Replies
11
Views
647
Jen Kirley
Jen Kirley
G
ISO 13485 and CE certification strategy
Replies
7
Views
551
Sidney Vianna
Sidney Vianna
M
ISO 13485 Supplier Question
2
Replies
13
Views
1K
Manasa Boppana
M
Top Bottom