Professional Documents
Culture Documents
Chapter 10: ISO 9000 Quality Management System High Points of This Chapter
Chapter 10: ISO 9000 Quality Management System High Points of This Chapter
1. ISO 9000 standards have had great impact on the implementation of international trade
and quality systems by organizations worldwide; deal with the management systems used
by organizations to ensure quality in:
design
Production
Delivery
support products
2. The new ISO 9001:2015 standards includes several important changes for Quality
Management Systems, including modifications in terminology, the introduction of new
context-based clauses, emphasis on management’s role in quality, and a focus on risk-
based approach.
3. To maintain its registered status, the supplier organization must pass periodic surveillance
audits by a registrar.
4. The ISO 14000 is a standard for an environmental management system; to reduce the
environmental footprint of a business and to decrease the pollution and the waste a
business produces.
5. cGMP refers to the Current Good Manufacturing Practice regulations enforced by the
U.S. Food and Drug Administration (FDA).
6. AS9100 is a widely adopted and standardized quality management system for the
aerospace industry.
electrical
mechanical
chemical process compatibility
Other standards were developed for the military and other groups for the nuclear power industry,
and to a lesser extent, for a commercial and industrial use.
1980s – most of the organizations in the industrialized world began to improve quality and safety
at record paces; hence, there became a need to fill a void.
Common Quality Management System – the void between the customer and the supplier; non-
binding “contract
ISO 176 Technical Committee – filled the void in the form of the ISO 9000 set of standards,
which was followed by environmental standards named as ISO 14000.
ISO 9000 – basis of the development of sectors quality system standards of certain
industry/economic sectors.
These industries are:
have had great impact on international trade and quality systems implementation by
organizations worldwide
have been adopted as national standards by 70 countries
have been applied in a wide range of industry/economic sectors
apply to all generic product categories: hardware, software, processed materials, and
services
ISO 9000 Family of Standards – provides quality management guidance, quality assurance
requirements and supporting technology for an organization’s quality management system
(guidelines on what features are to be present in the management system)
Certified Quality Management System – can be registered upon implementing ISO 9000
Technical Committee 176 of the International Organization of Standardization (ISO) –
created, produced, and maintained the standards in the ISO 9000 family
ISO/TC176 – first meeting was held in 1980
ISO 8402 – vocabulary standard; first published in 1986.
The initial ISO 9000 series was published in 1987, consisting of the following:
The market for quality management and quality assurance standards itself grew rapidly, partly in
response to trade agreements such as the:
ISO 9001:2015
Certificates for the ISO 9001 Standard have been issued to over million organizations in
over 170 countries.
After 25 years of implementation of the first ISO 9001 Standard, a revised version was
introduced.
Major Differences in Terminology from ISO 9001:2008 to 9001:2015
ISO 9001:2008 ISO 9001:2015
Products Products and services
Exclusions Not used
Documentation, records Documented information
Work environment Environment for the operation processes
Purchased product Externally provided products and services
Supplier External provider
In addition, two new clauses have been introduced regarding the context of the organization:
Risk-based approach – another significant change in the ISO 9000:2015 in which have been put
more emphasis on
ISO 9001:2015
Clause Application of Risk-Based Thinking
Clause 4 The organization is required to determine its QMS
processes and to address its risks and opportunities
Clause 5 Top management is required to:
Promote awareness of risk-based thinking
Determine and address risks and opportunities
that can affect product/service conformity
Clause 6 The organization is required to identify risks and
opportunities relation to QMS performance and take
appropriate actions to address them
Clause 7 The organization is required to determine and provide
necessary resources
Clause 8 The organization is required to manage its operational
processes
Clause 9 The organization is required to monitor, measure,
analyze, and evaluate effectiveness of actions taken to
address the risks and opportunities
Clause 10 The organization is required to correct, prevent, or
reduce undesired effects and improve the QMS and
uodate risks and opportunities
The ISO 9000 family standards contain requirements and guidelines which is a quality system
model to be used for quality assurance purposes for providing confidence in product quality.
A requirements standard becomes binding upon an organization wherever it:
is explicitly called up in a contract between the organization and its customer
seeks and earns third-party certification/registration
All of the ISO 9000 family standards are generic; they are nonprescriptive in describing what
management system functions shall or should be in place but do not describe how to carry out
those functions.
The ISO Standards do not include the full scope of managing for quality. It is only an assurance
system focused on processes that only impact customer requirements being met. Organizations
saw ISO Standards as an important part of their performance excellence program which is the
inclusion of the planning, control, and improvement methods and applying these to all processes
to manage quality.
Quality control is different form quality assurance.
Quality control: what to monitor to ensure requirements are met
Quality assurance: provides information on how our system is performing to
predetermine product specs and plans. It is reviewing and auditing the system to provide
gains on improvements
Providers of training, assessment, or advice in quality management
Developers of related standards
Accreditation-Level Activities
Systems of Registrar Accreditation – Set up worldwide to ensure competence and objectivity
of the registrars.
Accreditation Bodies – audit the registrars for conformity to standard international guides for
the operation of certification bodies. Scrutinize the quality system of the registrar through audits
that cover the registrar’s documented quality management system, the qualifications and
certification of auditors used by the registrar, the record keeping, and other features of the office
operations.
Under the European Union’s modular approach, to qualify to be able to use the mark, the
supplier organization must produce evidence of conformity in four areas:
1. Technical documentation of product design
2. Type testing
3. Product surveillance (by samples, or by each product)
4. Surveillance of quality assurance
Guiding Principles
The guiding principle should be that primary reliance must be places on the concept of “truth in
labelling,” by means of which every customer has routine, ready access to the information upon
which to judge all four elements of the scope of a supplier’s registered quality system.
In the United States, the Food and Drug Administration (FDA) developed and
promulgated the Good Manufacturing Practice (GMP) regulations.
The GMP operates under the legal imprimatur of the FDA regulations, which predate the
ISO 9000 standards.
In the United States, the FDA is in late stages of developing and promulgating revised
GMPs that parallel closely the ISO 9000 standard, plus specific regulatory requirements
related to health, safety, or environment.
The expansion of scope to include quality system requirements related to product design
reflects the recognition of the importance of product design and the greater maturity of
quality management practices in the medical device industry worldwide.
Similar trends are taking place in other nations, many of which are adopting ISO 9001
verbatim for their equivalent of the GMP regulations.
cGMPs refer to Current Good Manufacturing Practice regulations enforced by the FDA.
They provide for systems that ensure proper design, monitoring, and control of
manufacturing processes and facilities.
Adherence to cGMP regulations ensures the identity, strength, quality, and purity of drug
products.
cGMP requirements were established to be flexible in order to allow each manufacturer
to decide individually on how to best implement the necessary controls by using
scientifically sound design, processing methods, and testing procedures.
According the C in cGMP requires companies to use technologies and systems that are
up-to-date
It is important to note that cGMPs are minimum requirements.
A consumer usually cannot detect that a drug product is safe or if it will work. Although
cGMPs require testing, testing alone is not enough to ensure quality.
Therefore, it is important that drugs are manufactured under conditions and practices
required by cGMP regulations to ensure that quality is built into the design and
manufacturing process at every step.
To ensure that quality is built into the design and manufacturing process, and to
help to ensure safety and efficacy of drug products, production lines must comply to
these cGMP requirements:
In the years preceding publication of the 1987 ISO 9000 standards, various original
equipment manufacturers (OEMs) in the automotive industry had developed company-
specific proprietary quality system requirements documents.
Upon publication of ISO 9001:1994, the major U.S. OEMs began implementation of an
industry-wide common standard, labeled QS-9000, that incorporates ISO 9001 verbatim
plus industry-specific supplementary requirements.
On Dec 14, 2006, all QS 9000 certifications were terminated. ISO 9001 and ISO/TS
16949 were no longer valid. QS 9000 is considered to have been superseded by ISO/TS
16949.
ISO/TS 16949:2009, in conjunction with ISO 9001:2008, defines quality management
system requirements for design and development of automotive-related products. It also
applies where customer-specified parts are manufactured for productions and/or service.
ISO/TS 16949:2009 can be applied throughout the automotive supply chain.
Computer Software
The global economy has become permeated with electronic information technology (IT).
First, it should be noted that computer software development is not so much an industry
as it is a discipline.
Second, many IT practitioners emphasize that computer software issues are complicated
by the multiplicity of ways that computer software quality may be critical in a supplier
organization’s business. For example:
What, then, are the issues in applying ISO 9001 to computer software development?
There is general consensus worldwide that:
o The generic quality management system activities and associated requirements in
ISO 9001 are relevant to computer software, just as they are relevant in other
generic product categories (hardware, other forms of software, processed
materials, and services).
o There are some things that are different in applying ISO 9001 to computer
software.
ISO/TC176 developed and published ISO 9000-3:1991 as a means of dealing with this
important, paradoxical issue.
ISO 9000-3 provides guidelines for applying ISO 9001 to the development, supply, and
maintenance of (computer) software. ISO 9000-3 offers guidance that goes beyond the
requirements of ISO 9001, and it makes some assumptions about the life cycle model for
software development, supply, and maintenance.
In the United States, a proposal to adopt a TickIT-like software scheme was presented to
the ANSI/RAB (Registration Accreditation Board) accreditation program. The proposal
was rejected, primarily on the basis that there was no consensus and support in the IT
industry and the IT-user community.
Standards are here to stay. Many industries are working together with various standard-
setting bodies to improve their standards and mandate as many systems as possible to
ensure safety and quality of our products.
For instance, ISO 31000:2009, Risk Management – Principles and Guidelines – was
developed to help organizations manage risk effectively.
The ISO has published a standard to facilitate implementation of quality management
systems.
ISO 13485:2003, Medical Devices – Quality Management Systems – Requirements for
Regulatory Purposes, is based on quality management system requirements currently
contained in medical device regulations around the world.