Professional Documents
Culture Documents
Quality System Basics: Section 1
Quality System Basics: Section 1
Section 1
ISO Survey
(As of December 2007)
• At least 9,51,486 ISO 9001:2000
certificates had been issued in 175
countries and economies
• Out of the top ten countries China ranks
first with 2,10,773 certificates
• Italy, Japan and Spain follow
• India ranks fifth with 46,091 certificates
• Followed by Germany, U.S.A., U.K., France
and Netherlands with 18,922 certificates
The DEMING PDCA Cycle
Schematic Representation of Process Approach
outputs
Customers
inputs
A B C Customers
REALISATION PROCESSES
Support Processes
R 4 S
E A
Q Management
C C T
U Responsibility
U U I
I S
S 5 S
R Measurement, F
T Resource T
E 6 8 Analysis & A
O Management O
M Improvement C
M M
E 7 T
E E
N I
R Product R
T O
S Realization Product
N
Application of PDCA Cycle
• The ultimate aim of any management system is
continual improvement of its performance
• To achieve
PLAN this, Deming’s PDCA cycle of
improvement is interwoven in the structure
ISO-9001:2008 as illustrated in the next slide
D0
• Plan – Do – Check - Act
CHECK
PDCA Cycle applied to ISO 9001:2008 clause 4.1
ACT PLAN
Identification of
Implementation of
sequence, interaction
improvement
criteria & methods
( Clause 4.1f )
( Clause 4.1 a,b,c )
CHECK DO
Monitoring,
Implementation of
Measurement
the planning
& Analysis
( Clause 4.1.d)
( Clause 4.1e)
Deploying Quality Improvement Process
PLAN
• Establish procedures and instruction for
departmental activities
• Define responsibilities
• Establish objectives
• Plan resources including training of personnel
• Establish communication channel for
instructions and feed-back
Department / Section Heads
DO
CHECK
Section 2
Quality Misconceptions
• Quality means expense
• Quality Systems are expensive nice to haves
• Good Quality is high specification
• Quality Control about testing and checking
• Quality is the responsibility of the Quality
Department
• Quality comes from Inspection
Prevention vs. Detection
• Inspection was once considered the normal means
of attaining quality
• Inspection has been proved to be expensive as it is
always performed after the problem has occurred
• Inspection does not always find all the faults and
there is a risk that faulty items can be received by
the customer
• As there is always a delay between the problem
happening and the inspection it means that many
more faulty items can be produced at cost
Prevention vs. Detection …contd.
• Quality planning is carried out to plan exactly
how consistent quality can be achieved
• Quality planning is less expensive as it involves
a few peoples’ time and does not tie up the
production line equipment and staff or waste
materials
• Controlling suppliers and getting them to
ensure the quality of the supplies is cheaper and
more reliable than inspection
• Training of staff in understanding the processes
they operate and control is more efficient than
employing inspectors
Control of Processes
We control processes by controlling the
inputs into the processes rather than
inspecting the outputs
• People – By training or qualification
• Materials – Control of suppliers and
specification
• Methods – By procedures & standards
• Machines – By maintenance systems
• Environment – By organisation and care
Process Approach
• Process – Set of interrelated or interacting
activities which transforms inputs to outputs
• Product ( Service ) – Result of a process
• Outputs of one process may be inputs into
another process
• Control the inputs to ensure outputs meet
requirements
• Analyse and review for continual Improvement
8 Principles of Quality
1. Customer Focus
2. Leadership
3. Involvement of People
4. Process Approach
5. System Approach to Management
6. Continual Improvement
7. Factual Approach to Decision Making
8. Mutually Beneficial Supplier Relations
1. Customer Focus
• Understand current and future customer
needs and expectations
• Plan to meet customer requirements and
exceed expectations
• Clause 5.2 requires that Top Management
shall ensure that requirements are
determined and are met to enhance
customer satisfaction
2. Leadership
• Leaders establish unity of purpose and
direction of the organisation
• Leaders shall create and maintain the
internal environment in which people can
become fully involved in achieving the
organisation’s objectives
3. Involvement of People
Performance
Needs Needs
Absent Fully
Implemented
Basic
Customer
Satisfaction
Disgusted
Product Function
Key Elements of Quality
Management Systems
Section 3
Role of Management
• Demonstrate Commitment
• Policy and Objectives
• Motivation and environment
• Customer focus
• Provision of resources
• Monitoring and review
• Decisions and improvement actions
Quality Policy
• Appropriate to the Organization’s purpose
• Commitment to meet requirements and to
continual improvement
• Provides framework for setting objectives
• Communicated and understood at
appropriate levels
• Reviewed for continuing suitability
• Shall be controlled
Quality Policy
1. Document Control
2. Control of Quality Records
3. Internal Audit
4. Control of Non-conformity
5. Corrective Action
6. Preventive Action
DOCUMENTS and RECORDS
• A document is something that gives you
information or instruction to do
something
• It comes BEFORE THE EVENT
• A record is evidence that the event took
place
• It comes AFTER THE EVENT
Types of Documents
• Quality Manuals
• Flow Chart and Process maps
• Procedures, Plans and Instructions
• Drawings
• Computer Programmes or Instructions
• Actual Samples
• Forms
• Standards or Specifications, Contracts
• Reference materials, charts, tables etc
Documentation Value
• Achieving the required quality
• Evaluating the quality system
• Quality Improvement
• Maintaining Improvements
• Demonstrating the quality system to
customers and potential customers
Possible Problem Areas
• Can a stage 1 review be done off site
• To what extent do processes need to be
documented
• If they have a policy, objectives, flowchart of
processes, organization chart and 6 procedures
required by the standard is it acceptable
• What records are needed to provide evidence
that processes and products met requirements
• What if the objectives have not been meet
Analysis of Data
• Clause 8.4 requires Analysis of Data
• Customer satisfaction, Communication
• Conformance to customer requirements
• Characteristics of products, processes
and trends. Decisions based on facts
• Supplier performance. Relationships
• Market and interested party needs
Corrective Action
• Reaction to problem that has occurred
• Customer complaints
• Rejects, internal failures
• Mistakes and misunderstanding
• Internal Wastage
• NCR reports including audits
• Outputs from data analysis
Preventive Action
• Use of Quality Tools
• Actions before a problem arises
• Identify potential nonconformity causes
• Identify and implement actions
• Record results
• Review for effectiveness
• Again records can be used to demonstrate
continual improvement
Preventive Actions
Sources of information –
• Customer needs and expectations
• Market Analysis, satisfaction measures
• Process and product measures
• Internal Audit and Management Review
• QMS records
• Service Records, Financial Analysis
Customer Satisfaction
• Shall monitor customer satisfaction
• Methods for obtaining and using
• Information on customer satisfaction
should input to all processes
• Information from a variety of sources
• Customer surveys, questionnaires,
meetings, visits, complaints, feedback
from dealers and agents, and market
Internal Quality Audits
• Conducted for improvement not just
compliance
• Auditors and auditees work together to
identify opportunities for improvement
• NCR’s are negative
• Results should be reviewed
Management Review
• Conducted at planned intervals by Top
Management to ensure continuing suitability
and effectiveness
• Review process performance and capability,
corrective and preventive actions, objectives,
customers’ requirements and satisfaction,
internal audits and performance of QMS
• Look for opportunities for improvement and
needs for change ( policy and objectives )
• Review and act on facts
Continual Improvement
• To increase the effectiveness of the QMS in
meeting the policy and objectives of the
organization
• Objectives need to be set and the organization
must plan to achieve these objectives
• Continual improvement planned and
implemented
• Reviewed by Top Management
Continual Improvement …cont
• An improvement process requiring progressive
improvement and consolidation steps
• Should anticipate and focus on the growing and
changing needs and expectations of the
customer
• Should be measurable and measured
• Use factual objective measures
• Top Management should lead, plan, provide
resources and encourage
Possible Problem Areas
• How much evidence of improvement
• What if quality is decreasing? Major NCR
• Is a telephone call and tick list enough
• How often should the customer satisfaction be
reviewed
• What is a ‘suitable’ method for monitoring a
process
• Which functions or activities need a corrective
action procedure
• Lack of communication and understanding
ISO 9001 : 2008
Quality Management Systems -
Requirements
Section 4
General
8 Clauses Describe the Process Model
1. Scope
2. References
3. Definitions
4. Quality Management System
5. Management Responsibility
6. Resource Management
7. Product Realization
8. Measurement Analysis and Improvement
1. Scope
States requirements for an organization to –
• Demonstrate its ability to consistently provide
product that meets customer and applicable
statutory and regulatory requirements, and
• Enhance customer satisfaction by effective
application of the system, including processes
for continual improvement and the assurance
of conformity to customer and applicable
statutory and regulatory requirements
1.2 Application
• Permissible reductions of scope limited to
exclusions related to clause 7 Product
Realization and that such exclusions do
not affect the organization’s ability, or
responsibility, to provide product that
meets customer and applicable statutory
and regulatory requirements
ISO 9001 Clauses 2 & 3
• Is appropriate
• Includes a commitment to meet requirements
and continually improve effectiveness
• Provides a framework for objectives
• Is communicated and understood
• Reviewed for continued suitability
5.4 Planning
5.4.1 Quality Objectives
• Top Management shall ensure that objectives
are established at relevant levels and functions.
Objectives shall be measurable and consistent
with Policy
5.4.2 Quality Planning
Top Management shall ensure that the –
• Planning carried out to meet requirements and
quality objectives
• Integrity of the system is maintained and
changes are planned and implemented
5.5 Responsibility, Authority
and Communication
• Product Information
• Enquiries, contracts or order handling
including amendments
• Customer feedback and complaints
7.3 Design and Development
7.3.1 Design and Development Planning
Where appropriate –
• Identify status of product with respect to
monitoring and measurement
requirements
• Where tractability is required shall
control and record the unique
identification of the product
7.5.4 Customer Property
Section 5
Audit
Definition –
A systematic, independent and
documented process for obtaining audit
evidence and evaluating it objectively to
determine the extent to which audit
criteria are fulfilled
CERTIFICATION
The act of formally recognizing that an
organization’s management system
conforms to specified published
management system standards and any
supplementary documentation required
under the system
CERTIFICATION BODY
Definition –
A third party that audits and Certifies or
Registers the quality system of an
organization with respect to published
quality system standards and any
supplementary documentation required
under the system
ACCREDITATION
Definition –
The act of formally recognizing the
system and competence of a certification
body as meeting the requirements of the
published accreditation standard.
Audit Principles
• Independence of Auditors
• Detailed Effective Planning
• Competence of Auditors for the Audit
• Records of Objective Evidence
• Integrity – Confidentiality
• Auditors Code of Conduct
Reasons for Audits
• To determine conformity to requirements
• To determine effectiveness of the system
• For improvement of the system
• To meet regulatory requirements
• To meet contract requirements
• To gain registration for marketing and
customer assurance purposes
Reasons for Auditing
• To determine the effectiveness of one’s
own system. (1st Party)
• To evaluate a supplier. (2nd Party)
• To determine the effectiveness in meeting
contract requirements
• To verify (continued) conformity for
registration purposes. (3rd Party)
• To improve business efficiency
Audit Types
• Improvement. (includes consultancy)
• Management System
• Regulatory Compliance
• Product
• Internal – 1st Party
• Supplier – 2nd Party
• Independent – 3rd Party
Audit Types …contd 2
• Compliance Audits – For compliance with a
specific requirement – Legal
• May be regulations, contracts, industry
standards or agreed procedures
• Conformance Audits – For conformance with
management systems or other standards
• Product Audits – Made on the product itself
and the components and processes associated
with it
Audit Types …contd 3
• 1st Party – Internal audits of business
system
• 2nd Party - Supplier Audits
• 3rd Party - Independent or
Certification Audits
1st Party Audits
• Auditors – Own Staff
• Beneficiaries – Audi tees / our company
• Style – Can be relaxed and friendly
• Planning – Less demanding as systems
and locations already known
• Depth – Areas audited in detail
• Follow up – fairly simple – own company
2nd Party Audits
• Customer audits supplier with their staff
• Beneficiaries – Supplier and Customer
• Style – Can be very formal or informal
depending on whether the contract is at
stake or whether for improvement
• Planning – depends if new supplier
• Depth – Detail depends on the contract
• Follow up – depends on contract
3rd Party Audits
• Auditors – Independent
• Beneficiaries – Company
• Style – Formal according to procedures
• Planning – Done in detail to procedures
• Depth – Sufficient to check compliance
and effectiveness
• Follow up – CA always checked
Overview
• Initiating the Audit
• Information gathering
• Documentation Review
• Preparation for audit
• The on site implementation Audit
• Audit Reports and Records
• Corrective Action
• Follow up activities
Terms
• Audit Team – Team Members
• Auditor – Competent to conduct audits
• Lead Auditor – Team Leader
• Auditee – Company Audited
• Audit Plan – Prepared by Team Leader
• Audit Programme
• ISO 9001 : 2008 – Audit Standard
• ISO 9004 : 2000 – Audit Guidance
Auditing Organization
• Determines Audit Scope and objectives
• Selects the Team Leader
• Provides Audit Team Resources
• Determines competence of Auditors
• Ownership of the audit report
• Controls follow up action
Responsibilities – Lead Auditor
• Determine the scope and objectives
• Obtain background information
• Conduct Documentation Review
• Select and assign audit team members
• Prepare the plan including date and duration
• Representing the team at all stages including
Opening and Closing Meetings
• Resolution of any problems arising
• Evaluation of Evidence and Results Reporting
• Prepares and presents the report makes
recommendations, and follow up, reports
findings and recommends actions
Responsibilities - Auditor
• Competent to conduct the audit
• Prepare checklists
• Conduct audits according to audit plan
• Communicate with Auditees and Team
• Record and report observations clearly
• Safeguard audit documents
• Follow protocols and plans
• Check on Corrective Actions if required
• Confidentiality – Code of Conduct
Responsibility - Auditors
• Keep within the agreed scope
• Carry out assigned tasks
• Work objectively
• Collect and analyse evidence
• Remain alert
• Act in an ethical manner
• Support the Audit Team Leader
Responsibility - Auditees
• Assist auditors by supplying information
and documents as requested
• Answering questions
• Making themselves available at the
appropriate times
• Providing facilities as agreed
• Guide the auditors where to go
Auditees Management
• Inform all employees about audit scope and
objectives of the audit
• Provide resources and facilities
• Supply guides
• Provide information and supply documents
• Provide access
• Ensure Auditee cooperation
• Take corrective action
Initiation
• Client sets the scope of the audit considering
permissible exclusions
• May consult Lead Auditor or registration body
• Questionnaire or application data reviewed
along with any other data and industry guides
• LA reviews written documentation for
conformance with the standard and policies
done on site to review the QMS processes
• Reports findings of document review
Initial Document Review
• Performed to determine the state of readiness
• Preliminary on site visit may be made to gather
further information to plan the audit
• Identify key areas and technical expertise and
exclusions as allowed by the standard
• Compliance with the audit standard and
applicable legislation is assessed. Usually done
on site to view coverage of processes
• Deficiencies are reported for corrective action
• An audit programme should be in operation
• Management review must be completed
Preparation
• Who, When & Where
• Objective and Scope
• Methods, Procedures & working documents
• Identification of key staff to interview
• Identification of units to audit
• Decide on key and priority areas
• Produce an audit plan
• Pre-Audit Visit to the organization if feasible
Preparation …Contd
• Selection of Team Members
• Must ensure competence of team
• Standards and reference documents
• Language and experience in the culture
• Lunches and other requirements
• Shift changeovers, breaks, prayer times
• Timing and Meeting Schedule
• Report Process Format and Confidentiality
• Record retention
Audit Plans and Audit
Programmes
• Audit Plan is a detailed time schedule for who
will conduct what activities for a single audit
• Usually produced by the Lead Auditor from the
flowcharts, quality manual or organization
charts provided by the auditee organization
• Sent to auditors and auditees
• Audit Programme is the schedule of audit
activities for a single organization over a
defined period
• Required for all types of audits
Audit Plan
• Prepared from business documented system
• Identify all the key processes and activities and
allocate the time to audit
• Link related processes and activities
• Consider how the 8 principles are applied
• Allocate the activities to the team
• Balance the auditing times with key areas of
importance and start and finish of operations
• Compatible with auditees operating practices
Checklists
• Checklists guide the auditor through the audit
and to cover all the main points
• Checklists usually consist of bullet points
• Normally prepared from a process flow map
added to by relevant clauses of the ISO 9001
standard and the application of 8 principles
• Should cover both horizontal & vertical issues
• Useful as a record of the topics covered as
auditors can put comments against each point
• Remember objectives / continual improvement
Process Auditing
Section 6
Auditor Selection
• Auditors shall be selected with regards to their
knowledge and experience plus availability
• They shall also be selected on their ability to
interact with the other members of the team
and the auditees
• Technical experts and translators may be
required to assist the auditors
• Balance costs with needs of the audit
Auditor Qualities
• Good listener • Observant
• Note taker • Logical
• Communicator • Polite
• Fair • Assertive
• Knowledgeable • Independent
• Systematic • Confident
• Patient • Diplomatic
• Punctual • Persistent
Undesirable Avoidable
• Easily lead • Unprepared
• Unsure • Demanding
• Aggressive • Unpunctual
• Careless • Inconsistent
• Opinionated • Poor record
keeper
On Site Audit Stages
• Opening Meeting
• Examination and evaluation
• Team Meeting
• Agreement of results
• Closing Meeting
• Reporting
• Recommendation
• Follow up
Opening Meeting
• Lead Auditor Chairs Meeting
• Introduce both sides
• Team contribute as directed by Team
Leader
• Time wasting is avoided
• Keep it short & relaxed
• Give yourself more time than you think
you will need
Opening Meeting Agenda
• Introductions
• Record attendees
• Agree scope & objectives
• Confirm the audit plan
• Method of conduct of audit
• Confirm auditee co-operation
• Establish lines of communications
• End of Day briefings
• Promote auditees participation in audits
Opening Meeting Agenda …contd
Men
OUTPUTS
Materials
INPUTS
Methods Process
Machines
Environment
3 Components of Auditing
There are 3 components of a process audit.
Horizontal and Vertical paths and Audit Trails
• Following the horizontal path we follow the
steps of the process from start to finish
• For the vertical path we must look at the
activities of managers, supervisors, operatives,
clerks and assistants up or down the activity or
process. We look at business measures down to
records of the activity
• Audit trails develop a logical sequence of
questions and interviews to explore and link
activities
Collecting Evidence - Overview
• Observations of activities and conditions
• Interviews if no procedure ask about controls
• Check documents and Records by Sampling
• Comprehensive notes of all checks / evidence
• Follow trails and links between systems,
processes, documents and records
• Use the Checklists as a memory aid
• Look over, under and around
FINDING OUT THE FACTS
• Information can be gathered through interviews,
observation, checking records and reading
documentation
• Records and documentation often need to be cross –
checked with other records or procedures in that
area and in other parts of the system
• You will not be able to check every record. Take a
small sample and check those thoroughly
• Check controls and feedback of processes, the
responsibilities and authorities and role of
management must go up and down the structure
Audit Techniques
Ask Observe
Audit Diamond
Record Check
A-R-C-O
Question Style
• Open – What, Where, Why, When, How, Who
• Closed – Used to confirm the facts
• Hypothetical – Used to check in depth
• Silent – Can be useful to draw out information
• Leading – Avoid
• Trick – Unprofessional
• Multiple – Bad practice as auditee has the
choice of which to answer, may also pressurise
the auditee
INTERVIEWS
• Introduce yourself to the head
• ASK About scope of activities / responsibilities,
policy and objectives
• CHECK where responsibilities are defined
• Interview persons responsible for activities
• ASK about activities, controls and records
• OBSERVE the activities and controls
• CHECK records, procedures or systems
• RECORD the facts, Names, items checked,
procedure titles and revisions, records, details
of conformance or non – conformance
• THANK the persons interviewed
Listening
• Auditors must demonstrate interest and listen
to the information that is being related during
interviews
• In many cultures it is insulting not to
• More essential than before as there may be no
procedures to check
• Listen to all the information not just the bits
you want to hear. (Beware of gushers )
• Do not get distracted as information may be
missed
• Do not interrupt whilst responses remain
meaningful and objective
OBSERVATION
• Materials and information flow through
organizations and processes. The smoother the
flow the more efficient the process can be
• Look around you and try to identify the system
flow. Ask people to describe it
• Check that the process conforms to the plan or
system. How is the plan documented
• Identify any areas or items that appear to be
irregular or outside the normal system flow
• Check these thoroughly
Checking out Systems
• Some systems may appear to be good but the
auditor must test them out using examples
• Systems include Documentation. Training,
Calibration, Maintenance, Purchasing etc
• As we go round the organization we encounter
people, equipment, materials and procedures and
instructions. Check these comply with plans
• We must record details of these in order to check
out the systems with actual examples e.g. Show me
the training record for Joe Soap from the
warehouse. What is the current revision status of
the Packing Procedure P34. Who is responsible
Note Taking
• Good notes are essential to a good audit as you
will never remember everything without notes
• Do not be embarrassed to stop and take notes
• Make sure that your notes are legible and
organized
• Record who you are interviewing, the activity,
procedure details and records
• Note any unexpected observations
• Keep your notes safe
Cultural Differences
• Auditors should be aware of the needs of
delegates associated with cultures and
religions
• At certain times of the day prayers may
be taken. This should be planned
• Some cultures do not like to say no
• Smiles are welcomed everywhere
Auditing
• Interviews are more important with ISO 9001-2008
• Understand the process and the controls they have
put in place. Flowcharts are useful
• Do not jump into detail too quickly
• Follow the flow and links between processes
• Develop Audit Trails
• Once you understand the system they are using ask
selected detail and check evidence and records that
it operates according to the plan or procedure and
records confirm effective controls
• Use the checklist to ensure you do not miss
important controls keep an eye on the time
Possible Problem Areas
• How do we assess competence
• If they use computers do we always need a
computer expert to judge competence
• What if there are no procedures and no records
of process conditions
• How do we know that we have covered all the
processes if there are no procedures
• How do we know that all 3 shifts do it the same
way if no procedures
• Will handling and storage always be the same if
there are no control procedures
• How do we judge the working environment
Reporting the Audit Findings
and Follow up
Section 7
Auditors Team Meeting
• Held at the end of the audit by the Lead
Auditor attended by all the team members
• Auditors identify the items that they consider
should be reported and check that they have
sufficient evidence
• Lead Auditor asks team members what they
have found and collates all of the information
Auditors Team Meeting …contd
• Lead Auditor collects and discusses all
the nonconformities to be raised and
combines items if similar examples of the
same problem checking evidence
• Decides whether major or minor
• Checks on conformity and good points
• Allocates writing of NCR’s
Good Practice
• Use the forms provided
• Present the facts concisely
• Supply sufficient detail so that anyone
can go to the same areas and check the
facts
• Refer to the reference standard, company
documentation or legislation to state the
deficiency
Good Practice Statement
Example 1
• The 0.150mm vernier caliper serial No.
1423 at the Inward Goods area had no
indication of its calibration status.
Calibration System requires that “all
measuring equipment must be identified
with a label indicating the calibration due
date”
Good Practice Statement …contd
Example 2
• There were no licenses or records of
training for the forklift truck drivers in
the stores area nor in personnel
• There were several boxes of components
T45 and W37 damaged by forklift truck
forks
• There was no review of competence
needs for forklift truck drivers
AVOID
• Naming Names
• Jargon
• Generalities be specific
• Emotive terms. (Awful, worst etc.)
• Repetition. Try to group similar non
conformities together as examples of the
same problem
Nonconformity
• The non fulfillment of a requirement
MAJOR NONCONFORMITY
• The absence or total breakdown of a
system to meet a requirement of the
standard. A number of minor
nonconformities against one requirement
can represent a total breakdown of the
system and thus be considered a major
nonconformity
Major Nonconformities
May arise from –
• A single major quality system, product or
service deficiency, or lack of controls
needed to satisfy an agreed requirement
• Planned arrangements not being
implemented consistently
Major Nonconformity (QS 9000 )