The ISO9001 international standard for a Quality Management System (QMS) was published by the ISO in 2015 and is based upon the original British standard BS5750. It details the requirement for certification to the standard.
ISO9001 specifies the requirements that your QMS will need to meet in order for your organization to become certified to the standard. The requirements in ISO9001 are supplemented by guidance contained in ISO9000 and ISO9004 which were published in 2015 and 2018 respectively. ISO9004 is well worth reading as it fills in some of the gaps in understanding how the requirements in ISO9001 should be met and gives more clues about what the auditor may be looking for.
There are several benefits of implementing a QMS to small and large organizations. It can help enormously in focusing attention on objectives and being able to base decisions on measured data, rather than rough perceptions.
Other benefits could include:
When looking at quality management the emphasis is usually on the processes used to define requirements, design products and services, and provide the things that the organization regards as its core business. These processes tell everyone what to do to deliver products and services to the customer and satisfy requirements.
The latest version of the standard also introduced the concept of “Risk based thinking”.
Risk-based thinking enables an organization to determine the factors that could cause its processes and its quality management system to deviate from the planned results, and gets you to think about a number of sources for potential risk such as:
Once you’ve identified the risks to the business, and ultimately the QMS, the standard requires you put in place preventive controls to minimize negative effects and to make maximum use of opportunities as they arise.
The ISO9001 standard proposes that we don’t just need a set of processes; we need a Quality Management System. The function of the QMS is to wrap itself around the processes and ensure (among other things) that:
The ISO9001 standard consists of major headings which are common across other standards:
Sections 1 to 3 don’t contain any requirements and so an organization wouldn’t be audited against these. We do recommend reading through them as they provide useful background to what the standard is about and how it should be interpreted. Section 0 is the introduction to the standard.
It is sections 4 to 10 that set out the requirements of the standard. These are the compulsory requirements that must be met by an organization to be compliant to the standard in order to achieve certification. If any of these sections within the standard aren’t met, then your business could face a nonconformity raised by the auditor and the organization will need to address it to gain or keep their certification to the standard.
There’s no obligation to go for certification to ISO9001 and many organizations choose to simply use the standard as a set of good practice principles to guide them along the way to running their organization.
For certification, the steps to are similar of all the ISO standards, and involve:
Once certified, you will then have an annual surveillance audit to confirm your compliance, and then every three years there will be a re-certification audit, which is when you will be re-audited against all areas of the standard and recommended for continued certification.
ISO9001 is recommended for organizations of any size and industry that want to ensure continual improvement. CertiKit’s ISO9001 toolkit includes more than 50 template documents and guides, and unlimited email support with a qualified consultant. Written by a QMS auditor, the toolkit will help you align to Quality Management System best practise fast and effectively.
We also offer ISO9001 consultancy and internal auditing services to organizations in the UK, EU and +/- two hours of the UK time zone. So if you need a bit of extra help with implementation, or your internal audit requirements need meeting, click the links to see how we can help.
Are you tasked with implementing ISO9001 into your organization but unsure where to start? Well, we’re here to help…
Download our free ISO9001: 10 steps to certification guide to learn:
Simply fill out the form and your guide will be on its way to your email.