Was COVID-19 in your emergency response plan? No? You’re not alone.

It’s very likely that your management system did not include a contingency for a global pandemic.  But it is a fantastic opportunity for us to learn something from it.

Many companies create emergency response plans because they are trying to comply with an ISO standard, or perhaps a statutory or regulatory requirement or even a customer requirement.  And many of us go through the motions creating those plans with the usual “fire”, “hurricane”, and “power outage” emergencies.  Perhaps we even add in a fire drill once in a while as part of our robust emergency response plan.  And thankfully, it is rare that we actually have to activate these plans.

But here comes our friend 2020 and just like that, our lives (and businesses) will forever be changed.  This pandemic brings generations together in that we can all agree, “we aint never seen anything like it”.  But more than that, it reveals a vulnerability in all of us, and in our businesses about just how important having an emergency response plan IS.

Now, maybe we didn’t have any of this in our previously created plan.  But we are being tested now.  And we can embrace the opportunity to make our previous plan better.  Much better.

Organizations around the globe are finding innovative solutions to protecting their workers, continuing the supply chain (as well as is possible), helping their customers, supporting their suppliers.  Even governments (gasp) around the world are finding ways to work together to temporarily enact emergency measures to allow essential businesses to continue to serve the public.

And now is the time to capture all that innovation and put it in our plans for whatever our businesses might face next.  I’m encouraging everyone to keep this in mind.  Dust off that old emergency response plan and put in some of the stuff you and your organization have learned over the past few weeks, and will learn in the weeks to come.

The old saying, “never let a crisis go to waste” can be turned on its ear from being a really negative one to a positive addition to all our businesses.

What is your organization doing today that you can add to your plans for the future?

Posted in Uncategorized

ISO9001:2015 52-Wk Challenge (Wk 51 & 52) FINAL EDITION 10 Improvement

fireworksWell, this is it, folks!

Thank you to everyone for your participation for the past 52 weeks.  Your comments have been thought provoking and helpful to many.  And with so many companies beginning to seriously consider their strategy for conversion to ISO9001:2015, these weekly posts will be there to look back upon as we move forward.

With the New Year upon us, it’s so fitting that we end our 52 Week Challenge with a positive topic to get us moving in 2016!

 

“10 Improvement

10.1 General

The organization shall determine and select opportunities for improvement and implement any necessary actions to meet customer requirements and enhance customer satisfaction.”  Our previous weeks’ discussions have focused on the core management system, its components and processes and establishing objectives and achieving them.  Now what?  Improvement, of course.

“These shall include:

a)  improving products and services to meet requirements as well as to address future needs and expectations.”  This is just one example of many where all areas of the organization should be involved in the management system.  Areas such as engineering and sales have many opportunities to address, and effectively do address them throughout the year.  But by forgetting to include this in the management system, the work gets done, but the leaders of the management system may forget to connect the dots and realize this.

“b)  correcting, preventing or reducing undesired effects;”  This is a rather significant change from ISO9001:2008 in that corrective and preventive action have been discussed in a different way.  The traditional preventive action is now linked to risk based thinking.  But the requirements for improvement include correcting, preventing or reducing undesired effects.

“c)  improving the performance and effectiveness of the quality management system.”  This is mainly referring to the objectives of the management system and whether or not the organization is meeting them.  Action is expected to continually improve the management system.  But there are also opportunities to improve the effectiveness of the management system such as improving the internal audit process, for example.

“NOTE:  Examples of improvement can include correction, corrective action, continual improvement, breakthrough changes, innovation and re-organization.”  This is a nice clarification because demonstrable continual improvement can sometimes be elusive.  This list provides the user with some examples to help them define their own improvement.

“10.1  Nonconformity and corrective action

10.2.1 When a nonconformity occurs, including any arising from complaints, the organization shall:

a)  react to the nonconformity and, as applicable:

1)  take action to control and correct it;

2)  deal with the consequences;”

This is a nice restructuring of the corrective action requirements in my opinion, because it clearly states the allowance that not every single nonconformance necessarily requires a root cause analysis and elaborate investigation and action plan.  Many organizations have struggled with this and have wasted resources maintaining a burdensome corrective action process because they are fully employing all resources to every problem, without consideration of importance, significance or impact.

“b)  evaluate the need for action to eliminate the cause(s) of the nonconformity, in order that it does not recur or occur elsewhere, by:

1)  reviewing and anlysing the nonconformity;

2)  determining the causes of the nonconformity;

3)  determining if similar nonconformities exist, or could potentially occur;”

Following the logic discussed above, the organization should evaluate how far to take each of its corrective action investigations.  This allows the organization to more effectively execute their corrective action process.  If we can weed through the significant issues and dedicate some serious time and resources to them, we can have a meaningful impact on our overall quality.  But if we spend our time running each and every problem through a full root cause analysis, we lose the ability to distinguish between the levels of significance, and also are likely to lose the engagement of the people required to work on corrective actions as well.

“c)  implement any action needed;

d)  review the effectiveness of any corrective action taken;”

These are two distinctly different concepts and in many cases, this can be the weak link in an effective corrective action process.  Not only must the organization identify a cause and ensure that the prescribed actions are taken, but that the actions actually worked.  Many corrective actions’ closure process includes confirmation that all the action items were completed, but miss the critical step of confirming that the action items actually solved the problem.

“e)  update risks and opportunities determined during planning, if necessary;

f)  make changes to the quality management system, if necessary;”

These two areas take time to evolve within the management system.  These are learnings from our management system – where we are successful and where we fail.  We should learn from our failings and implement changes to our management system so that it can mature and improve.

“Corrective actions shall be appropriate to the effects of the nonconformities encountered.”  This is, of course, self explanatory.

“10.3  Continual improvement

The organization shall continually improve the suitability, adequacy and effectiveness of the quality management system.

The organization shall consider the results of analysis and evaluation, and the outputs from management review, to determine if there are needs or opportunities that shall be addressed as part of continual improvement.”

This is where we stretch to when all else is going well.  As the management system matures and stabilizes, we are required to continually reach higher and higher to improve.

I am grateful for your participation in this full year’s discussion and wish you all the very best in 2016!  Keep improving!

 

 

Posted in continuous improvement, ISO9001, lean, Quality, six sigma, Uncategorized

ISO9001:2015 52-Wk Challenge (Wk 49 & 50) 9.3 Management review

management review9.3 Management Review

This week’s topic is near and dear to my heart.  Every business I’ve worked with has underutilized this tool.  Many companies do it simply to meet the requirement, and do not fully embrace the idea that this IS the heart and soul of a good management system.

“9.3.1 General

Top management shall review the organization’s quality management system, at planned intervals, to ensure its continuing suitability, adequacy, effectiveness and alignment with the strategic direction of the organization.”  A common theme I’ve seen is that organization’s try to get away with doing this once per year and again, simply to “check the box” and meet the requirement.  The point of management review is to keep a finger on the pulse of the system and respond to its performance trends and its needs.  It’s tough to look backward a whole year and have any type of effective response plan.

“9.3.2  Management review inputs

The management review shall be planned and carried out taking into consideration:”  It’s a good idea, with a new management system, to have management review frequently (even monthly) until a routine is established.  The required inputs also need time to develop and mature.  For example, some performance metrics, once discussed, may need to be refined to satisfy everyone’s needs.

“a)  the status of actions from previous management reviews;”  If metrics are performing poorly, or previous action items are not being dealt with, management review frequency should increase until these issues are solved.

“b)  changes in external and internal issues that are relevant to the quality management system;”  This may include changes to the ISO9001 standard, for example.  Or the addition of a new customer with new requirements.  Or local or federal regulations.

“c)  information on the performance and effectiveness of the quality management system, including trends in:

1.  customer satisfaction and feedback from relevant interested parties;

2.  the extent to which quality objectives have been met;

3.  process performance and conformity of products and services;

4.  nonconformities and corrective actions;

5.  monitoring and measurement results;

6.  audit results;

7.  the performance of external providers;”

These are straightforward metrics the organization must address, and they usually take some discussion to develop fully so that all parties agree on the accuracy of their data sources, and the applicability to the organization.

“d)  the adequacy of resources;”  This discussion usually results in action items assigned to make organizational changes, add resources, purchase equipment, obtain training, etc.

“e)  the effectiveness of actions taken to address risks and opportunities (see 6.1)”  This is a new requirement and must definitely be added as a change to management review if your organization was previously following ISO9001:2008.  And it’s very likely that third party auditors will go right to this area to ensure this change has been made.

“f)  opportunities for improvement.”  Most organizations use this as an opportunity to solicit input from many different areas in addition to making recommendations based on the performance metrics.

“9.3.3 Management review outputs

The outputs of the management review shall include decisions and actions related to:”  This is usually where management review breaks down.  Many organizations “have the meeting”, but by the time all the inputs are reviewed, everyone has lost interest or gotten lost in the exercise, and the conclusions part is forgotten altogether.  If this is an issue in your current system, try to organize and make the meeting more efficient so that this area gets a full measure of focus.

“a)  opportunities for improvement;

b)  any need for changes to the quality management system;

c)  resource needs.

The organization shall retain documented information as evidence of the results of management reviews.”  The documented information should include conclusions and recommendations to address each of the outputs listed.

THIS WEEK’S HOMEWORK

Review your management system.  And in that review, it is necessary that you review not only management review, but also loop back to your organization’s context, needs of all interested parties AND the processes you identified as necessary to manage your system.  The requirements specifically reference back to those areas and the expectation is that the entire system be aligned and designed to trail back to the basic needs of the business. Management review should be a basic business review meeting with perhaps a few inputs specific to quality.  It should not be interpreted as being its own standalone thing.

This are will probably require some significant revision, so while you’re at it, I would suggest taking the opportunity to also review your metrics, the structure and frequency of your meeting.  Get feedback from those who attend the meeting to see what improvements could be made to better engage everyone involved in the process.  Good luck!

 

Posted in continuous improvement, ISO9001, lean, Quality, six sigma

ISO9001:2015 52-Wk Challenge (Wk 47 & 48) 9.2 (9.2.1 & 9.2.2) Internal audit

internal audit9.2 Internal audit (9.2.1, 9.2.2)

This week is a double feature to include the entire 9.2 Internal audit clause.  Internal audits are one of the most underutilized tools in management systems.  The whole notion of internal audits can invoke fear for the auditees, and nuisance work for auditors.  This is one of the most important issues to address with the implementation of internal audits.  Creating a system which is easy to use for the auditors, and an audit team style of encouragement and cooperation for the auditees is key.

Let’s review the first part of the requirements.

“9.2.1 The organization shall conduct internal audits at planned intervals to provide information on whether the quality management system:”  Stopping right here, this is a question I see a lot.  “How often do we have to do audits?”  The first hint is in this sentence, where it includes “at planned intervals”.  The organization must plan it’s internal audit program.  Moving on:

“a) conforms to:

1. the organization’s own requirements for its quality management system;”  The first thing to review with internal audits is the organization’s performance with regard to its own management system.  This is very important so that the internal audit process is not a simple do-over of the third-party registration or surveillance audits.

“2. the requirements of this International Standard;”  This is where the standard comes in.  In addition to the organization’s own requirements, the system should be assessed to its conformance to the ISO9001 standard.

“b) is effectively implemented and maintained.”  This is an important bullet point.  Many internal audits omit the addition of effective implementation.  I like to include three areas for consideration for each area audited – where is it described in the quality system (documentation), what is the evidence (records) and how is it working (assessment of effectiveness).

“9.2.2 The organization shall:

a) plan, establish, implement and maintain an audit programme(s) including the frequency, methods, responsibilities, planning requirements and reporting, which shall take into consideration the importance of the processes concerned, changes affecting the organization, and the results of previous audits;”  The frequency of audits is at the discretion of the organization and should include the items listed above.  One notable area is “changes affecting the organization”.  Where there are changes to the management system, a follow up internal audit is a great way to validate the change as well as verify implementation of the change.

“a) define the audit criteria and scope for each audit;”  Many organizations use a checklist to meet this requirement.  It may be a master checklist or subset checklists to make the audit program more manageable.

“b) select auditors and conduct audits to ensure objectivity and the impartiality of the audit programme;”  This should be specifically described in the audit process.  Tools such as job descriptions, training and competence assessments and audit feedback surveys can be used to ensure objectivity is maintained.

“c) ensure that the results of the audits are reported to relevant management;”  This is a required input to Management Review, so there is a second requirement in the standard that these be tied together.  Reporting audit results to management is key to ensure the continued effectiveness and continual improvement of the management system.  It is the whole purpose for having the internal audit program.

“d) take appropriate correction and corrective actions without undue delay;”  Many companies issue “corrective actions” for significant findings from internal audits.  It is very important to ensure the corrective actions are completed (and the actions verified!) in a timely manner.  They should receive the same scrutiny that a product nonconformance corrective action and should be dealt with in an appropriate manner and timeline.

“f) retain documented information as evidence of the implementation of the audit programme and the audit results.”  This is another area where records or documented information is required.  Lack of internal audit records will result in noncompliance.

NOTE: See ISO19011 for guidance

THIS WEEK’S HOMEWORK

Take a look at your internal audit process and documentation.  Is the audit plan adequate?  Does your audit ask “where is it described in the quality system (documentation), what is the evidence (records) and how is it working (assessment of effectiveness)”?  When changes are made, is there an audit to assess the implementation and effectiveness of the change?  Review your previous audit results for clues about where you might be able to make improvements to get the most from your internal audit program.  Good luck!

 

Posted in continuous improvement, ISO9001, lean, Quality, six sigma, Uncategorized

ISO9001:2015 52-Wk Challenge (Wk 46) 9.1.2 Customer satisfaction, 9.1.3 Analysis and evaluation

customer satisfaction9.1.2 Customer satisfaction

Let me start this week’s discussion with the observation that this section is awkwardly constructed (in my opinion).  The section introduces itself as being about performance monitoring, then shifts gears and pulls out one of the specific areas to be monitored, then shifts back to describing types and methods of monitoring performance.  Also, this section inexplicably gives examples for clarification in its “notes” sections.  For what purpose?  These topics are some of the most self explanatory of the bunch, and yet, examples are given as if the reader might need the help to understand.  Anyway, it just seems weird to me.  But let’s read the section.

“The organization shall monitor customers’ perceptions of the degree to which their expectations have been fulfilled.  The organization shall determine the methods for monitoring and reviewing this information.

NOTE:  Examples of monitoring customer perceptions can include customer surveys, customer feedback on delivered products and services, meetings with customers, market-share analysis, compliments, warranty claims and dealer reports.”

The text says “the organization shall determine the methods…” and then follows up with a prescriptive note giving examples of what those methods should be.  Bottom line, customer satisfaction is a requirement and it must be evaluated and monitored.

9.1.3  Analysis and evaluation

This sections switches gears back to the structure of the performance evaluation system and provides a list of those things which should be monitored (again listing customer satisfaction).

“The organization shall analyze and evaluate appropriate data and information arising from monitoring and measurement.

The results of analysis shall be used to evaluate:

a)  conformity of products and services;

b)  the degree of customer satisfaction;

c)  the performance and effectiveness of the quality management system;

d)  if planning has been implemented effectively;

e)  the effectiveness of actions taken to address risks and opportunities;

f)  the performance of external providers;

g)  the need for improvements to the quality management system”

The list of things which must be monitored is quite extensive and comprehensive and the next section “internal audits” will provide one of many methods for gathering and analyzing data on the areas listed above.

“NOTE:  Methods to analyze data can include statistical techniques.”

Again, I think this note is just weird.  I shake my head as I read it and say “no kidding” to myself.  But ok, there it is.

THIS WEEK’S HOMEWORK

Review your current monitoring and measuring system.  In many cases, “management review” is where this type of data is analyzed and reported.  Take a moment to validate the data and check your team’s perception of the validity of the data.  In many quality systems, debatable data creates roadblocks to improvement.  Data must be vetted and agreed to by all to ensure performance monitoring is paid attention to and responded to.

Also, take the opportunity to assess the types of monitoring that are being done.  Are the right things being measured?  Are they relevant?  Are they continually improving?  Are the frequencies at which they are monitored appropriate?  This time of year is, for many organizations, a great opportunity to tie in with the strategic business plan and make sure the performance monitoring methods align with the plan.  Good luck!

Posted in continuous improvement, ISO9001, lean, Quality, six sigma

ISO9001:2015 52-Wk Challenge (Wk 45) 9 Performance evaluation

performance evaluation9 Performance evaluation

9.1.1 General

We are starting to enter the place where organizations can lose their way and ultimately miss out on the intended value-add they’re looking for when they decide to pursue certification to ISO9001 in the first place.  I’ve seen companies write documentation and do internal audits and have records and forms and create all kinds of “audit prep” evidence.  But in the end, they are disappointed that they didn’t see the real gains they expected by having this type of quality management system.

Performance evaluation is key, and a very deliberate approach is necessary.  These requirements are intended to ensure the organization strategically decides what to measure so that it will be able to evaluate whether the system is working to achieve the organization’s objectives.  Previous versions of the standard have been often interpreted to be very prescriptive in that a user may jump right to management review “inputs” and “outputs” or internal audits or other areas suggested by the standard.  This clause, in how it is now written, simply tells the organization to take a pause and really define what is trying to be achieved by the quality system.

It really is a “no brainer”, but it has so often been skipped.

“9.1.1 General

The organization shall determine:

a)  what needs to be monitored and measured;”  This is so simple, it shouldn’t need mentioning, but alas, the requirement is there.  It is just so elegant in its simplicity that it makes the point and reminds the organization that this is about them, not about compliance.

“b)  the methods for monitoring, measurement, analysis and evaluation needed to ensure valid results;”  This is actually my favorite item in this clause.  And I hope it gets the scrutiny it deserves.  One of the areas where many systems break down is when it comes to the validity and legitimacy of results.  I’m sure everyone reading this has had the experience during problem solving, lean or Six Sigma projects, management review, etc of having the people involved arguing about the validity of the results.  It is very important to take this step of carefully choosing (and everyone buying into) the method for measuring performance.

“c)  when the monitoring and measuring shall be performed;

d)  when the results from monitoring and measurement shall be analyzed and evaluated.”  This is important to work out so that a reaction plan can be made to respond to results.  This helps ensure that feedback is provided appropriately, and as actions are taken, their effect can be shown.

“The organization shall evaluate the performance and the effectiveness of the quality management system.”  I especially like this point as well and how many times I’ve seen it missed!  When all is said and done, the organization must ask itself, “Is this working?”  If it doesn’t, it misses the point altogether.  For example, I’ve seen companies carry out management review faithfully and regularly, but merely repeating the same performance to themselves over and over and never really getting anywhere with the whole lets-see-some-real-improvement thing.    We must review the results we’ve obtained and make a decisive declaration about the effectiveness of the system.

“The organization shall retain appropriate documented information as evidence of the results.”  Keeping records of this would obviously be important so that trends can be monitored and improvement opportunities can be spotted.

THIS WEEK’S HOMEWORK

Have a look at your organization’s method for performance evaluation.  Is it comprehensive?  Are the right things being measured?  Is it telling you something?  Is everyone on the same page about what it’s telling you?  Does everyone agree on the validity of the data?  This type of activity is obviously a good fit for a strategic business planning meeting and it’s that time of year when many companies are looking forward to their next business year.  Take the opportunity to align this and be sure your business goals include and agree with your quality system goals and get ready for a great 2016!

Posted in continuous improvement, ISO9001, lean, Quality, six sigma

ISO9001:2015 52-Wk Challenge (Wk 44) 8.7 Control of nonconforming outputs

rejected8.7 Control of nonconforming outputs

This week’s topic is one that is very clearly defined and universally applicable.  There is very little subjectivity in the requirements and they are listed in a logical and easy to understand way.

“8.7.1 The organization shall ensure that outputs that do not conform to their requirements are identified and controlled to prevent their unintended use or delivery.” Most companies operate with a quarantine area for tangible goods or a positive or confirmed interruption in processing for services or other outputs.  When something isn’t right, there must be a sure way to contain the output until the problem can be corrected.

“The organization shall take appropriate action based on the nature of the nonconformity and its effect on the conformity of products and services.  This shall also apply to nonconforming products and services detected after delivery of products, during or after the provision of services.”  It is clear that if there is to be any quality system at all, taking action when a nonconformity is discovered is bedrock.

“The organization shall deal with nonconforming outputs in one or more of the following ways:

a)  correction;

b)  segregation, containment, return or suspension of provision of products and services;

c)  informing the customer;

d)  obtaining authorization for acceptance under concession.”

These are the simple actions that should be taken when dealing with a nonconformity.  One or all of them may be appropriate to employ.  Moving onto the next thought creates a closed-loop system for dealing with and putting to rest any nonconforming outputs.

“Conformity to the requirements shall be verified when nonconforming outputs are corrected.”  This is such a common breakdown of an effective nonconformity process.  Even when teams are successful at containing an issue and even tracking down the cause, the verification step is often incomplete.  Action items are assigned and completed and the issue is thought to have been solved.  But many times, the problem may reappear immediately, because the action item, however well intended may not actually solve the problem.  This should always be verified.

“8.7.2 The organization shall retain documented information that:

a)  describes the nonconformity;

b)  describes the actions taken;

c)  describes any concessions obtained;

d)  identifies authority deciding the action in respect of the nonconformity.”

Retaining documented information on nonconformities is practical and makes sense, of course.  But it will also come into play later in the requirements for 9 Performance evaluation and 10 Improvement.  Most organizations retain a database of some sort which contains much more than the requirements listed here, making it easy to maintain, easy to extract information and trends, and finally, very easy to audit from a compliance standpoint.

THIS WEEK’S HOMEWORK

Take a moment to review your system for nonconformances.  Is it complete?  Is it effective in steering improvement efforts?  Do nonconformities recur frequently?  Is there room for improvement of the system (including a robust verification activity)?  A good process for dealing with nonconformities can be extremely valuable to get the real improvement we all look for.  After all, it’s the whole purpose of having a quality system at all – to actually IMPROVE the QUALITY of our output.

Posted in continuous improvement, ISO9001, lean, Quality, six sigma, Uncategorized

ISO9001:2015 52-Wk Challenge (Wk 43) 8.6 Release of products and services

release of product approved8.6 Release of products and services

This week’s topic, “release of products and services” is a nuts and bolts component of most quality systems.  As products and services are manufactured or created, there are typically repetitive steps used to fulfill the manufacture or creation of the product/service.  And it is very typical for there to be verification activities at each step, prior to it progressing to the next, to ensure each step is done correctly and the output of that step meets requirements.  This is typically done through some type of inspection or verification.  “Inspection” doesn’t necessarily mean the old notion of an inspector actually giving the product a onceover.  It may certainly be something internal to the process, error proofing, automated verification, etc.

But the standard is very clear on the requirement that steps be put in place to ensure all products/services meet expectation prior to release.

“The organization shall implement planned arrangements, at appropriate stages, to verify that the product and service requirements have been met.”  This planning will almost certainly have been included as the product realization processes are/were defined.  The “requirements” of the product/service must defined, and then methods to ensure they have been met must be defined at appropriate stages.

“The release of products and services to the customer shall not proceed until the planned arrangements have been satisfactorily completed, unless otherwise approved by a relevant authority, and as applicable, by the customer.”  In the planning process, the requirements are defined and this statement requires that the requirements must be checked and met prior to release to the customer.  There are caveats that parties other than the actual producer may perform the verification, but the producer is still responsible for ensuring the steps are taken.

“The organization shall retain documented information on the release of products and services.  The documented information shall include:

a)  evidence of conformity with the acceptance criteria;

b)  traceability to the person(s) authorizing the release.”

This used to be interpreted as requiring a final inspection document of some sort which specifically states “pass/fail” or “approved” and a signature.  Technology and automation, in the absence of a piece of paper, can certainly suffice so long as the evidence of conformity and traceability to an authorized person can be established.

THIS WEEK’S HOMEWORK

Start with a consideration of the products/services your organization produces.  Next, take a look at the steps used to create them.  In each case, are they defined?  Are the requirements for acceptability defined?  Are methods in place to confirm acceptability?  Is documented information available as evidence of each?  Next week, we’ll roll right into “nonconforming product/service” so be sure to give this topic a good look before we get there!

 

Posted in continuous improvement, ISO9001, lean, Quality, six sigma, Uncategorized

ISO9001:2015 52-Wk Challenge (Wk 42) 8.5.6 Control of changes

change frog8.5.6 Control of changes

This clause is critical and essential and, excluding the clear definition of requirements in the first place, the biggest risk, in my opinion to the stability of the QMS.  Changes which are not clearly communicated create confusion.  Changes which have not been adequately reviewed and vetted may be implemented and result in an undesired outcome.  Changes, in general, create instability and a robust change management process is critical to ensure changes are fully reviewed, approved, communicated, understood and validated when they are implemented.

ISO9001:2015 describes the following requirements:

“The organization shall review and control changes for production or service provision, to the extent necessary to ensure continuing conformity with requirements.”  The organization is required to review and control changes for all of the previously discussed “production and service provision” topics including 8.5.1 Control of production and service provision (all of the controls established in the first place), 8.5.2 Identification and traceability, 8.5.3 Property belonging to customers or external providers, 8.5.4 Preservation and 8.5.5 Post-delivery activities.  So, just as the QMS must have defined each of these items, any changes to them must be controlled.

“The organization shall retain documented information describing the results of the review of changes, the person(s) authorizing the change, and any necessary actions arising from the review.”  The interesting point here is that while this clause requires the above listed components of the QMS be protected during changes, and the changes be documented, only 8.5.2 and 8.5.3 have the requirement to have been documented in the first place.  Therefore, the organization must determine the most effective way to retain documented information of changes, whether the issue was initially documented or not.

THIS WEEK’S HOMEWORK

Review your QMS and determine where each of the bullets in this clause is determined.  Then, follow the trail to determine whether you have “documented information” regarding changes to any of those areas.  Review your change management process to ensure it includes the requirements of ” results of the review of changes”, “the person(s) authorizing the change” and “any necessary actions arising from the review”.

Posted in continuous improvement, ISO9001, lean, Quality, six sigma, Uncategorized

ISO9001:2015 52-Wk Challenge (Wk 41) 8.5.5 Post-delivery activities

post delivery pizza8.5.5 Post-delivery activities

This requirement is not new, but it is a little different.  Whereas previously, the requirements were sprinkled in other clauses and pretty unclear, they are now more cohesively defined and placed as one coherent thought.

As with many other clauses, there is also the very welcome addition of beginning with the determination of applicability in the first place.  Previous versions of ISO9001 have started with an assumption that requirements are applicable to every organization in every case, without the opportunity to consider how and under what conditions the requirement might apply.  ISO9001:2015 begins with the declaration that an organization shall meet requirements, but follows up immediately with “determining the extent of [] activities that are required”.

The standard reads as follows:

“The organization shall meet requirements for post-delivery activities associated with the products and services.

In determining the extent of post-delivery activities that are required, the organization shall consider:”  As noted above, this is a nice revision in plain language that reminds both the organization and anyone evaluating compliance with the standard that there must first be a consideration of the extend of what is required.  Here are the points of consideration to determine whether post-delivery activities are required:

“a)  statutory and regulatory requirements;”  This, of course, is an easy one.  If statutory or regulatory requirements dictate post-delivery activities or warranties, they must be addressed.

“b)  the potential undesired consequences associated with its products and services;”  The organization must consider potential consequences (which will also inspire discussions about risk, to be sure), and how they intend to respond, the scope of their reaction plan, etc

“c)  the nature, use and intended lifetime of its products and services;”  This is very commonly stated in the organization’s return policy or statement of liability.  Some organizations clearly state that there are no warranties (or post-delivery activities) offered, expressed or implied.  If this is the case (and in the absence of any other requirements in this list), this section can be addressed simply by acknowledging that there are no post-delivery activities.

“d)  customer requirements;”  If the customer requires post-delivery, support, warranty, protection through delivery and receipt, etc, the post-delivery activities should be clearly described.

“e)  customer feedback.”  This is an interesting point which requires the organization to consider customer feedback.  My impression of this is that an organization may choose a “no warranty” posture, but in the spirit of continual improvement and customer-centric processes, customer feedback should be considered when determining the scope of post-delivery activities.  This may also imply that the scope of those activities may change over time in response to customer feedback.

“NOTE:  Post-delivery activities can include actions under warranty provisions, contractual obligations such as maintenance services, and supplementary services such as recycling or final disposal.”  This note brings recycling, reusable packaging, returnable containers, etc into the requirements.  This isn’t really a new requirement, but the addition of “recycling” or “final disposal” catches us up with industry trends toward full supply chain management, sustainable strategies, etc.

THIS WEEK’S HOMEWORK

Review your quality management system for these requirements.  They are likely addressed piecemeal in more than one location.  Take the opportunity to address all of the requirements in a cohesive and easily understood way.  Ensure that your post-delivery activities in practice actually align with what you’ve described in your QMS.

Stay involved and engaged – SUBSCRIBE!

Posted in continuous improvement, ISO9001, lean, Quality, six sigma, Uncategorized