Develop Quality Management System Documentation In ISO 9000 Standards

Develop Quality Management System Documentation In ISO 9000 Standards

Documentation is the most common area of non-conformance among organizations

wishing to implement ISO 9000 quality management systems. As one company

pointed out: “When we started our implementation, we found that documentation

was inadequate. Even absent, in some areas. Take calibration. Obviously it’s

necessary, and obviously we do it, but it wasn’t being documented. Another area

was inspection and testing. We inspect and test practically every item that leaves

here, but our documentation was inadequate”.

Documentation of the quality management system should include:

1. Documented statements of a quality policy and quality objectives,

2. A quality manual,

3. Documented procedures and records required by the standard ISO 9001:2008, and

4. Documents needed by the organization to ensure the effective planning, operation and control of its processes.

Quality documentation is generally prepared in the three levels indicated below that follows. Use ISO 10013:1995 for guidance in quality documentation.

Level A: Quality manual

States the scope of the quality management system, including exclusions and

details of their justification; and describes the processes of the quality

management system and their interaction. Generally gives an organization

profile; presents the organizational relationships and responsibilities of persons

whose work affects quality and outlines the main procedures. It may also

describe organization’s quality policy and quality objectives.

Level B: Quality management system procedures

Describes the activities of individual departments, how quality is controlled in

each department and the checks that are carried out.

Level C: Quality documents (forms, reports, work instructions, etc.)

1. Work instructions describe in detail how specific tasks are performed; include

drawing standards, methods of tests, customer’s specifications, etc.

2. Presents forms to be used for recording observations, etc.

Integrating Management Systems

At times, it seems like we’re being inundated with ISO standards these days. Scott Adams has found a lot of material for his Dilbert comic strips from the ISO requirements. If developed and implemented properly though, companies find that these systems do in fact have value beyond meeting customer requirements. Improvements can occur in efficiency, quality, compliance, environmental impacts, health & safety risk reduction, and even costs (cost savings tend not to occur until after the initial investment to develop the systems). For companies that need or want to develop systems that conform to more than one of these management system standards, a cost-effective way to do so is to integrate these systems.

The International Organization for Standardization (ISO) has issued ISO 9000 standards for Quality Management Systems (QMS), and the ISO 14001 standard for Environmental Management Systems (EMS). More recently, a consortium of standards bodies have issued the OHSAS 18001 occupational health & safety management systems (HSMS) standard. It is anticipated that the OHSAS 18001 standard will also become a future ISO standard. Additional standards exist for specific applications such as the automotive industry QS 9000 and TS 16945 standards. Many organizations have seen the benefits of these systems of management, and have encouraged or required their suppliers and vendors to implement similar systems.

Consider some of the following opportunities for integrating systems:

• Combine EMS and HSMS manuals, particularly if the same department is involved in the implementation of both systems
• Combine Objectives, Targets, & Programs, especially in cases where there is overlap. For example, substituting less hazardous chemicals or alternative processes can have a positive impact on the environment AND it can also reduce occupational health & safety risks and hazards.
• Combine Audit Systems. Often, the same internal auditors can audit areas for environmental as well as health & safety at the same time. Additionally, internal EMS audits can be combined with internal HSMS audits in the many areas of overlap.
• Combine Corrective & Preventive Action Systems. The standards for the quality management systems (QMS), the environmental management systems (EMS), and the health and safety management systems (HSMS) all require similar corrective & preventive action systems. When non-conformances to these systems are identified, corrective actions must be identified and implemented to fix the specific non-conformance. In addition, the root cause of the specific non-conformance must be identified so that a preventive action can be identified and implemented to prevent similar non-conformances or repeat instances of nonconformance’s from occurring. The same or similar tracking systems can be used for QMS, EMS, and/or HSMS. Electronic forms and databases are a very effective way of tracking these items to closure and ensuring the responsible persons identify, implement, and verify actions.
• Combine Documentation Systems. Many companies already have formal documentation procedures for engineering design and manufacturing specifications. Companies who have already implementedISO 9000 systems often have very sophisticated electronic document control systems. Avoid “re-inventing the wheel” by taking advantage of existing systems that already meet the ISO standards or just need minor “tweaking” to meet the standard. Using the same system makes it easier for employees to use too.
• Combine Management Review Systems. Consider incorporating the environmental, health and safety (EH&S) management reviews into existing management review systems. Take advantage of processes learned through quality management systems (such as development of effective process and result metrics) to present useful and meaningful information to management.

Read more on ISO 9001 Standards at http://www.iso9001store.com

Why do organizations implement ISO 9000 systems?

Why do organizations implement ISO 9000 systems?

More often than not, organizations get ISO 9000 because certain customers force them or encourage them to. In many market sectors—electronics, pulp and paper, telecommunications, automobile manufacturing, defense—major customers have mandated ISO 9000 registration to their key suppliers. Similarly, some overseas regulatory bodies mandate ISO 9000 for the makers of qualitysensitive products (such as medical devices).

Many of these major customers impose ISO 9000 systems in place of, or in addition to, specific quality programs, requirements, specifications, and so on that have been in place for many years. The ISO 9000Standard becomes a key part of the relationship between the customer and its suppliers.

ISO 9000 is not, however, meant to replace customer-specific requirements in any market segment. Rather, ISO 9000 is meant to be a floor: a basic set of generic requirements. They are generic enough to apply to virtually all supplier/customer relationships anywhere in the world. It matters not the size of the supplier, the location of the customer, or the nationalities involved.

In some industrial segments, formalized standards have been created, adding to the generic ISO 9000requirements additional clauses that are industry specific. Examples include:

_ Automotive (QS-9000).

_ Aerospace (AS-9000).

_ Telecommunications (TL-9000).

To the extent that ISO 9000 replaces customer-specific quality programs and supporting audit/oversight activities, it can relieve both customers and suppliers of a great deal of redundancy, duplication, and waste of resources. The fundamental requirements are understood, agreed to, and (usually) confirmed by objective third-party audit. This gives customers confidence in the integrity and effectiveness of their supplier’s basic quality practices. The customer and supplier can then invest their energies and resources in agreeing to and working on the specific requirements unique to their relationship.

To some, ISO 9000 sounds like a mandatory, gun-to-your-head, my-way-or-the-highway program. For many suppliers, it is exactly that (“get ISO 9000 or get lost”). For many others, it is perceived that way:

“They’re trying to tell us how to run our businesses.”

But the goal of ISO 9000 is not to strengthen customers’ control over how their suppliers run their businesses. The goal is to give customers confidence in the ability of suppliers to meet their needs, resulting in satisfied customers, and growing and prosperous suppliers.

Admittedly, implementing ISO 9000 does not guarantee this. Like most things, what you get out of it depends on what you put into it. You can implement a compliant ISO 9000 system that is all cost and no benefit and it’s even possible to pass registration audit this way. This happens, usually, when the supplier’s approach is to try to:

_ Squeak by.

_ Do just enough to get registered.

_ Get this thing done without changing how we work.

But suppliers who implement ISO 9000 fully—to the spirit, as well as the letter—can and do achieve real benefits.

Managing Processes In ISO 9000 Standards

Managing Processes In ISO 9000 Standards

The ISO 9000 Standard requires the organization to manage the identified processes in accordance with the requirements of ISO 9001.

The first stage in managing a process is to establish what it is you are trying to achieve, what requirements you need to satisfy, what goals you are aiming at; then establish how you will measure your achievements. The next stage is to define the process you will employ to deliver the results. Managing the process then involves managing all the inherent characteristics of the process in such a manner that the requirements of customers and interested parties are fulfilled by the process outcomes. This means:

Managing the process inputs

Managing the work

Managing the physical resources

Managing the financial resources

Managing the human resources

Managing the constraints

Managing the outputs

Process management is therefore much more than managing activities and therefore when describing processes, one needs more than a flow chart of activities. The chart is a diagrammatical representation of a process but only one aspect. One can also add numerical data to the charts to indicate resources, cycle times, delays, costs etc. but the intangible factors of the human environment cannot be reduced to numerical data to add to the charts.

The notes to clause 4.1 of ISO 9001 need some explanation. It is stated that the processes needed for the management system include management activities, provision of resources, product realization and measurement. This note could cause confusion because it suggests that these are the processes that are needed for the management system. It would be unwise to use this as the model and far better to identify the processes from observing how the business operates. The term provision of resources should be Resource Management, which is the collection of processes covering financial, human and physical resources.

Product realization is also a collection of processes such as design, production, service delivery, etc. Measurement is not a single process but a sub-process within each process. Grouping all the measurement processes together serves no useful purpose except it matches the standard – a purpose of little value in managing the organization.

The second note refers to outsourcing processes although it is difficult to imagine that management activities, product realization or measurement would be outsourced in its entirety. It is likely that market research; design, product verification, equipment calibration and other specialized services may be outsourced. While outsourcing comes under purchasing, it is correct to point out that the organization should control any outsourced processes. The supplier of the process is usually referred to as a subcontractor because they provide services to the organization’s requirements not their own. Control of subcontractors is covered by clause 7.4 but in meeting clause 7.4.3, you need to treat suppliers and subcontractors differently.

ISO 9000 Standards – Conducting Management Reviews

ISO 9000 Standards – Conducting Management Reviews

The ISO 9000 standards requires that top management conduct

management reviews.

The term review is defined in ISO 9001 as an activity

undertaken to ensure the suitability, adequacy, effective-

ness and efficiency of the subject matter to achieve

established objectives. The addition of the term manage-

ment means that the management review can be

perceived as a review of management rather than a

review by management, although both meanings are conveyed in the standard.

The rationale for this is that the examples given in ISO 9000 such as design

review and nonconformity review clearly indicate it is design and non-

conformity that is being reviewed. If the system was to be reviewed then the

action should be called a system review. It is no doubt unintentional in the

standard but, if the management system is perceived as the way in which the

organization’s objectives are achieved, a review of management is in fact a

review of the way achievement of objectives is being managed because the

organization exists to achieve objectives and so both meanings are correct.

Top management will not regard the management review as important unless

they believe it is essential to running the business. The way to do this is to treat

it as a business performance review. This is simpler than it may appear. If the

quality policy is now accepted as corporate policy and the quality objectives

are accepted as corporate objectives, any review of the management system

becomes a performance review and no different to any other executive

meeting. The problem with the former management reviews was that they

allowed discussion on the means for achieving objectives to take place in other

management meetings leaving the management review to a review of errors,

mistakes and documentation that no one was interested in anyway. The

management system is the means for achieving objectives therefore it makes

sense to review the means when reviewing the ends so that actions are linked to

results and commitment secured for all related changes in one transaction.

The requirement emphasizes that top management conduct the review – not

the quality manager, not the operational manager – but top management – those

who direct and control the organization at the highest level. In many ISO 9000

registered organizations, the management review is a chore, an event held once

each year, on a Friday afternoon before a national holiday – perhaps a cynical

view but nonetheless often true. The reason the event has such a low priority

is that management have not understood what the review is all about. Tell

them it’s about reviewing nonconformities, customer complaints and internal

audit records and you will be lucky if anyone turns up. The quality manager

produces all the statistics so the others managers are free of any burden. By

careful tactics, these managers may come away with no actions, having

delegated any in their quarter to the quality manager.

In order to provide evidence of its commitment to conducting management

reviews, management would need to demonstrate that it planned for the

reviews, prepared input material in the form of performance results, metrics

and explanations, decided what to do about the results and accepted action to

bring about improvement.

The ISO 9000 standards requires that top management conduct management reviews.

The term review is defined in ISO 9000 Standards as an activity undertaken to ensure the suitability, adequacy, effectiveness and efficiency of the subject matter to achieve established objectives. The addition of the term management means that the management review can be perceived as a review of management rather than a review by management, although both meanings are conveyed in the standard.

The rationale for this is that the examples given in ISO 9000 Standards such as design review and nonconformity review clearly indicate it is design and non-conformity that is being reviewed. If the system was to be reviewed then the action should be called a system review. It is no doubt unintentional in the standard but, if the management system is perceived as the way in which the organization’s objectives are achieved, a review of management is in fact a review of the way achievement of objectives is being managed because the organization exists to achieve objectives and so both meanings are correct.

Top management will not regard the management review as important unless they believe it is essential to running the business. The way to do this is to treat it as a business performance review. This is simpler than it may appear. If the quality policy is now accepted as corporate policy and the quality objectives are accepted as corporate objectives, any review of the management system becomes a performance review and no different to any other executive meeting. The problem with the former management reviews was that they allowed discussion on the means for achieving objectives to take place in other management meetings leaving the management review to a review of errors, mistakes and documentation that no one was interested in anyway. The management system is the means for achieving objectives therefore it makes sense to review the means when reviewing the ends so that actions are linked to results and commitment secured for all related changes in one transaction.

The requirement emphasizes that top management conduct the review – not the quality manager, not the operational manager – but top management – those who direct and control the organization at the highest level. In many ISO 9000 registered organizations, the management review is a chore, an event held once each year, on a Friday afternoon before a national holiday – perhaps a cynical view but nonetheless often true. The reason the event has such a low priority is that management have not understood what the review is all about. Tell them it’s about reviewing nonconformities, customer complaints and internal audit records and you will be lucky if anyone turns up. The quality manager produces all the statistics so the others managers are free of any burden. By careful tactics, these managers may come away with no actions, having delegated any in their quarter to the quality manager.

In order to provide evidence of its commitment to conducting management reviews, management would need to demonstrate that it planned for the reviews, prepared input material in the form of performance results, metrics and explanations, decided what to do about the results and accepted action to bring about improvement.

ISO 9000 Standards – Quality Management Principles

ISO 9000 Standards – Quality Management Principles

A quality management principle is defined by ISO/TC 176 as a comprehensive and fundamental rule or belief, for leading and operating an organization, aimed at continually improving performance over the long term by focusing on customers while addressing the needs of all other interested parties. Eight principles have emerged as fundamental to the management of quality.

All the requirements of ISO 9001:2008 are related to one or more of these principles. These principles provide the reasons for the requirements and are thus very important. The quality management principles can be listed as below:

1. Customer focus
Organizations depend on their customers and therefore should understand current and future customer needs, meet customer requirements and strive to exceed customer expectations.
The customer focus principle is reflected in ISO 9000 Standards through the requirements addressing:
a. Communication with the customer
b. Care for customer property
c. The determination of customer needs and expectations
d. Appointment of a management representative
e. Management commitment

2. Leadership
Leaders establish unity of purpose and direction for the organization. They should create and maintain the internal environment in which people can become fully involved in achieving the organization’s objectives.
The leadership principle is reflected in ISO 9000 Standards through the requirements addressing:
a. The setting of objectives and policies
b. Planning
c. Internal communication
d. Creating an effective work environment

3. Involvement of people
People at all levels are the essence of an organization and their full involvement enables their abilities to be used for the organization’s benefit.
The involvement of people principle is reflected in ISO 9000 Standards through the requirements addressing:
a. Participation in design reviews
b. Defining objectives, responsibilities and authority
c. Creating an environment in which people are motivated
d. Internal communication
e. Identifying competence needs

4. Process approach
A desired result is achieved more efficiently when related resources and activities are managed as a process.
The process approach principle is reflected in ISO 9000 Standards through the requirements addressing:
a. The identity of processes
b. Defining process inputs and outputs
c. Providing the infrastructure, information and resources for processes to
function

5. System approach to management
This principle is expressed as follows:
Identifying, understanding and managing interrelated processes as a system contributes to the organization’s effectiveness and efficiency in achieving its objectives.
The system approach principle is reflected in ISO 9001 through the requirements addressing:
a. Establishing, implementing and maintaining the management system
b. Interconnection, interrelation and sequence of processes
c. The links between processes
d. Establishing measurement processes

6. Continual improvement
This principle is expressed as follows:
Continual improvement of the organization’s overall performance should be a permanent objective of the organization.
The continual improvement principle is reflected in ISO 9000 Standards through the requirements addressing:
a. Improvement processes
b. Identifying improvements
c. Reviewing documents and processes for opportunities for improvement

7. Factual approach to decision making
This principle is expressed as follows:
Effective decisions are based on the analysis of data and information.
The factual approach principle is reflected in ISO 9000 Standards through the requirements addressing:
a. Reviews, measurements and monitoring to obtain facts
b. Control of measuring devices
c. Analysis to obtain facts from information
d. Records for documenting the facts
e. Approvals based on facts

8. Mutually beneficial supplier relationships
This principle is expressed as follows:
An organization and its suppliers are interdependent and a mutually beneficial relationship enhances the ability of both to create value.
The mutually beneficial supplier relationships principle is reflected in ISO 9000 Standards through the requirements addressing:
a. Control of suppliers
b. Evaluation of suppliers
c. Analysis and review of supplier data

ISO 9000 Standards - ISO 9000 Standard Software

ISO 9000 Standards - ISO 9000 Standard Software
The term ISO9000 Standards refers to a set of quality management standards. ISO9000 currently includes three quality standards: ISO 9000:2005, ISO 9001:2000, and ISO 9004:2000. ISO 9001:2000 presents requirements, while ISO 9000:2005 and ISO 9004:2000 present guidelines. All of these are process standards (not product standards).

ISO 9001 Standard 's purpose is to facilitate international trade by providing a single set of standards that people everywhere would recognize and respect.

The ISO 9001 Standards apply to all kinds of organizations in all kinds of areas. Some of these areas include manufacturing, processing, servicing, printing, forestry, electronics, steel, computing, legal services, financial services, accounting, trucking, banking, retailing, drilling, recycling, aerospace, construction, exploration, textiles, pharmaceuticals, oil and gas, pulp and paper, petrochemicals, publishing, shipping, energy, telecommunications, plastics, metals, research, health care, hospitality, utilities, pest control, aviation, machine tools, food processing, agriculture, government, education, recreation, fabrication, sanitation, software development, consumer products, transportation, design, instrumentation, tourism, communications, biotechnology, chemicals, engineering, farming, entertainment, horticulture, consulting, insurance, and so on.

Reasons a Company Becomes Certified in ISO 9001 Standards

ISO 9000 certification or registration can be an expensive process. A company must consider the reasons and promised benefits for going through this process. If a company decides to seek certification, they should consider making sure their suppliers are certified or at least compliant to the ISO 9000 standards.
Major reasonsIn the early 1990s, companies seemed to be jumping on the certification bandwagon without seriously considering the rationale for doing so. Often they did so because competitors or “everybody else” is getting registered. Today companies seriously look at the reasons and benefits for becoming registered.
The major reasons that company leadership or management decides to seek ISO 9000 certification are to gain continued or increased business and to maintain effective operations.
Improved businessA company can maintain a relationship with customers, as well as get increased business through complying to the ISO 9000 standards or becoming certified. This comes from satisfying customer demands, the desire for European business, and to advertise.
Finally, some companies want to become certified, so they can advertise that fact and give the impression of being better than their competitors.
You have seen ads with a logo stating the company is certified at some ISO 9000 level. It apparently gives those companies a leg up on competitors not registered.
Again, this seemed more important in the 1990s, but you don’t see that many companies using ISO 9000 certification as an advertising tool.
ISO 9000 is supposed to make sure your business is run in an orderly manner that will assure continued success.
One would think that a goal such as being run effectively and able to deliver goods consistently and reliably would also be desirable for a company’s own operation. Surprisingly, many companies do not consider that as a goal.

ISO 9000 family of standards and SMEs

ISO 9000 family of standards and SMEs
The ISO 9000 quality management system is generic in nature and applicable to all companies, regardless of the type and size of the business, including small and medium enterprises (SMEs), and they are applicable to all categories of products, whether hardware, software, processed materials or services. ISO 9001:2008 specifies what is required to be done by an organization but does not indicate how it should be done, thus giving the enterprise a lot of flexibility to run its business.
It is simple to use, clear in language and easily understandable. The new standard is also appropriate for small companies, as it does not demand the type of paper bureaucracy needed for the implementation of the 1994 version. Only six documented procedures are now required and need for other procedures/documents can be decided by the company. Companies will, however, be required to provide objective evidence that the QMS has been effectively implemented. A small company may find it appropriate to include the description of its entire QMS within a single Quality Manual, including all the documented procedures required by the standard.
The process-based approach given in the new standard will tend to ensure that systems are documented and implemented in a manner that suits a SME’s own way of doing business. This approach makes it easier for SMEs to implement, instead of just taking over an artificial structure of QMS imposed from outside. It will also be easier for SMEs managed by their owners to demonstrate “top management commitment” towards QMS. Furthermore, in a SME, it is easier to ensure effective internal communication, better utilization of resources, people clearly understanding their roles and responsibilities, etc.
The new standard has included a provision for deciding on the applicability of
certain product realization processes included in section 7 of the standard. For example, if the SME has no responsibility for the design and development of the product it provides, the SME may say so, giving the reasoning behind it, in the Quality Manual; the certification body, being satisfied that this corresponds, would then award it certification to ISO 9001:2008. Similarly, other product realization processes such as purchasing, product identification and traceability, control of measuring devices may also be excluded if these are not applicable for the type of products or services being provided by the company.
It is also possible that SMEs may not have adequate in-house expertise or there may be other constraints to perform all processes on their own. In such cases, the new standard also permits the outsourcing of any of the QMS processes, providing the company has control over such processes. The nature of this control will depend on the nature of the outsourced or subcontracted processes and the risk involved. For example, the design and development process may be subcontracted to an expert or a specialized agency, inspection/verification of goods purchased may be subcontracted to an inspection agency, internal audit of QMS can be outsourced, etc. However, overall responsibility for ensuring control on all outsourced processes as per requirements of the standard would remain with the company’s management.

ISO 9000 Quality Standards

In 1987, mounting concern on global quality issues led the International Organization for Standardization, or ISO, headquartered in Geneva, Switzerland, to establish a series of international quality standards. Called the ISO 9000 Series of Standards, the series is not specific to any one industry, but when used with proper industry-specific standards, helps build a strong foundation for a quality system. The idea behind ISO is to promote standardization which will facilitate the international exchange of goods and services.
Currently, ISO 9000 certification is voluntary and not required or mandated in any country. However, the European community has recently required that quality systems of many suppliers of products related to health, safety, and the environment be formally registered, by a third party, according to the ISO 9000 Series standard. This action has made adoption of the ISO standards a prerequisite for doing business in Europe. Countries in Asia, Africa, and South America are more and more considering adoption of these standards as a means to increased trade among themselves and the United States. Over 20,000 companies have been registered worldwide, and at least 52 nations are implementing the standards.
In the U.S., the ISO 9000 Series of Standards was adopted in precise format as the ANSI/ASQC Q90 series of standards. The series comprises five individual, but related, international standards on quality management and quality assurance, known as ISO 9000, 9001, 9002, 9003, and 9004. For a company's quality system to become registered in one or more of these standards involves having an accredited, independent third party conduct an audit of the company's operations against the requirements of the ISO 9000 standards. Upon successful completion of this audit, the company will receive a registration certificate that identifies its quality system as being in compliance with ISO 9000 standards.