F
I think what the finding was is that you did not discuss risk management in relation to 5.6.2(h). If it was a 13485 audit, they would expect to see some discussion as to how you are planning on implementing the 14971:2007 revision which just came out this year. If nothing else, discuss it as a proposed change to the QMS. While compliance with 14971 is not explicit, The reason this is usually applicable is that most companies reference 14971 as the guide they use for performing risk management.
This is getting to be a pretty common finding in that most companies were unaware 14971 changed and have not made provisions for this, let alone implemented the revisions into thier risk management process. I could be off base here, but I think the auditor is right in his assessment, just maybe should have been more explicit about why.
This is getting to be a pretty common finding in that most companies were unaware 14971 changed and have not made provisions for this, let alone implemented the revisions into thier risk management process. I could be off base here, but I think the auditor is right in his assessment, just maybe should have been more explicit about why.