The achievements of independently implementing ISO9000 certification and the original intention of sharing
Recently, relying solely on my own efforts without the assistance of a consulting firm, I successfully led and implemented the ISO9000 certification. This process was full of challenges, but it ultimately yielded a gratifying result. While organizing the relevant documents today, I suddenly had an idea to record in detail the entire process of implementing ISO9000, which will also include various "templates" of documents required during the implementation process.
There are mainly two purposes for doing this. Firstly, it is to provide references for those who are implementing or planning to implement ISO. Even if some people have never been exposed to ISO certification and have never even carried out internal audit work, as long as they operate according to the process I have recorded, there is a high probability that they can complete the implementation of ISO9001. Secondly, I hope to share these contents on the forum for experts to comment. They are rich in experience and can point out the inadequacies in my implementation process. In this way, I can learn from them and continuously improve my ability in this area.
Due to limited time, I will post in installments to gradually present the entire implementation process in full.
Step I of ISO implementation: Develop an implementation plan
1. System diagnosis: In this stage, the main tasks are to conduct a current - situation survey and identification, gain an in - depth understanding of the company's existing management system status, identify the gaps compared with ISO standards, and provide a basis for subsequent work.
2. Establish an ISO implementation team and organize relevant training: It is crucial to form a professional implementation team. The team members should have relevant knowledge and skills. At the same time, organize training for the team members to make them familiar with the ISO standards and implementation processes.
3. Planning of the system document structure: Reasonably plan the structure of the system documents to ensure clear hierarchies and logical coherence among the documents, facilitating management and implementation.
4. Preparation of procedure documents: Prepare detailed procedure documents according to ISO standards and the actual situation of the company, and clarify the processes and requirements of various tasks.
5. Preparation of the quality manual: The quality manual is the guiding document of the company's quality management system and should accurately elaborate on the company's quality policy, objectives, and management principles.
6. Compilation of third - level documents: Third - level documents are a further refinement of procedure documents, including work instructions, record forms, etc., to ensure that specific operating specifications are in place for all work.
7. System document review: Conduct a strict review of the prepared system documents to ensure that the document content complies with ISO standards and the actual needs of the company.
8. Promotion and training of system documents: Promote and train the system documents that have passed the review to enable all employees to understand the requirements of the quality management system and enhance their quality awareness.
9. System trial operation: After the document promotion and training are completed, conduct a system trial operation to test the feasibility and effectiveness of the system documents. Adjust in a timely manner if any problems are found.
10. Internal audit training: Organize training for internal auditors to enable them to master the methods and skills of internal audits.
11. Convene the first internal audit meeting to summarize and analyze the situation in the trial - operation stage, identify existing problems and propose improvement measures.
12. Management review meeting: The management review meeting is chaired by the senior management of the company to evaluate the overall operation of the quality management system and determine the direction of improvement.
13. Supplementary audit (regarding internal audit and management review): Since it is the first time to conduct the certification, two clauses (8.2.2 Internal quality system audit / 5.6 Management review) may not be audited, so a supplementary audit is required.
14. Improvement and perfection of the quality system: Based on the results of internal audits, management reviews, and supplementary audits, improve and perfect the quality management system to continuously enhance the system's effectiveness.
15. Certification application (the application generally needs to be submitted one month in advance): After the quality management system has been operating stably, submit a certification application to the certification body. The application time generally needs to be one month in advance.
16. On-site audit: The certification body conducts an on-site audit at the company to check whether the company's quality management system complies with ISO standards.
17. Correction of non - conformities found in external audits: If non - conformities are found during on - site audits, they should be corrected in a timely manner to ensure that the problems are thoroughly resolved.
18. Obtain the certificate: After the non - conformities are closed and a certain period of review has passed, the company can obtain the ISO9000 certification certificate.
Precautions for implementing the plan
The implementation plan schedule mentioned above would be better presented using a Gantt chart, which can more intuitively display the time arrangements and progress of various tasks. Meanwhile, the above time can be adjusted according to the actual situation of the company, but the following requirements must be met:
1. The system must be established and put into trial operation for 3 months before the certification company will conduct an external audit (mainly referring to on - site audit) at the factory. This is to ensure that the quality management system can operate stably and effectively in practice.
2. Generally, you need to apply for certification one month in advance. This allows sufficient time for the certification body to make arrangements and preparations.
3. Before the on - site audit, the company must conduct an internal audit and a management review. Generally, it is acceptable for the management review to be about 20 days later than the internal audit. Internal audit and management review are important means for the self - improvement of the quality management system. Through these two tasks, problems in the system operation can be discovered and promptly improved.
4. For the first certification, a supplementary audit is necessary. This is because during the first audit, two clauses (8.2.2 Internal Quality System Audit / 5.6 Management Review) may not be audited. The supplementary audit can ensure that these two clauses are effectively covered.
5. The current plans for internal audits and management reviews should generally be delivered to relevant departments one week in advance. In this way, relevant departments will have sufficient time to make preparations to ensure the smooth progress of audits and reviews.
6. If there are non-conformities during the on-site audit, the certificate can only be obtained one week after the non-conformities are closed. This is to ensure that the company has effectively rectified the non-conformities and to guarantee the effectiveness of the quality management system.
7. The business hours of the company must be at least six months. This is a basic requirement of the certification body for the company's stability and operational ability.
As long as you pay attention to the above time nodes and requirements, you can better grasp the time to obtain the certificate and smoothly complete the implementation of the ISO9000 certification.