Summary of Changes in ISO 9001:2008

Similar documents
ISO 9001 Auditing Practices Group Guidance on:

ISO : Competence Requirements Clause 7

INTERNATIONAL STANDARD

ISO/IEC :2015 IMPACT ON THE CERTIFIED CLIENT

This document is a preview generated by EVS

EA-7/05 - EA Guidance on the Application of ISO/IEC 17021:2006 for Combined Audits

Software engineering Guidelines for the application of ISO 9001:2008 to computer software

TickITplus Implementation Note

Information technology Security techniques Requirements for bodies providing audit and certification of information security management systems

Information technology Service management. Part 10: Concepts and vocabulary

Checklist According to ISO IEC 17065:2012 for bodies certifying products, process and services

Information technology Security techniques Guidance on the integrated implementation of ISO/IEC and ISO/IEC

The Analysis and Proposed Modifications to ISO/IEC Software Engineering Software Quality Requirements and Evaluation Quality Requirements

SPECIFIC PROVISIONS FOR THE ACCREDITATION OF CERTIFICATION BODIES IN THE FIELD OF INFOR- MATION SECURITY MANAGEMENT SYSTEMS (ISO/IEC 27001)

Subsea Performance Bolt Workshop

SYSTEMKARAN ADVISER & INFORMATION CENTER. Information technology- security techniques information security management systems-requirement

Data Processing Clauses

ISO/IEC INTERNATIONAL STANDARD

Expected outcomes. for accredited certification to ISO management system standards such as ISO 9001 and ISO 14001

This is a preview - click here to buy the full publication. IEC Quality Assessment System for Electronic Components (IECQ System)

CRITERIA FOR CERTIFICATION BODY ACCREDITATION IN THE FIELD OF RISK BASED INSPECTION MANAGEMENT SYSTEMS

SİGMACERT ULUSLARARASI BELGELENDİRME EĞİTİM TEST HİZMETLERİ LTD. ŞTİ.

Session 609 Tuesday, October 22, 2:45 PM - 3:45 PM Track: IT Governance and Security

Advent IM Ltd ISO/IEC 27001:2013 vs

Global Specification Protocol for Organisations Certifying to an ISO Standard related to Market, Opinion and Social Research.

Minimum Requirements For The Operation of Management System Certification Bodies

IAF Mandatory Document KNOWLEDGE REQUIREMENTS FOR ACCREDITATION BODY PERSONNEL FOR INFORMATION SECURITY MANAGEMENT SYSTEMS (ISO/IEC 27001)

Orion Registrar, Inc. Certification Regulations Revision J Effective Date January 23, 2018

ISO/IEC INTERNATIONAL STANDARD

INTERNATIONAL STANDARD

ISO27001:2013 The New Standard Revised Edition

ISO/IEC INTERNATIONAL STANDARD

Areas of impact for client consideration taken from the Rules for achieving and maintaining IATF recognition 4 th Edition for ISO/TS 16949

Data Protection. Code of Conduct for Cloud Infrastructure Service Providers

IAF Guidance on the Application of ISO / IEC Guide 65:1996

SCS FSC Chain-of-Custody Guidance for Certification of Multiple Sites FSC-STD V2-1

Information technology Security techniques Information security controls for the energy utility industry

Certification Rights and Duties

Moving from ISO/IEC 27001:2005 to ISO/IEC 27001:2013

IAF Guidance on the Application of ISO/IEC Guide 62:1996

Conformity assessment Requirements for bodies providing audit and certification of management systems. Part 6:

Base Standard Program ISO Medical Device CB Application for Accreditation

Base Standard Program ISO Trustworthy Digital Repositories MS CB Application for Accreditation

Within our recommendations for editorial changes, additions are noted in bold underline and deletions in strike-through.

ISMS Implementation ISO IT Governance CEN 667

SANAS TECHNICAL REQUIREMENT FOR THE APPLICATION OF ISO/IEC IN THE FIELD OF FUSION WELDING METALLIC MATERIALS

VOLUNTARY CERTIFICATION SCHEME FOR MEDICINAL PLANT PRODUCE REQUIREMENTS FOR CERTIFICATION BODIES

FSC STANDARD. Chain of Custody Certification of Multiple Sites. Forest Stewardship Council FSC-STD V2-0 EN CHAIN OF CUSTODY

AUDIT PROGRAM. Revision 6 Dated September 29, Management Systems Analysis, Inc. P.O. Box 136, Royersford, PA

ISO/IEC INTERNATIONAL STANDARD. Conformity assessment Requirements for bodies certifying products, processes and services

Rules for LNE Certification of Management Systems

Areas of impact for client consideration taken from the Rules for achieving IATF recognition Third edition for ISO/TS

ISO/IEC Information technology Security techniques Code of practice for information security controls

Checklist According to ISO IEC 17024:2012 for Certification Bodies for person

Inhalt. Description of Certification Procedure ISO 22000, HACCP and DIN 15593

USDA ISO Guide 65 Program Accreditation for Certification Bodies

ISO/IEC INTERNATIONAL STANDARD. Information technology Software asset management Part 1: Processes and tiered assessment of conformance

ISO/IEC CASCO ISO/IEC CD ISO/IEC 2008 All rights reserved. Date: ISO/IEC CASCO/WG 21. Secretariat: CASCO

INTERNATIONAL STANDARD

QMS/EMS CB Accreditation Criteria

Information technology Process assessment Concepts and terminology

LOVAG. Operational Document for PEERS ASSESSMENT OF CERTIFICATION BODIES

Requirements for Certification Bodies operating Certification against the PEFC International Chain of Custody Standard

European Union comments CODEX COMMITTEE ON FOOD HYGIENE. Forty-ninth Session. Chicago, Illinois, United States of America, November 2017

The Accreditation and Verification Regulation - Verification report

APPROVAL SHEET PROCEDURE INFORMATION SECURITY MANAGEMENT SYSTEM CERTIFICATION. PT. TÜV NORD Indonesia PS - TNI 001 Rev.05

Base Standard Program ISO Anti-Bribery Management Systems CB Application for Accreditation

PROTERRA CERTIFICATION PROTOCOL V2.2

IAF Mandatory Document for the Transfer of Accredited Certification of Management Systems

ISMS Essentials. Version 1.1

Information technology Security techniques Application security. Part 5: Protocols and application security controls data structure

IMPLEMENTATION COURSE (MODULE 1) (ISO 9001:2008 AVAILABLE ON REQUEST)

UKAS accredited Certification Bodies

1.0 TITLE: Auditing Procedure. 2.0 PURPOSE: To provide an outline and instructions on the GMCS auditing process of clients.

ISO & ISO & ISO Cloud Documentation Toolkit

With the successful completion of this course the participant will be able to:

ISO/IEC FDIS INTERNATIONAL STANDARD FINAL DRAFT. Information technology Security techniques Information security management systems Requirements

Information technology Service management. Part 11: Guidance on the relationship between ISO/IEC :2011 and service management frameworks: ITIL

Rules for Operators. Version 6 / Version 6, 13 May 2011 Page 1/12

Scheme Document SD 003

What is ISO/IEC 20000?

FSC FM Lead Auditor Course FSC COC Lead Auditor Course. Comparative matrix ISO Guide 65 FSC-STD V3.0

Introduction to ISO/IEC 27001:2005

ISO/IEC 17065:2012 VERTICAL/FILE REVIEW ASSESSMENT

LICS Certification Scheme

EXAM PREPARATION GUIDE

ISO INTERNATIONAL STANDARD. Quality management Customer satisfaction Guidelines for codes of conduct for organizations

ISO/IEC/ IEEE Systems and software engineering Content of life-cycle information items (documentation)

VOLUNTARY CERTIFICATION SCHEME FOR MEDICINAL PLANT PRODUCE

ISO/IEC INTERNATIONAL STANDARD

JOB DESCRIPTION: TECHNICAL ASSESSOR

What is ISO/IEC 27001?

Audit Considerations Relating to an Entity Using a Service Organization

Information technology Security techniques Code of practice for personally identifiable information protection

Making trust evident Reporting on controls at Service Organizations

EDPB Certification Guidelines

Chapter 8: SDLC Reviews and Audit Learning objectives Introduction Role of IS Auditor in SDLC

An unofficial translation, in case of any discrepancies between the English version and the original Swedish version the latter will prevail.

PECB Change Log Form

SPECIFIC PROVISIONS FOR THE ACCREDITATION OF CERTIFICATION BODIES IN THE FIELD OF FOOD SAFETY MANAGEMENT SYSTEMS

Transcription:

s in ISO 9001:2008 Clause 0.1 Introduction General Added the phrase its organizational environment, changes in that environment, or risks associated with that environment, to the first paragraph Created a bullet list to emphasize each of the statements Revised this section to include statutory requirements along with regulatory requirements Added the statement applicable to the product to emphasize what requirements should be determined 0.2 Process Approach Changed identify to determine in the second paragraph Added or set of activities in the second paragraph to clarify that a process can be one activity or multiple Added the phrase to produce the desired outcome the third paragraph to emphasize that output matters 0.3 Relationship with ISO 9004 Revised the first paragraph from ISO 9001 and ISO 9004 being a consistent pair to being complementary to each other Updated scope of ISO 9004 Revised this section to add a note to indicate that ISO 9004 is still undergoing revision 0.4 Compatibility with other management systems Revised the first paragraph to indicate the provisions of the most recent version of ISO 14001 were taken into consideration during this revision Added a statement emphasizing Annex A which provides a cross reference of ISO 9001 to ISO 14001 1.1 Scope General Revised this section to include statutory requirements Revised NOTE to clarify what is meant by product. Product includes output resulting for product realization processes Note 2 was added to provide an explanation that statutory and regulatory requirements can also be called legal requirements 1.2 Application Revised Paragraph 3 to include statutory requirements 2.0 Normative Reference Revised this section to show when a document is referenced in the standard (e.g. 19011), it is referring to the most current version of the document unless otherwise specified Revised ISO 9000:2000 to ISO 9000:2005 1

3.0 Terms and Definitions Deleted the text of this clause relating to the transition of the supply chain from 1994 to 2000. This includes the explanation of supplier, organization and customer The text related to the fact that product can also remain service remains 4.1 General Requirements A) Replaced identify with determined E) Added where applicable after measure In the last paragraph revised controls to type and extent of control to be applied. Deleted the word should in the note and added analysis and improvement Added Note 2 to explain outsourced processes are those needed by the organization but the organization chooses to be performed be an external party Added Note 3 to explain the amount of control the organization is applying to the outsourced process is influenced by the details such as what is the impact of the outsourced process on overall product realization in the organization, any shared control with the organization and the external party, controlling the process through clause 7.4 Note 3 also addresses the fact that outsourcing does not remove any responsibility of the organization to conform to customer, statutory and regulatory requirements 4.2.1 Documentation Requirements General Added records to paragraphs c) and d) and deleted e) which specifically addressed records Revised to include words to show documents and records to be controlled are those the organization determines to be necessary Revised Note 1 to provide guidance that procedures can be combined into a single document covered by more than one document 4.2.3 Control of Documents Revised f) to indicate the documents of the external original are those determined by the organization to be necessary 4.2.4 Control of Records Editorial changes including restructuring the clause Changed the emphasis of this clause from records shall be maintained to records shall be controlled 5.5.2 Management Representative Added the words the organization s to management in the first paragraph 2

6.2 Human Resources 6.2.1 General 6.2.2 Competence, Training and Awareness Changed product quality to conformity to product requirements Added note that indicates conformity to product requirements may be affected by personnel who are indirectly or directly with tasks within the quality management system Revised the title of the clause to better reflect its structure Clause a) was revised to delete the words product quality Clause b) was revised to add where applicable and revised the sentence to address necessary competence versus the satisfaction of needs 6.3 Infrastructure Added information systems as an example in clause c) 6.4 Work Environment Added note to provide examples of what work environment relates to. Examples include physical, noise, temperature, humidity and weather 7.1 Planning of Product Realization Editorial change to clause b) Added measurement in clause c) 7.2.1 Determination of Requirements Related to Product 7.3.1 Design and Development Planning 7.3.2 Design and Development Inputs 7.3.3 Design and Development Outputs 7.3.7 Control of Design and Development Changes 7.5.1 Control of Production and Service Provision 7.5.2 Validation of Production and Service Provision C) revised related to applicable D) revised determined to considered necessary Added note describing what are considered postdelivery activities. These include warranty provisions, contractual obligations and maintenance services Added note that explains review, verification and validation are activities with a unique purpose. These activities and records can be conducted separately or at the same time In the last paragraph changed These inputs to The inputs Revised the first paragraph with an editorial change to clarify out shall be in a form, not necessarily a physical form Added a note to indicate preservation of product needs to be considered in the design and development outputs Combined two paragraphs as an editorial change Revised devices to equipment in clause d) Revised clause f) by adding the word product to release Revised first paragraph by making editorial changes to emphasize what processes this clause is referring to. The words as a consequence were added to when the deficiencies are identified only after the product is in use 3

7.5.3 Identification and Traceability Paragraph 2 was revised to add the phrase throughout product realization at the end of the sentence Paragraph 3 was revised to use maintain records 7.5.4 Customer Property Revised the last sentence of the clause which addresses records, with an additional change The note was revised to address personal data 7.5.5 Preservation of Product In the first sentence deleted conformity of in front of product In the second sentence replaced this with as applicable 7.6 Control of Monitoring and Measuring Equipment Devices Revised devices to equipment in the first paragraph In clause a) the phrase (see 4.2.4) was added to clarify that the information is being recorded is to be maintained as a record In claise a) added or both after calibrated or verified In clause c) changed be indentified to have identification Made the requirement for records a standalone paragraph Deleted note referring to 10012 Added note explains that confirmation of software includes verification and configuration to maintain its suitability for use 8.1 General Revised clause a) from product requirements 8.2.1 Customer Satisfaction Added a note that identifies sources of information for customer perception can be surveys, data on products delivered to customers and compliments 8.2.2 Internal Audit This clause was restructured Last paragraph was revised to include necessary corrections and corrective with any actions taken Added the word the in front of the selection for auditors for clarification The reference to 10011 was revised to 19011 8.2.3 Monitoring and Measuring of Processes 8.2.4 Monitoring and Measuring of Product The clause was revised to delete the phrase to ensure conformity of the product A note was added to emphasize the type and extent of monitoring and measurements is dependent on the product s impact to the quality management system Reconstructed the paragraph to more clearly show the records that are to me maintained are those that are authorizing release of the product or delivery to the customer 4

8.3 Control of Nonconforming Product Restructured clause Added the words where applicable to paragraph 2 Moved the last paragraph of the clause to the list making it item d) 8.4 Analysis of Data B) changed the reference from 7.2.1 to 8.2.4 C) added references to 8.2.3 and 8.2.4 D) added reference to 7.4 8.5.2 Corrective Action Revised the first paragraph from cause to causes F) added reviewing the effectiveness of the to the action of reviewing the corrective action 8.5.3 Preventative Action F)added reviewing the effectiveness of the to the action of reviewing the preventative action 5

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback