Alcumus ISOQAR conducts thousands of ISO 9001 audits every year. As the Head of Technical at Alcumus ISOQAR, where we review reports from our Auditors who have visited all sorts of businesses, I get to see exactly whatβs going on at the ground level. What I see is the same nonconformities cropping up time and time again.
While the observations below are based on what I see in ISO 9001, there are common clauses across all ISO management systems which are built around what we know as Annex SL. So these points also apply to, for example, ISO 45001 Occupational Health & Safety, ISO 14001 Environmental Management and ISO 27001 Information Security.
By the way, youβll get to read and hear the terms βnonconformityβ, βnonconformanceβ and βnoncomplianceβ. While we can argue semantics, and the technical documentation uses the term βnonconformityβ, in the real world they tend to be used interchangeably.
Anyway, hereβs a light-hearted look at the 10 of the most common nonconformities we encounter during ISO management system audits. Do you recognise yourself in here?
1. Lack of written objectives.
βTo be honest Iβm not really sure exactly what they are or why we need them.β
2. Failure to do internal audits.
βWe havenβt done any recently. We didnβt have the time. We need to update the schedule.β
3. Poor document control.
“Iβm not sure where it is just at the moment…”
4. Incomplete, inadequate or inaccessible records.
“I’m pretty sure I recorded that somewhere. It might be in this file. No, hang on, I put it on a spreadsheet…Give me a minute… “
5. Inadequate control of suppliers.
βYes I suppose we should formalise the selection of suppliers a bit better but we know these people personally and theyβre a good bunch.β
6. Lack of employee training.
“Weβve been a bit short on budget for that recently.β
7. Not conducted the management review.
“Nothing has gone wrong or changed much recently so I didnβt think we needed one. We had an informal meeting without the boss but we didnβt minute it. There werenβt any actions.”
8. Failure to record nonconformities.
“We tend to discuss things and not always write them down, we want to keep bureaucracy to a minimum.β
9. Lack of corrective action on nonconformities and evidence to show completion.
“Things donβt go wrong very often but we do write them down normally. Weβve not updated the status on this one but Iβm pretty sure it was done.”
10. Ineffective communication.
“To be honest I donβt really get involved. I have a lot on my plate and focus on my own job.”
Whilst it may be tempting to laugh at some of these nonconformities, almost all organisations are guilty of one or more at some point. Alcumus ISOQAR auditors are always looking for the positives in your management system – you can make their job easier by getting these basics right!
